Regional Security Assurance Specialist Regional Security Assurance Specialist …

in Kuala Lumpur, Kuala Lumpur, Malaysia
Permanent, Full time
Be the first to apply
in Kuala Lumpur, Kuala Lumpur, Malaysia
Permanent, Full time
Be the first to apply
Regional Security Assurance Specialist
Role Summary

This is a unique opportunity to be the leader of Risk, Governance, and Security Assurance for Experian APAC, for a governance, security risk and compliance management program, collectively called Security Assurance. The person while operating with high degree of autonomy and visibility, will build risk and assurance programs which would address key security risks and enable EITS APAC to address security, regulatory and compliance needs.

Ideal candidates for the position are innovative security compliance professionals with strong technical, business and program management experience, having led similar programs for other global companies. Candidates should be able to assess and translate security risk management, regulatory and compliance requirements into a coordinated controls framework that can be efficiently adopted by security, business and technology teams. Excellent communication skills are required, as is proven past success interacting with executive leadership, internal/external audit and key internal stakeholders.

  • Enhance and expand Security Assurance to address Experian APAC security governance, risk management and compliance needs, in partnership with peers from information and product security
  • Revamp the information and product security governance structure, to ensure adequate knowledge of and support for information and product security programs
  • Manage the Information and Product Security Policy, Standards and Guidelines, including updates and exceptions
  • Develop and implement a right-sized security risk management process that assesses risks and oversees mitigation through the appropriate application of risk-based controls
  • Develop strategy to meet various Experian IT security compliance requirements and oversee related control design, implementation, evaluation/audit and remediation efforts, in partnership with relevant stakeholders (control and system owners, IT and security leadership, internal audit, external audit, etc.)
  • Design and implement relevant program metrics, and provide Security Assurance updates to stakeholders
  • Participate in Enterprise Risk Management process to advise on Experian's security-related risks and related mitigation
  • Engage in Security Assurance knowledge-sharing within the organization
  • Develop the Security Assurance team to grow to its next level of maturity and scalability

Minimum Qualifications
  • At least 8 years of relevant experience leading security governance, risk management and compliance programs in large scale, internet facing environments
  • Executive management experience, engaging with and reporting status to C-level executives
  • Experience with customer interactions, to explain security program status and performance
  • Experience implementing IT and security control and compliance frameworks requirements relevant to cloud or technology companies
  • Experience leveraging risk management frameworks to assess and manage security risks at a variety of levels - enterprise, function, process, etc
  • Team leadership experience and a proven record of attracting, inspiring, growing and retaining top talent and driving high performance
  • Experience evaluating and implementing the tools necessary to support efficient and effective Security Assurance practices
  • Superior stakeholder management skills, and communication skills that can range from high-level discussions with executives and internal stakeholders to more in-depth discussions with internal control, system and process owners
  • Strong business acumen Bachelor's degree in an information technology discipline. MS or MBA preferred