Security Compliance Engineer, 6months contract

Trung tâm Công nghệ Thông tin
Hồ Chí Minh
25-ITC-0777

Mô tả công việc

  • Develop, maintain, and improve security and compliance policies, procedures, and standards;
  • Support audits and assessments (e.g., SOC 2, ISO 27001, PCI-DSS, GDPR);
  • Collaborate with cross-functional teams to implement technical and organizational controls;
  • Perform internal security reviews, risk assessments, and gap analyses;
  • Track and remediate compliance findings, exceptions, and non-conformities;
  • Manage third-party risk assessments and vendor compliance;
  • Monitor security controls and generate regular compliance reports;
  • Educate employees and stakeholders on compliance and security awareness;
  • Stay updated on emerging regulations and industry best practices.

Yêu cầu công việc

  • Bachelor Information Technology, Information Security/Assurance, Engineering or related field.
  • Compliance and Privacy Expertise: Familiarity with SOC2, ISO27001, NIST frameworks, GDPR, CPRA, and other privacy standards and frameworks. Hands-on experience is a plus.
  • Technical Skills: Strong understanding of security operations, including log analysis, endpoint security, and vulnerability management.
  • Vendor Management: Experience managing vendor relationships, including performance monitoring and contract negotiation.
  • Customer Interaction: Strong communication skills, with the ability to explain complex security concepts to technical and non-technical audiences.
  • Collaborative Mindset: Proven ability to work cross-functionally with product management, engineering, and customer-facing teams.