The Security Control is the Point of Contact for the team when it comes to security requirements. He/She manages the security audits, Risk assessments and ISO certification exercises. He/She is responsible to coordinate and provide inputs, documents and evidences to the external, internal and customer defined auditors. He/She coordinates with the respective system owners and ensure the mitigation is executed as per the security guidelines.
Key Accountabilities
- Act as the primary liaison for security requirements within the team, overseeing security audits, risk assessments, and ISO certification exercises
- Coordinate with internal and external auditors, providing necessary documentation and evidence to ensure compliance with security standards
- Collaborate with system owners to implement timely security mitigation measures in accordance with established guidelines
- Serve as a point of contact during security incidents, working closely with security teams to translate guidelines into actionable technical requirements
- Review and approve major changes from a security standpoint in CAB review meetings, ensuring adherence to security protocols
- Provide guidance and support to team members on security-related matters, fostering a culture of security awareness and compliance throughout the organization
Qualifications
- Bachelor degree in Security Management or related field
- International Certifications
Experience
- IT Industry experience in Security management
- Minimum 10 years’ experience in Information technology field
- Minimal 7 years’ experience in Change Process including Documentation and Approval Process
Skills
- Proven experience in managing security audits, risk assessments, and ISO certification exercises
- Strong understanding of security guidelines and best practices
- Excellent communication and coordination skills, with the ability to effectively collaborate with internal and external stakeholders
- Detail-oriented approach with the ability to translate security requirements into actionable technical tasks
- Familiarity with Change Advisory Board (CAB) processes and procedures is desirable
- Relevant security certifications (e.g., CISSP, CISM, ISO 27001 Lead Auditor) are a plus.
