ISO Manager
About The Position
In the world changing at an accelerating pace due to Globalization and Digitalization, Fast Retailing has transformed into a "Digital Consumer Retail Company" that transcends the traditional framework of retailing. We aim to enrich lives everywhere by providing "LifeWear" to customers around the world. With this context, the Information Security Office is charged with the mission of protecting the important information of our customers and all confidential information within our company, to ensure a secured business environment for business growth. In order to accomplish this mission, we are looking for a key participant in the corporate security program. This person will take responsibilities for governance, compliance, risk assessment, and awareness in local ISO and participates in other regional ISO support, which includes Singapore, Malaysia, Indonesia, Thailand, Vietnam and India.
Requirements
- Minimum 8 to 12 years of experience in information security governance, risk and compliance.
- Strong knowledge and Experience in information risk assessment and compliance needs.
- Strong knowledge and Experience in information security frameworks.
- Strong knowledge and Experience in applicable laws, regulations, and standards relating to security and data privacy.
- Good understanding of information security governance frameworks such as ISO27001 (and ISO27701 framework, etc.,)
- Educational Background: BS or MS degree in IT, Security or Computer Science.
- Excellent communication skills.
- Ability to multitask, prioritize work effectively and manage tasks/projects to completion.
- Ability to to work independently and within a team environment.
- Highly motivated and strong sense of responsibility and ownership.
- Language Proficiency Level: Excellent Communication Skills in English.
- Ability to make Business Process Analysis
Nice To Haves
- Understanding and ability of risk analysis for cyber threats.
- Other technical and/or security certifications preferred. (e.g. CISA, CISM, CISSP, SANS, GIAC, etc.)
Responsibilities
- Handling Information Security Management, address the information security threats and incidents and drive remediation.
- In conjunction with the Legal team Identify information management and protection laws and regulations and implement actions to ensure compliance with relevant information management and protection laws.
- Identify, track and oversee internal and external compliance and regulatory requirements (PCI, Data Privacy, etc.) for the organization including compliance with established policies, procedures, standards, baselines and controls.
- Maintain an information management and protection framework for an effective company-wide governance programme.
- Manage information security awareness programs and provide training to all staff on a basis.
- Manage day-to-day security activities, including conducting vendor security assessment, privacy security assessment, implementing company policies, and communication related to the information security programme.
- Manage and Support the Information Security requirements across different BUs.
- Support other local ISO members in different regions as a regional ISO team member.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Number of Employees
5,001-10,000 employees
