Job Description

COMPANY DESCRIPTION
A.MI represents Ascentis and Meet Isaac. It is a brand name adopted by both companies to represent our deeply-rooted relationship. Ascentis continues to pioneer on CRM, loyalty and rewards technology while Meet Isaac focuses on creative, digital marketing and customer experiences. Armed with more than 50 marketing awards over the past few years, both companies has a proven track-record that’s well validated by marketing leaders in their respective industries. When you combine the efforts of both companies together – you get the power of 2 full service agencies that are ready to help their clients pivot their business to the next level. Do you have what it takes to be a part of this award winning combination?
DESIGNATION : Ascentis - Manager, IT Governance, Risk and Compliance (GRC)

RESPONSIBILITIES

• Manage and oversee all activities related to IT governance, risk management and compliance. Execute, manage, enhance and implement processes to comply with IT regulatory and corporate requirements.
• Develop and maintain all documentation on security policies, standards and controls and work with senior management to enforce compliance with policies and procedures in entire organization
• Develop, implement and monitor reporting mechanisms for governance, security and risk practices to support compliance and highlight areas of exposure
• Conduct IT risk assessment, review and reporting of key IT risk exposures and metrics, develop IT risk management framework and remediation plans to improve security posture with IT security best practices
• Monitor IT risks and maintain IT risk register. Participate and coordinate with different departments to ensure effective controls to mitigate IT risks, provide active update and progress reporting to key stakeholders
• Participate and act as a point of contact for security risk assessment, client due diligence questionnaires, audits, regulatory responses. Identify gaps and potential security concerns, provide mitigation strategies, develop and implement appropriate solution
• Lead and develop business continuity plan and coordinate disaster recovery activities
• Keep abreast of current advances in all areas of information technology concerning vulnerabilities, security breaches or malicious attacks, and maintain up-to-date knowledge of IT security industry
• Implement and deliver effective security awareness program to improve staff security awareness. Conduct routine evaluation of policies and procedures implementation and ensure best practice risk mitigation and assessment functions are maintained to comply with the corporate's strategy

• Diploma or Bachelor’s degree in computer science, information security, engineering or equivalent
• Minimum five to eight years of working experience in IT Governance, risk management or and audits with knowledge of IT risk management and controls
• Experience in design, develop and deliver of relevant framework, policies, standards and procedures
• Good knowledge of enterprise IT systems and components
• Good to have CISSP, CISM, CRISC and/or CISA certificates
• Good to have knowledge in of current cyber security trends such as OWASP Top 10, threats, solutions and tools, security standards related to IT controls such as ISO27001, NIST Cybersecurity, SOC2 Type 2, OSAPR, cloud security
• Effective communication with strong leadership and interpersonal skills
• Ability to work independently and also good problem-solving skill

• Interested candidates, kindly visit https://ami.recruiterpal.com/career to submit your application and to explore more job opportunities.