PRIMARY RESPONSIBILITIES: • Ensure company Information Security Policy is compliant with Macau Cyber Security Law (MCSL) and to carried out required activities accordingly. • Enforce company Information Security Policy based on industrial standards (e.g. ISO27001 latest) and best practices across all company properties and locations • Oversee security control systems to prevent or deal with violation of Information Security Policies and Standards • Review and revise Information Security policies, procedures, standards and checklists periodically to ensure compliance to the latest standards and best practices • Coordinate/support an information security awareness program to deliver risk communication, awareness and training for audiences, which may range from senior leaders to field staff • Coordinate/support internal/external audit activities; perform annual internal audit in conjunction with internal policy, regulation and governance. Ensure audit findings and corrective actions are closed out accordingly • Review change/service request tickets in ticketing system within agreed SLA • Remain informed on current standards, trends and issues in the information security industry • Ensure cloud product (e.g. AWS, Azure, Alibaba) compliance to an array of cyber-security industry frameworks • Support Information Security Operation Calendar activities • Produce required dashboard for management reviews (e. Compliance, Vulnerability reports) Skills / Competencies •Knowledge of security policies, standards, regulatory requirements such as ISO 27001, PCI-DSS, GDPR, MCSL •Fluent in of written and spoken English. Fluency in Cantonese and Mandarin will also be an advantage •Good knowledge of cloud platforms (e.g. AWS, Azure, Alibaba) a plus •Proven excellence in researching, organizing, writing, and presenting technical information via report writing and presentation (PowerPoint, Excel) •Capacity to work independently and in a team environment, with leadership ability and project management skill •Ability to multi-task and have solid project management skills. •Ability to understand the relationship between business processes, priorities, risk and their underlying technologies and security risks •Ability to keep pace with a fast pace and growing company •Strong analytical and inter-personal skills to communicate technical information to non-technical background users Interested parites please send your full resume to: HR@netcraft.com.mo All personal information collected will be used for recruitment purposes only.