Client Information Security Apps Enterprise Senior Manager

Were searching for a Senior Manager Client Information Security (Apps Enterprise) to be part of our diverse team of talents here at NCS!

If you believe in going above and beyond want to exemplify the best and wish to bring people and technology together like never before then we would love to have a conversation with you!

Overview

Security privacy and operational resilience are critical issues facing all organizations today. We are currently looking for qualified and capable security minded individuals to be the driving force managing security governance throughout the lifecycle of client projects.

What we seek to accomplish together:

You will work as the interface between NCS Application and NCS Corporate HQwide cybersecurity leadership and the practice driving organizationwide cyber security strategy implementation and in turn ensuring client and practice requirements are fed back into the continual improvement of relevant strategy policies and standards.

Role includes:

• Drive the implementation of NCS cybersecurity data protection and privacy policies standards and processes within the practice. You will work to continually improve the security posture of projects through proactive risk management and the establishment of a broad range of cybersecurity controls.
• Provide direct support to colleagues to ensure cybersecurity is addressed throughout the project delivery lifecycle from application design application architecture patterns testing vulnerability and security review.
• Act as a single point of contact and escalation for LOB application cybersecurity incidents ensuring timely identification remediation and lessons learned.
• Manage the security SLA governance and provide practicelevel cybersecurity reporting metrics and forecasting to leadership.
• Responsible for information security data protection privacy GRC and audit requests for the practice acting as single point of contact on relevant client security assessment and audits . For example independent thirdparty attestations of industry cybersecurity standards and certifications such as ISO 27001 CIS Controls NIST for practicespecific solutions and products
• Contribute to the definition of the client specific security baseline. Consult and advise internal and external clients about security topics and support the opportunity management process by providing subject matter expertise and support
• Help win client business by providing cybersecurity assurance to RFIs RFPs proposals contract drafting security questionnaires workshops and other client due diligence processes.

Qualifications :

A little bit about you:

• Degree/Diploma or higher in Computer Science Information Systems or equivalent
• At least one industry recognized security certification is such as Certified Information Security Management (CISM) Certified Information Systems Security Professional (CISSP) CEH or CASP.
• 5 years of experience in information security management specifically in application secured design and patterns (Cloud Serverless Containers) application and API security testing methodologies e.g. analysis and recommendation of rectifications using VAPT/WAPT/SAST/DAST/SCA security architecture infosec risk management compliance and audits for Web Mobile API and Cloud Native applications.
• Good working knowledge of security risk management security governance framework and compliance (IT Security Audit / log review)
• Understanding of information security principles IM8 PDPA ISO 27001 controls Center for Internet Security (CIS) controls Cloud Controls Matrix (CCM) controls.
• Experience with application security security technologies and automation tools e.g. IAM DevSecOps CI/CD IAC application security API Security vulnerability scanners security technologies (data/application protection & hardening encryptions).
• Experience carrying out application penetration testing vulnerabilities scanning and security assessment and security incident management with stakeholders.
• Senior stakeholder management and working across various parts of the organization
• Team player with good interpersonal influencing skills
• Strong communication skills both written and verbal

We are driven by our AEIOU beliefsAdventure Excellence Integrity Ownership and Unityand we seek individuals who embody these values in both their professional and personal lives. We are committed to our Impact: Valuing our clients Growing our people and Creating our future.  

Together we make the extraordinary happen.  

Learn more about us at ncs and visit our LinkedIn career site. 

We handle all profiles with the highest level of confidentiality.

Remote Work :

No

Employment Type :

Fulltime