Job Detail

Job ID : Apr 02
Job Title : Senior Officer, IT (ISO)
Job Function : Information Technology
Location : Phnom Penh
Responsibilities :
  • To develop and maintain the information security policy and accompanying standards, procedures and guideline,
  • To conduct the information security risk assessment program and system penetration test to ensure any gaps are addressed,
  • To promote security awareness by developing and implementing a security awareness and training programme,
  • To investigate suspected and actual security incidents in accordance with the security incident management standard, produce reports with recommendations and ensure any remedial action is taken,
  • Work with internal stakeholders to develop relationships to help promote and improve information security and provide security advice on procurements, projects and new initiatives as required,
  • Review and Monitors compliance with information security policies and procedures, referring problems to the appropriate branch manager and department head,
  • Prepares the disaster recovery plan (DR/BCP) and assist in coordinating contingency plan tests on a regular basis,
  • Work with both internal and external Audit relates IT matters
  • Secretary to Information of Technology Committee,
  • Respond to enquiries from staff and provide security advice as required,
  • Work with IT team to formulate IT operational procedures,
  • Prepare monthly security reports and user and role assessment review at periodical basis,
  • Other job assigned.
  • To develop and maintain the information security policy and accompanying standards, procedures and guideline,
  • To conduct the information security risk assessment program and system penetration test to ensure any gaps are addressed,
  • To promote security awareness by developing and implementing a security awareness and training programme,
  • To investigate suspected and actual security incidents in accordance with the security incident management standard, produce reports with recommendations and ensure any remedial action is taken,
  • Work with internal stakeholders to develop relationships to help promote and improve information security and provide security advice on procurements, projects and new initiatives as required,
  • Review and Monitors compliance with information security policies and procedures, referring problems to the appropriate branch manager and department head,
  • Prepares the disaster recovery plan (DR/BCP) and assist in coordinating contingency plan tests on a regular basis,
  • Work with both internal and external Audit relates IT matters.
Requirements :
  • Bachelor degree or master graduated in computer science.
  • At least 3 years working experience in Network section and security.
  • A good working knowledge of information security including ISO/IEC 27001 Information Security Management Standard,
  • CEH, CIA, CISA certify is a plus,
  • Good working knowledge of information risk analysis/management,
  • Ability to manage time and priorities appropriately,
  • Positive attitude towards learning and development demonstrated by a record of continuing professional development,
  • Good verbal and written communication skills and able to communicate effectively at all levels,
  • Honesty, reliability, and a commitment to strict confidentiality.
Deadline : 31/05/2020