about the company. Client is fintech providing solutions that simplifies global trade. about the job. Report into the CTO, work with the Head of Risk to develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management programContribute to disaster recovery and business continuity plansReview and approve security policies, controls, and cyber incident response planningManage information security and risk management awareness training programs for all approved systems usersManage security incidents and events to protect corporate IT assets, including IP, data and company reputationProvide regular reporting on the current status of the information security program to senior staff and the board of directorsCoordinate information security and risk management projects with resources from the IT organization and business unitsEnsure continued compliance of the security programs with all applicable laws and regulationsReview investigations after breaches or incidents, including impact analysis and recommendations for avoiding similar vulnerabilitiesConduct periodic security auditsResponsible for the implementation and maintenance of the most current version of the CIS 20 Critical ControlsEnsure that all cybersecurity policies and procedures are communicated to all personnel and that compliance is enforcedCoordination of all employees, contractors, and vendors involved in IT securityConstantly update the cybersecurity strategy to leverage new technology and threat informationCoordinate security tool deployment and implementationServe as the expert advisor to the executive team on status and risks, conduct research and provide updates on industry standardsOperate as the CIS lead on the CIS Risk CommitteeOversee the overall security architecture, strategy, and necessary budget skills & experiences required. 15+ years’ experience in IT, Cloud, Security as well as large distributed platforms. Background of SaaS / system development (i.e. SAP, Oracle, etc.) would be advantageous. Advance degree in Computer Science, IT Security or related fieldExpert in Cloud technologies and cyber securityExpert in cryptography Experience with white hat hacking. Expert in intrusion detectionTechnical knowledge of different types of cloud systems, networking, applications micro services frameworks, PUB/sub frameworks, event driven architecture and operating systemsRegulatory compliance knowledge, including GDPR, HIPAA, SOX, PCI, NIST, FISMA and GLBAUnderstanding of International, Federal, State and Local laws concerning data acquisition, protection and transmissionQuantitative Risk Assessment experienceStrong leadership and people management abilitiesStrong attention to detailExcellent interpersonal skills and professional demeanorExcellent verbal and written communication skills in EnglishExcellent customer service and presentation skills If you're interested in this opportunity, apply now to secure your application. For further information, feel free to reach Eddie Wang at firstname.lastname@example.org or WhatsApp 62907292 for a confidential chat on this role or other opportunities.