DUTIES:

Responsible and accountable for the proper
implementation of CSL, including day to day tasks such as planning and
coordination between various internal and external parties, preparing status
reports, ensuring key performance indicators (KPI’s) are achieved, and
escalating concerns that may lead to non-compliance.

Responsible for implementation of tools and
processes that support CSL globally, as determined by the CSL assessment
project.

Coordinates closely with other IT towers and the
business to ensure alignment of GIS expectations especially as it relates to
CSL and the APAC region’s security.

Acts as a go-to person within IT to provide
guidance, clarity and direction on GRC-related expectations and requirements.

Communicates clearly and effectively to diverse
technical staff with varying backgrounds to discuss complex problems and
resolve appropriately.

Performs research, validation and evaluation of
governance risk and compliance best practices and assist in defining strategy
and deployment planning. Responsible for maintaining a close working
relationship with the information technology organization and business
representatives in order to properly implement a program that meets business
needs.

Stays current on all enterprise and regional
application development and implementation projects to help ensure global
policies and standards are proactively and properly considered.

Provides management with accurate and complete
status information.

Maintains an understanding of key business
initiatives to provide effective consulting services, both solicited and
unsolicited.

REQUIREMENTS/QUALIFICATIONS:

Bachelor’s degree or related experience in IT,
MIS, computer science, or related technology discipline.

Strong working capability with PowerPoint, MS
Word and MS Excel.

Experience with manufacturing ERP systems,
including SAP and QAD (Mfg Pro).

Must have working knowledge and experience with
the requirements and implementation of Chinese Cybersecurity Law or extensive
experience in security architecture.

Must have appropriate executive presence,
professionalism, and communication skills to coordinate with various levels of
IT and operational leaders.

Minimum 8 years’ experience in IT, with direct
involvement one or more of the following: security operations, security
architecture, IT risk management and/or compliance programs, such as SOX,
and/or IT Internal/External Audit.

Professional certification of CISA, CISM, CISSP,
or related certification, or willingness to work toward this within one year.

Experience and understanding of manufacturing
industry, including how IT supports and enables the success of the business and
how security and compliance can positively and negatively impact business operations.

Strong project management skills and global
experience.

Ability to establish high levels of trust and
confidence by internal customers within IT, business and audit functions.

上班地址：上海长宁区福泉北路518号-11

所属部门：上海江森自控国际蓄电池有限公司长宁分公司
上海江森自控国际蓄电池有限公司 为江森自控集团于2005年在华投资收购的全资子公司，专业生产并销售汽车用上百种规格的蓄电池产品， 获得多类奖项与荣誉。目前上海江森自控国际蓄电池有限公司拥有中国领先的乘用车配套市场份额，同时经销商网络已经覆盖国内所有区域，以其先进的质量，管理与服务体系领导中国市场。

江森自控集团作为全球知名的蓄电池供应商，其拥有的VARTA品牌创始于1888年德国的汉诺威市，即现今江森自控蓄电池技术研发中心的所在地之一。长久以来VARTA品牌系列都是世界各大著名汽车制造商的首选，以其高端的质量与领先的技术提供适合各类型车辆使用的多种规格的蓄电池产品。目前VARTA品牌为欧洲所有的汽车制造商提供相应的配套服务，2004年在欧洲的配套市场份额高达50 ％，同时也是欧洲售后市场的领导者。 2005年，VARTA品牌产品正式在上海江森自控蓄电池有限公司投入生产，将全球蓄电池专家的产品与技术引领进中国。VARTA Asia是江森自控集团针对中国汽车使用特性与需求，在其优良的技术基础上推出的免维护蓄电池产品系列，以期服务中国广大的汽车用户。