IT Security Governance Officer - CVCC Bảo mật CNTT - TA165

1. Cybersecurity risk and compliance framework and management:​
Work with VPB Risk Division to develop and adopt risk management framework.
Perform the role of Cybersecurity Advisory to new and existing systems to reduce cybersecurity risks on a regular basis.
Produce cybersecurity requirements for all systems to protect and reduce the cybersecurity risk for the Bank.
Ensure that third party risks are managed!
Manage the relevant stakeholders so that they understand the risks and be guided in making the right risk decisions for the Bank.
Ensure all Cybersecurity Risk are recorded, tracked and addressed in the agreed timeline.
Ensure that the IT Security services are effectively
2. Cybersecurity Policy & Standards
Ensure that Cybersecurity Policies and Standards are aligned to SBV requirements and the desired cybersecurity posture of the Bank.
Co-ordinate with other teams to develop technical policies, standards, procedures align with VPB Cybersecurity requirements.
Develop guidelines to provide directions to stakeholders
3. Cybersecurity Awareness
Ensure that the Awareness program is implemented effectively.
Review and update the Awareness program to ensure relevancy to the current cybersecurity threats.
Engage the target audience with the relevant cybersecurity materials and methods to instill a cybersecurity mindset
4. Reporting and Administration
Control approves the request/changes related to security, control activities of IT security: implementing, operating, vulnerabilities management
Work with both internal/external audit during audit programs
Collect, analyze and produce report for IT Security every month
5. Leadership​
Demonstrate and guide the team to achieving the cybersecurity goals to secure the Bank.
Develop the team members to ensure that their skills meet the requirements of Business initiatives
6. Projects
Build up the cybersecurity capabilities to strengthen the cybersecurity posture of the Bank