Cyber Security Administrator, Governance

June 30, 2023 | Cyber Security | 1 positions in Phnom Penh

Job responsibilities

Providing comprehensive oversight and cyber governance management to ensure tolerances within Smart’s risk appetite, also assist in ensuring that the Cyber Security Program maintains suitable levels of compliance to applicable standard and regulations through adherence to Cyber Security policies. Analyst and identify non-compliant and ineffective security processes policy and controls.

• Development and operation of an effective Cyber Security governance and cyber risk management framework
• Implement and operate processes to monitor the effectiveness of the organization’s cyber security control environment
• Dissemination and promotion of a general understanding of cyber security risks and policies through an on-going cyber security awareness /culture change program.
• Develop and implement an appropriate cyber security policy, framework ensuring owners for the policy documents and relevant approvers are identified
• Lead on the maintaining of Smart’s internal/external compliance requirements by overseeing the collection of evidence, its validation and submission of attestations to appropriate bodies, for example ISO 27001, PCI DSS, NIST compliance
• Provide guidance to internal delivery partners (HR, Regulatory and ICT) to assist in the development of policies ensuring that Smart address any legal, regulatory or compliance security requirements.
• Co-ordinate, review and ensure appropriate approval of written cyber security responses to external stakeholder requests for information.
• Oversee the effective operation of procedures to identify and manage cyber security events/incidents
• Ensure that controls are adequate to meet Security Policies, conduct assessments and audits based on scheduled expectations (IOS 27001, PCI-DSS, NIST, etc.). Design and implement accurate and thorough governance gaps assessments to applicable laws, rules, regulations, and industry practices.
• Implement and manage tools (Endpoint, PAM, IAM)
• Facilitate the management and reporting of cyber security governance

Job requirements

• Bachelor's degree in cyber security, computer science, telecommunication engineering or similar fields.
• 3 years' experience in cyber security governance, audit, risk or compliance.
• Experience of physical security assessments
• Experience of developing policy and standard requirements based on best practice.
• Experience within information system security and auditing role

Note: By submitting your CV to our career portal, you have read carefully and agreed to the terms & conditions of our Privacy Notice for Candidates here.