·
Monitoring external policy
compliance
·
Responsible for reviewing and
assessing vendor security controls to protect facilities, systems (assets and
networks) and data
·
Responsible for ensuring
vendors working within the framework of security policies that is being clearly
laid out for them
·
Maintaining regular
communications with vendor risk management team on progress status
·
Follow up with vendors and
business teams to ensure timely remediation of assessment findings
·
Driving security awareness
program across the organization and promoting cyber security firm initiatives
·
Good knowledge of information
security principles, policies, processes and practices
·
Good knowledge about security
controls for cloud services
·
Good to have information
security program implementation and/or audit experience
·
Good to have certifications
such as ISO 27001, ISO 27002, ISO 22301, CEH, CISA