About the role

To review, monitor and ensure that the Bank applies proper controls and tools, evaluate security solutions and improvement, and manage information security risk in the Bank.

Location

Head Office, Phnom Penh (1 Post).

Duties and Responsibilities

• Execute to review and measure information security controls and activities, and work with each stakeholder to take action for non-compliance result with target date, then monitor progress of action plan.
• Partake in development and enhancement security policies and security governance related documents to ensure all requirements are up-to-date and in line with Bank’s needs.
• Execute risk evaluation and acceptance process on assigned Information Security Risk, then, to monitor risk.
• Provide critical input/assistance to head-in-charge to improve existing compliance and assurance programs and processes, including documentation.
• Report and escalate deviation based on statements of policies, standards, procedures, and other related documents.
• Handle tasks assigned by Line Manager.

Skills and Specifications

• Bachelor’s degree in IT, Computer Science, or other related fields.
• Minimum three years of professional experiences in IT Risk/Compliance, information security governance/operation, system/network administrator or developer.
• Understanding of IT security concept and security governance, including but not limited on PCI, ISO27001, NIST Cybersecurity Framework.
• Good analytical skill to analyze various checks of controls.
• Good English proficiency to work with different stakeholders.
• Effective communication skill.
• High level of integrity, commitments, and professional responsibility.
• Strong dedication to accuracy and details.