Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic
Kang Sovathnak

Kang Sovathnak

Phnom Penh

Summary

Dynamic Information Security leader with extensive experience at Cambodia Beverage Company, adept in risk management and compliance. Proven track record in developing strategic security frameworks and enhancing organizational awareness. Skilled in personal data management and effective communication with senior leadership, driving security initiatives that protect vital assets and ensure regulatory adherence.

Overview

10
10
years of professional experience
1
1
Certification

Work History

Head of Information Security & Risk Management

Cambodia Beverage Company
Phnom Penh
06.2023 - Current
  • Company Overview: Cambodia Beverage Company.|Phnom Penh.|https://cbcl.com.kh
  • Develop, implement, and monitor a strategic security and IT risk management program.
  • Develop a security management framework
  • Work directly with the business units to facilitate risk management program
  • Provide leadership to the security organization.
  • Information security budget management
  • Partner with business leaders to raise awareness of risk management concerns
  • Ensure that the company meets the compliance standards, laws, and regulations.
  • Acting as Data Protection Officer (DPO) to ensure that company data is handled properly and complies with data protection privacy laws and frameworks.
  • Cambodia Beverage Company.| Phnom Penh |https://cbcl.com.kh

IT Security & Governance Supervisor

Cam GSM Co,LTD
Phnom Penh
09.2020 - 06.2023
  • Company Overview: CellCard| Phnom Penh |https://cellcard.com.kh
  • Develops, operates and manages comprehensive Information Security strategies and programs to prioritize and mitigate business risk
  • Information Security Policies and Procedures development
  • Manages the risk acceptance process to ensure the implications of risk acceptance are understood, risks are accepted at the correct level within the organization, and risk acceptances are tracked and reported on throughout their lifecycle
  • Perform governance and oversight of the design and operation of the enterprise’s security solutions
  • Information Security budget management
  • Perform security assessments, access reviews, and gap analyses for various internal and external systems as well as third-party providers
  • Review and approve system / network configuration changes, system patches and updates to ensure company information and IT assets are appropriately secure, and compliant with federal regulations and industry-best security practices
  • Coordinate disaster recovery planning, testing and execution
  • Update and maintain disaster recovery plans
  • CellCard| Phnom Penh |https://cellcard.com.kh

Supervisor, Information Security

Prudential Cambodia
Phnom Penh
11.2019 - 08.2020
  • Company Overview: Prudential Cambodia| Phnom Penh |https://prudential.com.kh
  • Support Audit activities
  • Interface with internal/external auditors and regulatory agencies
  • Support with preparations for IT Audit
  • Assist in the development of audit management comments
  • Follow-up on audit remediation
  • Identification of security risk; vulnerability and control assessments
  • Implementation of (Group) governance and security standards
  • Key Risk and Department Risk Register
  • Develop Information Security Policy aligned with ISO/IEC 27001 Standard
  • Security advice e.g
  • For new software and hardware or third-parties
  • Build up Information Risk Policy
  • Coordination of security enhancement actions
  • Setup Risk Indicators and metrics for company to make a quarterly report send to EXCO team
  • Independent oversight on security operations such as e.g
  • Patch management
  • Disaster Recovery planning
  • Conduct Policy Assurance program
  • Security incident management
  • Staff security training and awareness
  • Team and people management (team of 2 staff)
  • Prudential Cambodia| Phnom Penh |https://prudential.com.kh

Network and Security Manager

NP Secure Co,LTD
Phnom Penh
01.2017 - 10.2019
  • Company Overview: NP Secure Co,LTD| Phnom Penh |http://www.np-secure.com/
  • Manage Network and Security team to Solving issues, implement projects
  • Network and datacenter design and consultation
  • Work as Pre-Sale for presentation new products and consult with customers
  • Implementation and configuration complete infrastructure networks and servers
  • Writing proposals/administration documents/training after implementations
  • Maintaining staff by recruiting, selecting, orienting, and training employees, maintain a safe and secure work environment; developing personal growth opportunities
  • NP Secure Co,LTD| Phnom Penh |http://www.np-secure.com/

Senior Network Engineer

Cambodian SingMeng Telemedia
Phnom Penh
03.2015 - 12.2016
  • Company Overview: Cambodian SingMeng Telemedia | Phnom Penh |http://www.smtelemedia.com/
  • Team Lead to reach the target
  • Work with various vendors for upgrade network changes
  • Work with Enterprise customers for Distributing SingMeng's Service
  • Project Management with Enterprise customers and vendors
  • Design and implement Layer 2 MPLS for customers
  • IP Planning, Design and implement of Core Network
  • BGP, MPLS , ISIS, OSPF, .
  • Implement and troubleshooting
  • Work with upstream provider for troubleshooting and resolution network problems
  • Cambodian SingMeng Telemedia | Phnom Penh |http://www.smtelemedia.com/

Education

Master of Science - Information Technology

Asia Euro University
Phnom Penh
01.2020

Bachelor of Science - Information Systems

Royal University of Law And Economic
Phnom Penh
01.2017

High School Diploma -

Australia Center For Education
Phnom Penh
01.2016

Associate of Science -

Sunrise Institute
Phnom Penh
01.2016

Skills

  • Risk Management
  • Leadership
  • Personal Data Management
  • Compliance
  • Communicate to senior leadership, board level
  • Recordkeeping
  • Problem-solving

Certification

  • Certified Chief Information Security Officer (C|CISO)
  • COBIT5 Foundation
  • Cisco Certified Network Associate(CCNA)
  • Cisco implement IP Routing (CCNP Route)
  • Cisco CCNA Security
  • International English Language Testing System(IELTS)
  • Certified Ethical Hacker Version 10.
  • Certified EC Council Instructor
  • ISO/IEC 27001 Lead Implementer

Timeline

Head of Information Security & Risk Management

Cambodia Beverage Company
06.2023 - Current

IT Security & Governance Supervisor

Cam GSM Co,LTD
09.2020 - 06.2023

Supervisor, Information Security

Prudential Cambodia
11.2019 - 08.2020

Network and Security Manager

NP Secure Co,LTD
01.2017 - 10.2019

Senior Network Engineer

Cambodian SingMeng Telemedia
03.2015 - 12.2016

Master of Science - Information Technology

Asia Euro University

Bachelor of Science - Information Systems

Royal University of Law And Economic

High School Diploma -

Australia Center For Education

Associate of Science -

Sunrise Institute

Similar Profiles

  • Sean Sreylot

    Sean SreylotSean Sreylot

    Production Team Leader at Cambodia Beverage CompanyProduction Team Leader at Cambodia Beverage Company

    View Profile
  • Ruth Coleman

    Ruth ColemanRuth Coleman

    Encompass Support at The Beverage Market DBA Capitol Beverage CompanyEncompass Support at The Beverage Market DBA Capitol Beverage Company

    View Profile
  • David Iverson

    David IversonDavid Iverson

    Forklift Operator at Turner Beverage Company Inc.Forklift Operator at Turner Beverage Company Inc.

    View Profile
Kang Sovathnak