---

About this position

The IT Security AVP is responsible for setting goals and policies for data security, managing risk, advising other departments on IT security, and maintaining relationships with external parties. They must also be prepared to learn new techniques in information security and evaluate and address security vulnerabilities.

Responsibilities

• Set goals and policies for data security
• Develop policies for data security including Policy, Standard, Procedure and Guideline
• Manage and monitor system attacks and threats using Intrusion Detection System (IDS), Intrusion Prevention System (IPS), or Anti-Virus Systems, as well as plan for Business Continuity and Disaster Recovery (BCP and DRP)
• Manage Risk Management and Risk Analysis that may impact the organization's operations
• Provide IT security advice to other departments
• Maintain relationships with external parties related to data security
• Handle Requests for Proposal (RPF) for IT security systems procurement
• Stay prepared for new situations and continuously learn new Information Security techniques
• Evaluate and address security vulnerabilities through control, testing, and follow-up to close potential impacts on the organization's operations

Requirements

• Bachelor's degree or higher in Information Technology or related field
• Minimum 5 years of experience in Information Systems Management
• Specific experience in Risk Management, BCP, DRP, IT Audit, SLA Contract, and Vendor Negotiation
• Experience in resolving computer virus or hacker-related issues and basic knowledge of Computer Crime Laws
• Knowledge and skills in Information Technology and Information Security at a management level
• Basic knowledge of security systems such as Firewall, IDS, Anti-Virus, VPN, PKI, Vulnerability Assessment, and Penetration Testing
• Proficient in English communication (listening, speaking, reading, writing)