Information Technology Function - Cyber Security & Risk Manager
Procter and GambleGuangdongUpdate time: January 1,1
Job Description
What is Information Technology?

Information Technology (IT) at Procter & Gamble is where business, innovation and technology integrate to create a competitive advantage for P&G. Our mission is clear - you deliver IT to help P&G win with consumers. As a P&G IT professional, you are a diverse business leader who applies IT mastery to deliver game-changing, technology-driven business models and capabilities. Whether your role is to create an IT innovation strategy for a business, protect our critical information systems and assets, or manage a strategic supplier in our cutting-edge shared services organization, your technical mastery will be recognized and rewarded. Your passion for the industry will be further cultivated by our culture of continued learning and growth as an IT professional. A career in IT builds change leadership and influence skills, breadth of experience across multiple businesses, and depth of technical expertise and thought leadership.

An IT Security & Risk work can include: Strategy, Architecture, Governance, Risk management, and Threat protection, Compliance of the Company’s information, assets, infrastructure, policies and standards.

Roles include: Risk Assessment Manager, Auditor, Cyber Security Analyst and Security Architect.

General Description:
The Technical Information Security Manager (TISM) is a Corporate Functions IT Security role. The role leads the implementation of the information security program including the action plan and scorecard from a technical perspective. Provide advice, capability, governance, oversight and risk management to ensure that Information Security policy and standards are complied with for the respective business units, processes and systems. The TISM is the primary technical subject matter expert in the area of Information Security, Cyber Security, Information Systems, and technologies.

Key Responsibilities:

  • Define Cyber Security Strategy & action plans, apply, interpret and develop P&G Information Security policy and standards
  • Create security management architecture for all layers (physical security, network security, application security, information security, operation security, business continuity and disaster recovery…). Responsible for security operation for all sub-systems.
  • Lead the engagement with shared services and Corporate Information Security to deliver security solutions. Proactively detect, trace and mitigate security risks. Act as Information Security SPOC (single point of contact) in respective business unit
  • Consultant to project managers or shared service operation owner to ensure completion of Information Security Risk Assessments for new and existing projects, services and solutions.
  • Responsible to security incidents. Provide guidance and/or capability for Information Security issue resolution. Drive Compliance of P&G policy and ensure information confidential
  • Ensure new IT vendors are compliant with all P&G Information Security and Privacy requirements.

  • Bachelor's degree or above. Experience with 3~5 years of relevant IT or Information Security experience, strong risk analysis and problem solving skills, project management skills
  • Experience and Subject Matter Expertise with infrastructure technologies, esp. Database (MS SQL and Oracle) and Middleware (Webserver, Appserver, and messaging technologies), and/or development of application with security requirements. Experience with operating systems and network infrastructure is highly desirable.
  • Experience with two or more technical information security program areas, including vulnerability assessment, secure server builds; risk assessment, system security, identity and entitlement management and provisioning solutions, incident management or other technical information security management discipline is preferred. Experience with Information Security controls and ability to manage control practices. Audit experience and exposure is a plus.
  • Industry certifications are highly desired - Microsoft Certified Solution Associate (MCSA), Cisco Cyber Security Specialist (SCYBER), Certified Information Systems Security Professional (CISSP)
All of our hiring in China will follow the China Government Employment Regulation, foreign candidate applying for mainland China's position should comply with local laws and regulations on foreigner employment management, please kindly visit the following website to understand more of this regulation.

http://www.people.com.cn/zixun/flfgk/item/dwjjf/falv/2/2-1-51.html


Please kindly input your name in both Chinese characters and Pinyin when you fill in the form. Thank you!

请在下一页填写姓名时用中文字体及拼音填写。谢谢!

Get email alerts for the latest"Information Technology Function - Cyber Security & Risk Manager jobs in Guangdong"