IT & Compliance Assistant Manager (Ayuttaya)ID:69422
55,000 THB ~ 65,000 THBAyutthaya10日 ago概述
薪资
55,000 THB ~ 65,000 THB
产业类别
Manufacturing(Electronics/Semiconductors)
工作内容
- Develop and maintain information technology and security policies and procedures and ensure that they are
aligned to business requirements, information technology strategy, legal/regulatory requirements, and leading
industry standard frameworks such as ITIL, COBIT, NIST, ISO 20000, and ISO 27001.
- Assist in liaising with ISO and HR to develop policies, procedures, and controls to ensure that they aligned to
the business requirements.
- Review and propose changes to existing policies and procedures to reflect existing business requirements
and compliance with applicable regulations.
- Develop, publish, and maintain information security standards for all applicable technologies and information
system within the company aligned with leading industry standards such as CIS and NIST.
- Collaborate with the H5 group to develop and maintain information technology and security processes and
procedures.
- Review policy and technology standards exception/waiver requests and recommend appropriate risk
mitigation/acceptance approach aligned with the Enterprise Risk Management framework.
- Identify and report information technology and security policy, procedure, and standards related metrics to
demonstrate value to the IT Director.
- Interface with information security awareness function and change management teams to foster awareness of
company policies, procedures, and standards among Magnecomp staff.
- Interface with other departments to understand business requirements and the role of information systems in
supporting business processes.
- Interface with the Risk, Certification, and Accreditation team, and Compliance teams to ensure necessary
changes reflected in policies to address the risks identified.
- Help foster effective teams committed to organizational goals, foster collaboration among team members and
teams and use teams to address relevant issues.
资格
应征条件
- Bachelor/master’s degree in computer science or computer engineering or any related fields
- Minimum 8 years’ experience working in information security, information technology or information risk
management related field.
- Familiarity and understanding of a broad range of IT hardware and software products.
- Familiarity with industry standards, laws and regulations, including but not limited to ISO 27001, SOX, ISO
20000, Safe Harbor, HIPAA, GLBA, and Basel II.
- Knowledge of best practices and standards for monitoring and reporting information security performance
(e.g., key risk and performance indicators, NIST/ PRISMA Maturity levels)
- Possession of industry certifications highly preferred including, but not limited to, Certified Information
Systems Auditor (CISA), ISO 27001 Lead Auditor, Certified Information Systems Security Professional
(CISSP) and Information Systems Security Management Professional (ISSMP).英文
Level 3 - Business Level
其他语言
English
附加信息
福利制度
Bonus: 3-5 Months/year
工作时间
0800 ~ 1700
假日
SAT/SUN
职业类别
QA
Tester
Other (IT)
Pre-Sales
IT Helpdesk / IT Support/Admin
Programmer
IoT Engineer
IT Executive
Web developer
Data Engineer
System Analyst
System Engineer
Mobile Developer
Network Engineer/Server Engineer
Service Engineer
Quality Assurance
Security Engineer
Software Engineer
Project Management
Application Developer
请登入。