Senior Information Security Specialist
Taipei / KKCompany - Engineering / Permanent
We are seeking a Security Engineer with experience to help KKCompany companies improve our security operations that focus on system protection, incident responding, policies and procedures, which keeps us away from the business risks.
In this role, you will work with both management support units and other business units to execute the group-level security plans. You will design security policies, implement related practices, investigate security events, and provide security training to the employees, in order to strengthen our digital resilience.
Responsibilities:Security issue managementConduct regular security assessmentsInternal security education training programDesign and execute security audit programsDesign security related policies and guidelinesDesign or review security related workflow and SOPCompliance with ISO 27000 series ISMS, NIST or other ISMS frameworks
Requirements:Excellent communication skillsExcellent English reading and good English writingExperience in ISMS implementation and complianceFamiliarity with developing and implementing security procedures and policiesFamiliarity with security frameworks like ISO 27000 series, PCI-DSS, NIST CSF2+ years of work experience in information security, auditing, compliance, or similar capacitiesB.S. or M.S degree in Computer Science, Security related field, or equivalent practical experience
Nice to have:CISSP, CISA, or CEH certificationISO/IEC 27000 series lead auditor certificationAbility to discuss, explain and summarize complex, technical topicsFamiliarity with issue tracking / project management tools like: GitLab, Trac or Jira