Project Task

Information security compliance monitoring and audit for public sector bureaux and departments (B/Ds) and

Job Description

Provide information security support and services for public sector:

Provide information security support and services for the public sector:

• Work independently to manage the security compliance audit exercise of individual B/Ds and assess their security compliance against the public sector's security requirements. The responsible activities included but not limited to conduct kick off meetings, arrange interviews with B/Ds' staff, review security processes and controls of B/Ds, prepare written reports, etc.;
• Evaluate the effectiveness of security risk assessment (SRA) conducted by departments;
• Study the quality of the latest SRA exercise(s), especially against new government initiatives;
• Conduct research on ISO/IEC 27001, information security governance mechanism, and other related topic; and
  
  

The Candidate Should Have

• Solid experience in performing security risk assessment and security audit as an assessor/auditor
• independently in public or private sector (preferable in government departments or banking industry);
• Knowledge on international security standards and industry security best practices;
• Experience in formulating information security policies and guidelines;
• Good command of both written and spoken English; and
• Valid Certification of CISP, CISSP, CISM, CISA or ISO/IEC 27001 Lead Auditor.
  
  

For interested parties please submit your cv by clicking apply.

All applications applied through our system will be delivered directly to the advertiser and privacy of personal data of the applicant will be ensured with security.