Possess a degree in Computer Science/Information Technology or related fields.
3 to 7 years of experience in IT cyber security risk management, implementation and governance.
Proficient with professional industry knowledge and experience in Information, Technology Risk, Cyber Security risk management, and frameworks (e.g. NIST, COBIT, ITIL etc.).
Experience in performing IT risk assessments, vendor risk assessments, audit and operational risk issues management, and recommending appropriate remediations for in-house developed applications, commercial off the shelf products and Cloud services/platforms.
Experience in conducting regular awareness trainings for staff on cyber, information and technology risks (including policies, standards and relevant topics), periodically publishing security awareness articles and email phishing simulation campaigns etc.
Strong influential, problem solving, analytical and interpersonal skills.
Excellent written and communication skills.
Support Application Risk and Control function for Information and Technology Cyber Risk Management operations
Preferably with IT security certification (e.g. CISSP, CISM, CCSK, CGEIT).
