Asia Pacific - Regional IT Security Manager

MAIN PURPOSE

The IT Security Manager is tagged to Shiseido Asia Pacific, which regional headquarter is in Singapore.

Reporting to the Regional ICT Director, the incumbent is responsible for the IT security landscape for the region and will be in charge of securing the ecosystem, managing data protection, as well as ensuring the quality of security activities in all Affiliates Markets.  

The incumbent will lead and manage complex projects, support all IT Security related activities for the region and will work independently to manage the technical constraints.

KEY RESPONSIBILITIES

IT Security Management

• The incumbent is responsible for understanding and compliant with the group's safety policy and standards.
• Understanding security and compliance standards in coherence with the group (data classification, cryptography standards, IT charter, JSOX, GDPR).
• Collaborate with the Group ICT team with understanding the safety policy, security governance and associated processes
• Work closely with related departments to assess the potential IT/security risk (including the evaluation of security risks of internal and external apps/tools) and put forth recommendation for security control implementation.
• With guidance from Shiseido Group’s Security team, lead the implementation of security projects and IT solutions, including the evaluation and management of security partners, as well as closely monitor to ensure IT policies have been adhered to.

IT Security Operation

• With guidance from Shiseido Group’s Security team, The incumbent is responsible for IT security operation such as Vulnerability Management, Incident Response, Security Alert monitoring, Security operation reporting

Data Protection Management

• Provide solution and process to manage data risks and prevent the occurrence of data privacy-related incidents.
• Lead the investigation by partnering closely with service providers and the business leads to conduct relevant testing to diagnose data privacy incidents and subsequently, advise on how to best manage the situation.   
• Ensure IT security, data protection requirements are in place by design at each project with the support of HQ

IT Infrastructure

• Maintain local infrastructure and network (incl. VPN) to ensure optimal operations and to prevent disruptions.
• Partner with IT shared service to ensure effective implementation of infrastructure for the region

IT Crisis Management

• Manage IT Security in crisis of system outages and security attacks.
• Process execution of the business continuity plan.
• Represent Shiseido Asia Pacific and join forces with global/regional IT teams to execute projects.

REQUIREMENTS

• Bachelor’s degree in Computer Science, Information Systems, or equivalent education.
• More than 5 – 8 years of relevant experience in IT infrastructure and Security.
• Basic understanding of Security incident management and ITIL environment.
• Basic understanding of Security Operation, such as Alert detection and response, vulnerability management
• Basic understanding of Security solution implementation such as FW, EDR, SIEM, Anti malware,
• Demonstrate robust problem-solving skills and experience in critical infrastructure solutions.
• Advantage to have experience in the Security & systems: Such as Proxy, FW, IPS, Antimalware, EDR, WAF, IAM
• Familiarity with a global environment and comfortable working with stakeholders located in different regions.
• May require travel based on project needs.
• Strong written and verbal communication skills.
• Collaborative and proactive.