IT Security Manager

- Implement and provide support to all stakeholders on security controls, risk assessment framework, and program that aligns with regulatory requirements, such as PCI DSS and State Bank of Vietnam circulars, ensuring documented and sustainable compliance that aligns and advances SmartPay business objectives.
- Implement processes, such as GRC, to automate and continuously monitor information security controls, exceptions, risks, and testing to develop reporting metrics, dashboards, and evidence artifacts.
- Implement information security risk assessments and controls selection activities to conduct gaps analysis for SBV and PCI-DSS requirements to estimate potential risks and appropriate treatments.
- Implement the design and operation of related security compliance monitoring, internal/external audit management, and improvement activities to ensure compliance with internal security policies and applicable laws/regulations.
- Develop strong relationships with external audit and key stakeholders to ensure risk management oversight is understood, managed appropriately, and current with all standards, guidelines, and regulations that are applicable.
- Liaise with all departments to identify, track and provide remediation guidance for new projects, services and/or third-party contracts in terms of information security assurance.
- Develop and implement enterprise governance, risk, and compliance strategy and solutions.
- Lead information security awareness, training, and educational activities.
- Perform other related duties as assigned.