As a Security Advisor, your main responsibility is to provide security
services to multiple business units. This includes assessing security needs
for changes, coordinating security consultation processes, and ensuring
seamless engagement with business stakeholders following the security
consultancy service model. Additionally, you will collaborate with various
teams (architecture, design, engineering, and project teams) to drive
innovation and automation efforts.
RESPONSIBILITIES
Play a key role in executing the strategic plan to support the
organization's security objectives;
Assist in implementing and upholding relevant policies, standards,
processes, and controls to meet regulatory and compliance requirements;
Manage the operation of controls effectively, ensuring the timely
resolution of findings, treatment plans, and the closure of engagements;
Contribute to the implementation of security capabilities across security
frameworks, feature functions, and business taxonomy reference
architecture;
Develop security solutions that align with the organization's security
policies and procedures;
Advocate for an enterprise-wide security perspective to drive re-use and
optimization efforts;
Proactively identify opportunities to simplify security processes and
enable business self-service capabilities;
Collaborate with diverse business, technology, and architectural
stakeholders to navigate trade-offs between business value and compliance
with architectural guidelines, risk, and regulatory obligations;
Communicate strategic themes effectively to drive organizational alignment
and understanding;
Lead architectural decision-making in governance forums and drive
technology outcomes for security platforms and engineering solutions;
Influence the development of standardized solution patterns and promote a
culture of technology excellence within the organization.
REQUIREMENTS
At least 5 years in an Information Security role with a track record of
progressive experience;
Experience in IT Security, Risk, and/or Compliance domains;
Proficient understanding of frameworks and industry standards such as NIST
CSF, CSA, SOC2, ISO, PCI DSS, MITRE, etc.;
Experience in assessing and designing security controls for Cloud and/or
On-Premises environments, with the capability to delve into the technical
intricacies of control implementations;
Solid comprehension of a wide range of cloud service offerings, including
Azure, AWS, and Google cloud products/services, along with the technical
expertise to ensure compliance with cloud security controls;
Experience in conducting audits and security assessments across various
security disciplines, such as information, network, application, physical,
privacy, etc.;
Familiarity with system hardening processes, tools, guidelines, and
benchmarks;
Knowledge of current and emerging technologies and the ability to apply
them to enhance security measures for technology assets;
Proficiency in enforcing Policies and Standards within an organization;
Exposure to enterprise-level architectural landscapes.
Nice to have:
Preference for a background in a Big4 firm or banking sector;
Experience working in a scaled agile structure alongside a dedicated team
of project managers and architects;
Strong business engagement and influencing skills, with the ability to
address complex issues through data-driven analysis;
Understanding of the trade-offs associated with technology changes while
delivering tangible business benefits, requiring commercial awareness,
alignment with business objectives, and negotiation skills;
Extensive IT background with deep expertise in Security;
Possession of certifications such as CISSP, CISA.
BENEFITS
Attractive salary, 13th-month salary, and performance bonus;
Hybrid working environment;
20 days annual leave and 7 days sick leave;
Premium healthcare for you and your family members;
Exciting career path and development opportunities;
Professional and engaging working environment.
EMBRACING DIVERSITY AND INCLUSION FOR A THRIVING WORKPLACE
We prioritize fostering a workplace that values and appreciates authenticity
from all team members, regardless of their background. Through our commitment
to diversity and inclusion, in collaboration with our Employee Resource
Groups, we create an environment where individuals from various backgrounds
and identities can excel, build connections, and develop professionally.
DRIVING CLOUD-FIRST TECHNOLOGY TRANSFORMATION
We are currently in the midst of an exciting technological shift towards a
“Cloud First” strategy, adopting cutting-edge tools and methodologies utilized
by top tech and digital enterprises worldwide. Beyond technology, our focus
extends to investing in our employees, offering opportunities for continuous
learning, and professional growth, and empowering others within the
organization. If you have a passion for innovation and mentorship, this is the
ideal environment for you to thrive.