Chia sẻ việc làm
Công việc liên quan
- CTV Kinh Doanh (Soundbox), Zalopaythành phố hồ chí minh
- Head of Internal Audit, Business Operationsthành phố hồ chí minh
- Quality Engineer, VNGGamesthành phố hồ chí minh
Tìm công việc
IT Risk & Compliance Specialist, VNGGames
OfficialBusiness OperationsRisk Management25-SRM-3274
Thành phố Hồ Chí Min...thành phố hồ chí minh
Xem mô tả bằng
Tiếng Việt
Mô tả công việc
RISK & COMPLIANCE SPECIALIST (IT RISK & COMPLIANCE)
JOB SUMMARY
The Risk & Compliance Specialist (IT RISK & COMPLIANCE) is responsible for developing, maintaining, and executing the IT Risk Management Framework to ensure effective oversight, advisory, and challenge of IT and Security processes across VNGGames. This role partners with both technical and business stakeholders to identify, assess, and mitigate IT risks while ensuring alignment and compliance with internal standards, frameworks, and best practices.
JOB DESCRIPTION:
• Ensure that IT operations are executed effectively, efficiently, and in alignment with organizational objectives while managing technology-related risks and maintaining compliance with internal standards and frameworks.
• Develop, implement, and maintain comprehensive frameworks, policies, procedures, and guidelines to support consistent and standardized IT governance, risk, and compliance practices.
• Identify, assess, prioritize, and manage IT and cybersecurity risks that could impact business objectives, critical systems, or data assets.
• Conduct regular IT risk and control assessments, perform continuous monitoring, and lead periodic reviews to evaluate the design and operating effectiveness of existing controls.
• Implement, monitor, and track risk mitigation measures, technical controls, and corrective action plans to address identified risks or compliance gaps.
• Monitor updates to IT standards, frameworks, and internal requirements; assess their impact, identify gaps, and coordinate actions to ensure continuous compliance.
• Align enterprise risk management and compliance requirements with IT policies, processes, and operational practices.
• Communicate and collaborate with stakeholders to strengthen understanding and awareness of IT risks, control effectiveness, and compliance expectations.
• Maintain the IT risk and compliance profile, including mappings of risks, controls, and assessment results, to support effective management oversight and audit readiness.
• Monitor the design and performance of IT controls to ensure standardization, consistency, and effectiveness across systems and processes, and report on key risk indicators, control performance, and emerging issues.
Yêu cầu
QUALIFICATION:
• Bachelor’s degree in Management Information Systems, Information Technology, Computer Science, or a related field.
• At least 4 years of experience in IT Risk Management, IT Governance, IT Audit, or Information Security.
• Solid understanding of IT risk management principles, internal controls, and compliance frameworks (e.g., NIST, ISO 27001, COBIT, ITIL).
• Experience with risk assessment methodologies, control testing, and issue remediation tracking.
• Strong analytical, problem-solving, and critical-thinking skills with attention to detail.
• Excellent communication and stakeholder management skills, with the ability to work effectively across technical and business teams.
• Proactive mindset, able to work independently while managing multiple priorities in a fast-paced environment.
• Professional certifications such as CRISC, CISA, CISSP, ISO 27001 Lead Implementer/Auditor, or equivalent are preferred.
Ứng tuyển thành công!
Cám ơn bạn đã quan tâm đến cơ hội nghề nghiệp tại VNG. Chúng tôi đã nhận được hồ sơ ứng tuyển của bạn. Trong trường hợp hồ sơ của bạn phù hợp với vị trí này chúng tôi sẽ liên hệ với bạn trong vòng 2 tuần. Nếu hiện tại VNG chưa có vị trí phù hợp, chúng tôi sẽ lưu trữ hồ sơ của bạn trong cơ sở dữ liệu và mời bạn cho các cơ hội khác trong tương lai.