โลโก้บริษัท Ascend Company

Security Governances

Ascend Company - Entry-Level, Full time - กรุงเทพมหานคร
฿50,000-฿90,000

Our Ascend vision is to create life opportunities with innovative digital services. We are blessed to be operating in ASEAN, where we are able to help one of the world’s largest populations of underbanked, the people from some of the poorest provinces who are disregarded by traditional banks.  So many lives are waiting for our help.

In 2017, we served over 30 million customers in 6 countries (Thailand, Cambodia, Myanmar, Vietnam, Indonesia, Philippines), and processed over 4.5 billion USD. This makes us by far the largest fintech company in SE Asia, and growing quickly.

As a member of our esteemed Info Security and Governance team, you will be helping to bring this vision to reality by leveraging the most modern cloud-native technologies.  At Ascend, you will be part of a team who are directly responsible for improving the lives of millions.  

Key Responsibilities

  • Strategic alignment of information security with business strategy to support organisational objectives
  • Develop policy to supporting business strategy according to an acceptable risk level
  • Providing strategic direction, ensuring that objectives are achieved, ascertaining that risks are managed appropriately and verifying that the enterprise’s resources are used responsibly.
  • Performance measurement by measuring, monitoring and reporting information security governance metrics to ensure that organisational objectives are achieved
  • Value delivery by optimising information security program in support of organisational objectives.
  • Establish a security program that adequately to assure compliance with applicable regulatory, legal and related security standards on financial sector requirements to meet the strategic needs of the business. 
  • Provide Information Security Governance a service, including understanding converting of related security laws, regulations, standards, guidelines and business directions to develop and maintain TrueMoney Security Policies, Standards, Guidelines and Baseline audit and compliance program management and assurance.
  • Understanding of contractual elements with third parties to intelligently speak on the security requirements of a contract from an information security point of view.
  • Involve in the Business Continuity Management program and collaborate with key business and IT leaders to develop security and business continuity standards and action plans.
  • Development of information security program to help drive security governance with the business and third party services.
  • Ensure that IT complies with existing laws and regulations and that the enterprise’s IT environment is secure.
  • Act as a corporate advocate for information security practices.
  • Ensure that the security policies of the company are conveyed to all staff with sufficient understanding, Including awareness training.
  • Register, track and update status of IT Security Calendar to ensure that all security activities to be orchestrated as a part of governance service.
  • Cascade and leverage security governance control and practice to the entire company group.Essential Skills & Prerequisites
  • A positive, can-do attitude, who naturally expresses a high degree of empathy to others. 
  • Bachelor or Master’s degree in Computer Engineering, MIS, IT or a related field.
  • At least 3 year experiences in computer security area
  • Have a foundation in good information security practices.
  • Knowledge of International Security frameworks, Standards, and Guidelines eg, COBIT, NIST-800, ISO 27001, PCI-DSS, OWASP, and etc.
  • Knowledge of E2E security design including network, platform and application
  • Experience in system and application security management and control.
  • Experience in facilitating information security risk assessments.
  • Technical writing, documentation development, process mapping, and visual communication skills.
  • Professional certificates related to work (e.g. CISSP, CISM, CISA, CRISC, CEH, Sec+, ISO 27001, PCI DSS or similar general security certification) is desirable
  • Talent to identify and create a broad vision for a security solution and to execute it;
  • Systems Thinking - the ability to see how parts interact with the whole (big picture thinking);
  • Proven experience of acting as the expert in project teams. PERSONAL SKILLS: Ability to explain your thoughts or findings also to non- technical professionals;
  • Ability to convince doubters and naysayers that your concepts are relevant/ important;
  • Efficient communication and team- player skills;
  • Strong problem solving and analytical abilities Able to work under minimal supervision;
  • Detail oriented;
  • Excellent English (Spoken and Written). 
a month ago

Related Skills

#security

Contact

Ascend Company
Bang Chak, Bangkok City

About Ascend Company

โลโก้บริษัท Ascend Company

Ascend CompanyFinancial

Ascend Group is more than just a family of technology companies: it’s about being part of the change to create better opportunities to millions of lives and businesses in Southeast Asia.At the heart o

กรุงเทพมหานคร