This role serves as a generalist across all ISO pillars, with a strong focus on operational execution and compliance. This role supports ASEAN and India regions, contributing to security operations, threat management, store security, and governance initiatives.
1. Security Operations [ASEAN + India]
- SOC Operations: Lead and manage Security Operations Center activities, including threat detection, incident response, and alerting across ASEAN and India.
- Insider Risk Monitoring: Track and mitigate insider threats globally, ensuring weekly reporting and zero missed incidents.
- Compliance Monitoring: Enforce endpoint compliance for Zscaler, Windows 11, and file servers, targeting 95% compliance and supporting global server migration.
- Mobile Device Security: Enhance iOS and Android security posture, enable Threat & Vulnerability Management (TVM), and complete DEP migration.
- E-Commerce Fraud Tool Support: Assist in the secure rollout of Riskified, ensuring deployment without critical blockers.
2. Threat & Vulnerability Management [ASEAN + India]
- PCI DSS Compliance: Maintain 100% PCI DSS certification for ASEAN stores, ensuring no repeat findings.
- Security Assessments: Conduct bi-annual assessments for facilities (e.g., call centers, warehouses), resolving 90% of identified issues within 60 days.
- Vulnerability Assignment: Automate monthly vulnerability reporting and ensure 85% closure rate within SLA.
3. Store Security
- Windows 11 Migration [Global]: Drive 100% compliance for Windows 11 store image across global stores, with bi-annual reporting.
- Android Device Gap Assessment [ASEAN + India]: Identify and assess security gaps in store Android devices, and report findings to GHQ.
4. Governance & General Support [ASEAN + India]
- Phishing Campaigns: Execute four campaigns annually, ensuring 90% of flagged users complete training.
- User Awareness & Support: Promote security policies and respond to user queries, aiming for a 95% positive feedback rating.
