January 18, 2016
Home >> Security Delivery Specialist - Cyberjaya, SGR

Security Delivery Specialist - Cyberjaya, SGR


Job Description

Role: – Provide a single point of contact to the account management and delivery teams for all operational security related activities for the customer account.

Operational Management


  • Be responsible for delivering “end 2 end“Security Services defined in the Contract / DOU / GSD331, ISeC or ITCS104.

  • Act as a focal point to account management and delivery teams for all operational security related activities.

  • Report to the Delivery Project Executive or Service Management security contact and provide objective, informed and impartial guidance that balances the needs of the customer and IBM.

  • Establish, maintain and oversee effective working relationships, either directly or in partnership with Service Management, for all IBM and Third Party teams providing security support on the account.

  • Serve as a dedicated focal point for managing security incidents that occur in the customer’s environment and provide appropriate SME advice to help resolve matters.

  • Understand and approve change records which may have a significant impact the customer’s security document.

  • Maintain strong links with the PE and Business office and ensure that Security RFS work is forwarded to the Security New Business Team for advice and resolution.

  • Identify opportunities to sell additional security services and work across internal organisational boundaries, where necessary, to progress those opportunities.

  • Provide Audit support for internal and external reviews e.g. pre-audit preparation activities, support data collection, respond to data / meeting requests etc… Respond to security related audit and review findings including developing and tracking action plans

  • Provide informal security reviews for IBM delivered processes or architectures to ensure that security contractual requirements are completed.

Customer Relationship Management


  • Maintain and enhance effective working relationships with the customer either directly where such contact exits or via service management

  • Ensure full understanding the customer’s security requirements and any differences between IBM standards.

  • Promptly respond to customer requests / queries / problems.

  • Actively seek out opportunities to improve the security posture of the account by researching new security technologies / practices and by recommending additional security services as required.

  • Complete any required customer survey exercises.

  • Encourage and support your customer’s attendance on the SOCF Security User Group.

Risk Management


  • Be responsible for the Account’s Security Risk Management process and ensure that the Security Risk register is maintained and up-to-date at all times.

  • Ensure that contractual requirements for information risk management and security controls are understood, documented and satisfied.

  • Track, assist and manage to resolution the closure of security risks e.g. recommend actions, review plans and monitor progress of remedial actions.

  • Regularly review the Account’s delivery environment to identify and document security risks to IBM or the customer.

  • Provide risk management advice or obtain guidance from colleagues and ensure IBM delivery staff implement required account security controls.

Processes


  • Establish, create and maintain the Account’s Security Governance documentation.

  • Proactively drive operational compliance on the account with particular focus on GSD331.

  • Contribute to and, where appropriate, coordinate the maintenance and implementation of the account GSD331 and ensure that BAU activities on the account are reflected in the GSD331.

  • Be responsible for ensuring the implementation and management of additional appropriate operational security activities, processes and policies e.g. ITCS104, iSeC, eBH policy, Security Incident Management Process, APAR, etc…

Reporting


  • Schedule and minute monthly account security status meetings to review any risks, issues, incidents, outstanding activities, current and planned changes, security failings etc…

  • Understand Security weaknesses on the account and proactively drive through to conclusion action plans to resolve.

  • Escalate all “stalled” risks, issues etc… which require fresh focus to ensure security activities are resolved.

  • Provide accurate and timely Security KPI data which reflects the true security posture of the account.

  • Maintain visibility of security related ITT issues and ensure these are driven to conclusion.

  • Provide appropriate presentations for the account or client management on operational security posture and/or current activities as required.

Teaming / Collaborative Working


  • Where required oversee, coach and develop security knowledge / activities performed by staff inside and outside of the competency. 

  • Provide security-related education to enhance security awareness and knowledge of customer applicable security policies and processes.

  • Complete assigned Security project tasks within set timescales.

  • Demonstrate the required levels of leadership and communications (both oral and written) in addition to security professional skills.

  • Assist the account to complete FICS compliance activities by providing guidance and helping to resolve security related issues arising from compliance testing.

  • Help resolve health check queries / problems and assist in the roll-out of new automated health checking tools e.g. SCM,

  • Understand and be competent in the use of all IT Security related repositories e.g. CIRATS, CEP, SESDR, SCREEN, GSD331 Repository and eBHS databases (where appropriate) .

Required Technical and Professional Expertise


  • Be responsible for ensuring the implementation and management of additional appropriate operational security activities, processes and policies e.g. ITCS104, iSeC, eBH policy, Security Incident Management Process, APAR, etc…

  • Schedule and minute monthly account security status meetings to review any risks, issues, incidents, outstanding activities, current and planned changes, security failings etc…

  • Understand Security weaknesses on the account and proactively drive through to conclusion action plans to resolve.

  • Escalate all “stalled” risks, issues etc… which require fresh focus to ensure security activities are resolved.

  • Provide accurate and timely Security KPI data which reflects the true security posture of the account.

  • Maintain visibility of security related ITT issues and ensure these are driven to conclusion.

  • Provide appropriate presentations for the account or client management on operational security posture and/or current activities as required.

Preferred Technical and Professional Experience


  • Be responsible for ensuring the implementation and management of additional appropriate operational security activities, processes and policies e.g. ITCS104, iSeC, eBH policy, Security Incident Management Process, APAR, etc…

  • Schedule and minute monthly account security status meetings to review any risks, issues, incidents, outstanding activities, current and planned changes, security failings etc…

  • Understand Security weaknesses on the account and proactively drive through to conclusion action plans to resolve.

  • Escalate all “stalled” risks, issues etc… which require fresh focus to ensure security activities are resolved.

  • Provide accurate and timely Security KPI data which reflects the true security posture of the account.

  • Maintain visibility of security related ITT issues and ensure these are driven to conclusion.

  • Provide appropriate presentations for the account or client management on operational security posture and/or current activities as required.

Required Education

Bachelor’s Degree


Preferred Education

Bachelor’s Degree


Travel Required

No Travel


Is Extensive Time Away From Home Required?

No


EO Statement

IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.


Eligibility Requirements


  • Schedule and minute monthly account security status meetings to review any risks, issues, incidents, outstanding activities, current and planned changes, security failings etc…

  • Understand Security weaknesses on the account and proactively drive through to conclusion action plans to resolve.

  • Escalate all “stalled” risks, issues etc… which require fresh focus to ensure security activities are resolved.

Primary job category

Technical Services


Growth Play

None



Source link



Posted by at January 18, 2016

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)
Copyright © 2016 Latest Jobs in Malaysia 2025 - Job vacancies in Malaysia- EjobsinMalaysia All Right Reserved
Posts RSS
Comments RSS