Responsibilities

📍Assist in our security compliance programs, including ISO, PCI DSS, SOC2, etc 📍Participate in internal security and privacy assessments, internal audits, customer audits, compliance certifications, and third-party risk management 📍Provide accurate and consistent responses to customers or third-party on security compliance enquiries 📍Perform security compliance activities, including conducting annual and project risk & control assessments and third-party assessments, and managing remediation activities 📍Design necessary control required to comply with international standards and local regulations 📍Evaluate technical and organisational controls to ensure effectiveness and compliance, including managing the control remediation efforts

Requirements

📍Experience in information security, IT audit or IT risk management-related roles. 📍Prefer experience with one or more of the following: conducting security control assessments, risk assessments or audits. 📍Prefer experience with any of the following: ISO27001 and ISO27701 standards, and data protection regulations and requirements. 📍Holders of security-related certifications/qualifications (CISSP, CRISC, CISM, CISA, ISO27001 LA, PCI QSA, CIPT, CIPP/E, etc.) will be an advantage. 📍Experience with the French Network and Information Security Agency (ANSSI) standards and guidelines, including PASSI audits. 📍Minimum 3 years of hands-on experience in a fast-paced working environment