Great opportunity to work with a leader in the aviation industry with good advancement opportunities.
* Drive and implement security testing policy, framework and process into project life-cycle and BAU activities
* Oversee the quality of the testing delivery, including but not limited to security test documents, test scope, methodology, and test execution, to ensure the security tests are fit-for-purpose of the request
* Ensure all security requirements according to policies and guidelines are examined and feasible recommendations for any findings are provided by the relevant test vendor or internal resources
* Manage test vendors to delivery high quality in execution and test result including review of testing pass/fail criteria, ensuring standards for stakeholder acceptance is in place and ensuring that the defined security test scenarios are adequately cover the security non-functional requirements
* Adopt risk-based approach to translate testing findings into risk by the use of IT Risk management framework * Prepare and propose any security tools to facilitate qualitative and efficient security testing
* Provide requirements to facilitate testing environment establishment that enable the successful completion of the security testing * Report and record all findings and its residual risk into IT Risk Register
* Cross- team collaboration with test vendors and internal resources to improve the security testing methodology * Keep abreast of the latest trends in cyberattacks and understand the implication to testing methods
* Assist to conduct training on security testing methodologies and techniques to IT teams
* Promote secure coding best practice to developers