Information Security

Responsibilities-

• Responsible for implementing and continually improving policies and procedures.

• Implementing data protection (EU GDPR)

• Responsible for the ongoing maintenance and improvement of Information Security Management System in accordance with international standard ISO 27001:2013 and other standards selected by the management

• Propagation of Information Security Management System as and when deemed necessary by Transguard

• Enhancing awareness for end-users within the scope for information security and related domains

• Designing, developing and implementing processes and procedures for Information Security incident management

• Responsible for the formulation of strategy, architecture, and governance as per the local regulations and international best practices

• Highlighting to the management issues of performance and opportunities for improvement in relations to Information Security, domains, and associated services

• Supporting, exhibiting, and enhancing corporate culture that is committed to governance, risk, compliance, and information security best practices

• Making sure that the information technology policies and procedures are in compliance with the regulations

• Monitoring applicable regulatory changes and provide effective change management to address such changes

• Conducting continuous and ongoing risk assessments as per the risk management methodology

• Conducting risk assessments to evaluate the effectiveness of existing controls and determine the impact of proposed changes to business processes, applications and systems.

• Developing and communicating the risk treatment plan

• Ensuring risk and treatment plan is being followed, following up on action plans and escalation whenever necessary.