Hero FinCorp

Lead - IT Governance, Risk and Compliance Lead

- Responsible for maintaining the Information Security Management System and sustenance of ISO 27001 certification.

- Responsible for governing Business Continuity Planning, IT Disaster Recovery planning

- Assess information security posture, identify the gaps/risks in the existing environment and develop solutions to mitigate the identified gaps/risk

- Responsible to assist in review / implement Information Security controls in areas as mentioned, but not limited to: Change management process, Incident management process, Backup process, User identity and access management, Antivirus management, SLA performance and monitoring, Media handling & Exchange of information, Physical and environmental Security, and Media & Information Handling

- Responsible to assist in developing information assets inventory and classification

- Responsible to coordinate responses to all internal and external audits on behalf of the IT and Information Security teams.

- Conduct Information Systems audits covering IT infrastructure assets

- Demonstrates ability to work independently on projects with limited supervision

- Demonstrates understanding of complex business and information technology management processes

- Demonstrates working knowledge of firm tools and methodologies that may be suitable for the engagement

- Manages day-to-day stakeholder relationships at mid and senior levels.