IT Governance

PRTR work exclusively with leading oligopoly enterprise in Thailand looking for IT Governance in a management role.

**Key Responsibilities**

**Security Project Management**
- Overseeing the planning, execution, and monitoring of security-related projects.
- Coordinating with cross-functional teams to ensure successful project delivery.
- Developing project plans, schedules, and budgets, and tracking progress against established objectives.
- Communicating project status, risks, and issues to relevant stakeholders.
- Handling Security Risk Management.

**Identify, assess, and prioritize security risks across the organization.**
- Developing and implementing risk mitigation strategies and controls.
- Monitoring and reporting on the effectiveness of risk management activities.
- Collaborating with stakeholders to ensure a consistent approach to risk management across the organization.

**Establishment of Policies, Standards, and Procedures**
- Developing, reviewing, and maintaining security policies, standards, and procedures.
- Ensuring alignment with regulatory requirements and industry best practices.
- Collaborating with stakeholders to promote the adoption and enforcement of security policies and standards.
- Providing guidance and support to the organization in the interpretation and implementation of security policies and procedures.

**Communication and Collaboration with Technology Team**
- Effectively communicating security issues and concerns to the technology team.
- Collaborating with the technology team to develop and implement solutions to address identified security issues.
- Providing ongoing support and guidance to the technology team regarding security best practices and risk mitigation.
- Fostering a strong working relationship between the security governance function and the technology team to promote a culture of security awareness and collaboration.

**Essential Skills & Prerequisites**
- A positive, can-do attitude, who naturally expresses a high degree of empathy to others.
- Bachelor's degree in Information Security, Computer Science, or a related field.
- A minimum of 5 years of experience in information security, with a focus on security governance.
- Professional certifications such as CISSP, CISM, or CRISC are preferred.
- Strong understanding of information security principles, frameworks, and best practices.
- Experience in audit management, risk assessment, and policy development.
- Excellent project management and organizational skills.
- Strong communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams and communicate complex security issues clearly and concisely.
- Demonstrated ability to work independently and deliver results under tight deadlines.
- Talent to identify and create a broad vision for a security solution and to execute it.
- Systems Thinking - the ability to see how parts interact with the whole (big picture thinking).
- Proven experience in acting as an expert in project teams. PERSONAL SKILLS: Ability to explain your thoughts or findings also to non-technical professionals.
- Good command of written and spoken Thai and English language.