Job descriptionPerform analysis, prioritization and classification of riskDraft risk scenario and provide recommendation of risk treatment planHandle day-to-day security advisory and operational requestPerform review over remediation plans artefactSchedule security checks in accordance with reporting schedulesPrepare periodic status reports for presentation to managementContinuous enhancement of existing security risk assessment processVerifies security controls are implemented accordinglyAt least 5 year working experience in IT risk assessment, including cyber risk assessment and security compliance reviewExperience in cyber security controls, processes and standards, such as NIST cybersecurity framework, CSA risk assessment guidelines, CIS controls framework or ISO / IEC 27001 standards.Strong analytical skills and ability to work independentlyGood team player as well as strong communications skills with stakeholders at all levelsPossessing at least one of the following certification CEH, CISSP, CISA, CRIS and / or related security certificationExperience in healthcare industry is an added advantageDegree in Computer Science, Engineering or equivalent