Company Description
We are SGS – the world’s leading testing, inspection and certification company. We are recognized as the global benchmark for sustainability, quality and integrity. Our 97,000 employees operate a network of 2,650 offices and laboratories, working together to enable a better, safer and more interconnected world.
Job Description
- To ensure that all information security and cyber security management system (ISMS) audit activities are carried out as per the international and national accreditation standards.
- To ensure that the global system procedures, product procedures for ISMS (incl. local procedures requirements) are being adhered to.
- To support and provide solution to customer in terms of complaint, dispute, appeal and sales enquiries.
- To support and ensure that the ISMS audit schedule is effectively utilized and meeting the country yearly revenue business budget.
- To develop the information & cyber security (incl. digitalization) segment business growth aligned with the SGS Business budget and goal set.
- Liaising with Global Product Manager and Global ISMS Team as appropriate on any information & cyber security business and technical matter as appropriate.
- To support and coordinate the management system functions, including internal audit, management review and recommendations for continual improvement in the area of ISMS/Cyber Security scheme in which SGS Malaysia is accredited for.
- To provide auditor training, approval, development and performance monitoring as per GSP and/or GPP.
- To support, liaising with the certifying and accredited office on technical and system management issues related to ISMS and 2nd party ISMS/Cyber security scheme.
- To carry appropriate Certification Function Personnel role/responsibility (e.g. to authorize and approve ISMS proposal for all local accreditation scheme as well as oversea accreditation if qualified).
- Monitor overall certification function KPI of ISMS certification scheme. (e.g. report TAT, certificate TAT, proposal approval TAT, complaint reply TAT etc.)
- To provide reliable and necessary inputs on yearly budget for ISMS/Cyber security scheme. This includes market trend, SWOT, competitors’ market share and new business opportunities.
- To carry out function which is deemed necessary (as directed and guided by the division General Manager/Business Manager) to support the growth of ISMS/Cyber security business of SGS Knowledge division.
Qualifications
- Diploma/Degree in IT, Computer Science or equivalent in related field.
- Minimum of 5 years of related work experience in the IT / Information Security of industry.
- At least 3 years of working experience as qualified ISO 27001 or related management system Lead Auditor with a Conformity Assessment Body.
- Completed an ISMS/BCMS Lead auditor training or other recognized lead auditor training course.
Additional Information
- Hybrid working style
- Supportive colleagues
- Harmonious workplace relationship