Security Compliance Engineer, 6months contract
Trung tâm Công nghệ Thông tin
Hồ Chí Minh
25-ITC-0777
Mô tả công việc
- Develop, maintain, and improve security and compliance policies, procedures, and standards;
- Support audits and assessments (e.g., SOC 2, ISO 27001, PCI-DSS, GDPR);
- Collaborate with cross-functional teams to implement technical and organizational controls;
- Perform internal security reviews, risk assessments, and gap analyses;
- Track and remediate compliance findings, exceptions, and non-conformities;
- Manage third-party risk assessments and vendor compliance;
- Monitor security controls and generate regular compliance reports;
- Educate employees and stakeholders on compliance and security awareness;
- Stay updated on emerging regulations and industry best practices.
Yêu cầu công việc
- Bachelor Information Technology, Information Security/Assurance, Engineering or related field.
- Compliance and Privacy Expertise: Familiarity with SOC2, ISO27001, NIST frameworks, GDPR, CPRA, and other privacy standards and frameworks. Hands-on experience is a plus.
- Technical Skills: Strong understanding of security operations, including log analysis, endpoint security, and vulnerability management.
- Vendor Management: Experience managing vendor relationships, including performance monitoring and contract negotiation.
- Customer Interaction: Strong communication skills, with the ability to explain complex security concepts to technical and non-technical audiences.
- Collaborative Mindset: Proven ability to work cross-functionally with product management, engineering, and customer-facing teams.
Bạn có hứng thú với vị trí này
hoặc bạn biết một ứng viên phù hợp