Enable job alerts via email!
Security Compliance Analyst / Manager
P2P
Kuala Lumpur
On-site
MYR 60,000 - 100,000
Full time
8 days ago
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Create a job specific, tailored resume for higher success rate.
Job summary
A leading company in the technology sector seeks a Security Compliance Analyst / Manager in Kuala Lumpur. This role focuses on security compliance activities and involves advising on security requirements, managing compliance assessments, and fostering automation initiatives. The ideal candidate will have extensive experience in information security compliance, strong communication skills, and a commitment to continuous learning.
Qualifications
- 3/5 years experience in security compliance or related role.
- Hands-on experience in security control assessments.
- Experience with compliance automation tools and cloud environments.
Responsibilities
- Assist with security compliance programs (ISO27001, PCI-DSS, etc.).
- Evaluate technical controls for compliance effectiveness.
- Drive automation solutions for compliance monitoring.
Skills
Information security compliance
Risk management
Automation solutions
Communication
Analytical mindset
Education
CISSP
CISM
CISA
ISO27001 LA
Tools
GRC platforms
Job description
As our Security Compliance Analyst / Manager, you will be tasked with security compliance activities along with our journey. You are expected to take the initiative to assist us with several security compliance programs and certifications. You are required to address and review compliance gaps and give recommendations and support on remediation activities. You will also be trusted to provide technical advice to ensure that security compliance requirements are met throughout all business units. The role will essentially combine regional support with a focus on advancing our automation initiatives.
Responsibilities
- Assist in our security compliance programs, including ISO27001, ISO27701, PCI-DSS, SOC 2, etc
- Participate in internal security and privacy assessments, internal and external audits, compliance certifications, and risk management
- Provide complete and accurate responses to internal and third-party enquiries on security compliance
- Perform security compliance assessment activities, including periodic technical, organizational, and third-party risk and control assessments, and managing remediation activities to completion
- Design necessary control required to comply with international standards and local regulations
- Evaluate technical and organisational controls to ensure effectiveness and compliance, including managing the control remediation efforts
- Identify opportunities to reduce manual effort in control testing and audit readiness through scripting and compliance tooling.
- Drive the development and implementation of automation solutions to streamline compliance monitoring, evidence collection, and reporting processes.
Requirements
- Experience in information security compliance, security operations or technology risk management, or consultation related roles.
- Prefer experience with one or more of the following: conducting security control assessments, risk assessments or implementing security solutions.
- Prefer experience with any of the following: ISO27001, ISO27701, SOC2, PCI DSS, cloud technologies, and data protection regulations and requirements.
- Holders of security-related certifications/qualifications will be an advantage: CISSP, CRISC, CISM, CISA, ISO27001 LA, CIPT, CIPP/E, or other relevant certifications
- Minimum 3 / 5 years of hands-on experience in a fast-paced working environment. Candidates with less experience will be considered for a junior position.
- Experience leading compliance initiatives and working with auditors and/or external regulators
- A role combining regional support with a focus on advancing our automation initiatives
- Proven experience with compliance automation tools and techniques (e.g., GRC platforms, scripting, security orchestration, AI, MCP, AI Agent, Agentic RAG)
- Hands-on experience in implementing automated control testing or evidence gathering in cloud or hybrid environments
- Be a friendly team player with a positive attitude
- Demonstrate a strong commitment to personal learning and development
- Detail minded with an analytical mindset
- Good communication skills with an ability to explain complex technical issues to non-technical business users
- Prior experience with project management
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Land a better
job faster
job faster
