Enforce IT policy, standards and procedures / guidelines in accordance to internal policies, and applicable regulations (such as PDPA, Cyber Security Code of Practice (CCOP) under the Cyber Security Act, EMA Regulations, and Computer Misuse Act)
Perform periodic reviews of the IT system access
Facilitate IT audit planning, coordination, management response, rationalisation and collation and tracking of audit action items with internal and external parties
Perform IT compliances check by reviewing control effectiveness
Develop simulated phishing campaigns to improve security posture of organization
Drive organization wide IT awareness initiatives through provisioning of CBT for security, identify possible gap of understanding in staff and facilitate re-training / awareness session
Facilitate Information Security Management System (ISMS) audit planning, coordination, management response, rationalisation and collation and tracking of audit action items with internal and external parties
Qualifications
Undergraduate students currently enrolled in Information Technology / Computer Science or related program
Learning outcome
Understanding cybersecurity operational processes for critical infrastructure operators and what it takes to comply with ISO27001/CCOP standards.