FIND YOUR BETTER AT Blue Care
If you believe in better, we'd love to hear from you.
About the Role
This Specialist will act as the primary contact between the Group Cybersecurity Team and internal teams, ensuring efficient communication, incident tracking, and resolution facilitation.
This Specialist will be responsible to the implementation and execution of information security management governance programmes with the alignment of the Group Information Security's strategic direction.
Additionally, this Specialist will be responsible for firewall rule reviews and Web Application Firewall (WAF) support, ensuring secure configurations and compliance with security policies.
The position requires availability for non-office hours to handle urgent security incidents.Roles and Responsibilities:
BAU Operations (40%)
Workwith Groupand local Risk teamto handleThirdPartyRiskManagement
Work onThird Party Security Assessmentforboth internal and external parties
Work with Group Information Security team to handle the issuereportedat WeeklySecurityDashboard
Firewall Rule Review:
Review andvalidatefirewallrule change requests to ensure security compliance.
Work with IT teams tooptimizefirewallrules and reduce unnecessary access.
Web Application Firewall (WAF) Support:
Assistin managing and tuning WAF policies to protect web applications.
Support troubleshooting and resolving WAF-related issues.
Support audits,compliance, riskassessmentsand continuous security improvements.
SecurityOperations (40%)
Be the local SME on products and solutions offered by Group Information Securityandfollow up withthemonallrelatedissues
In charge of the annual recertifications of both local and Group-wide programs across all departments
Workwith application teams to document and onboard new applications to strategic solutions offered by Group Information Security
Partnerwith GroupInformation Securitytomaintainlocal specific security configurations
Automate the data generation and reconcile the inventory for management reporting
Workon information preparationforaudit requests
Cyber Hygiene (20%)
Execute the governance programs on security healthiness of IT assets such as applications, servers, databases, workstations, LAN ID, PIDs, etc.
Prepare the issue report for management attention
Drive the remediationof all information securityissues
Minimum Job Requirements:
Bachelor's Degree, preferred in Computer Science, InformationSystemor related disciplines
Minimum 3years of working experience in Information Security management, or relevant control functions in financial field.
Familiarize with Information Security management and regulatory requirements.
PreviousIT risk control or audit experience, and project management are preferable.
Able to work independently, handle and manage tasks with tight deadlines.
Excellent presentation and communication skills.
Support ad-hoc tasks and assignments from the supervisor, including project-related security reviews or urgent security requests.
Certified with CISSP, CISA or CISM will be an advantage.
Experience in a multinational or regional security team is a plus.
Others:
You are required to obtain the relevant license(s) if your job involves regulated activities
