Enable job alerts via email!
Data Compliance Specialist
ECARX TECHNOLOGY PTE. LTD.
Serangoon Garden Circus
On-site
SGD 60,000 - 90,000
Full time
Today
Be an early applicant
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A leading tech firm in Singapore is seeking a Cyber Security Compliance Specialist. In this role, you will be responsible for managing the global data and privacy security operations, developing comprehensive data security plans, and conducting audits to ensure compliance with cybersecurity regulations. The ideal candidate will have a strong background in cyber security and data protection standards, along with excellent communication and collaboration skills across teams.
Qualifications
- At least 3 years in cyber security compliance or data security.
- Familiar with international compliance standards like GDPR and ISO27001.
- Good English communication and logical analysis skills.
Responsibilities
- Manage the enterprise's global data and privacy security operations.
- Develop data security plans according to DPO requirements.
- Conduct audits for data security compliance globally.
Skills
Cyber security compliance
Data security management
Risk management
Law related certifications
Network security regulations
Data encryption
Tools
ISO27001
GDPR
ISO21434
TISAX
Job description
Responsibilities
- Responsible for the operation of the enterprise's global data and privacy security management system, including the formulation and optimization of detailed strategies, the implementation and promotion of data compliance policies in key areas, and other tasks;
- Develop an overall data security plan according to the requirements of the DPO, and be responsible for risk management and closed-loop handling of data security on the enterprise side;
- Responsible for conducting compliance operations regarding the implementation of regularized enterprise data security requirements, and responding to security matters and audits related to external supervision;
- Responsible for conducting reviews/assessments of matters related to enterprise data security/personal information protection on the business side, including reviews related to data security/personal information protection throughout the information system lifecycle, such as Data Protection Impact Assessment (DPIA), Transfer Impact Assessment (TIA), Data Protection Impact Assessment (PIA), Data Protection Agreement (DPA), and capability assessment reviews related to ICTS (the US ICTS Rule, i.e., the Rule on Ensuring the Security of the Information and Communication Technology and Services Supply Chain);
- Responsible for conducting internal audits of information security, data security, and privacy compliance at the company's global sites, coordinating with third-party audit or certification bodies introduced by the company, and assisting in completing audit work such as ISO 27001, ISO 27701, ISO 21434, TISAX, ESG, and ICTS equal-level protection;
- Collaborate to complete the formulation of detailed rules for safety rewards and punishments, safety assessment plans, and the implementation of assessment work;
- Responsible for regularly conducting special project training and publicity on enterprise-side data security to enhance personnel's security awareness and capabilities.
Requirements
- At least 3 years of professional work experience in cyber security compliance, or 3 years in the data security field. Cyber security: Those with certifications such as CISSP, CISA, CISM, ISO27001LA, etc. will be given priority. Law: Those holding international certifications such as Exin-DPO, CIPP/E, CIPM, etc. will be preferred;
- Familiar with or proficient in domestic and international network and data security management regulations, system standards, and compliance requirements, such as ICTS, ISO27001/27701, Information Security Level Protection, Cyber Security Law, GDPR, etc.;
- Familiar with road vehicle cyber security management standards such as ISO21434 and TISAX, and understand the supplier requirements and CSMS certification requirements in Regulations R155 and R156.
- Have a relatively comprehensive understanding of the knowledge system of cyber and data security, and be familiar with common cyber and data security technologies, products, and security solutions, such as work security, data encryption, data desensitization, firewalls, host security, and SDLC.
- Familiar with data security management systems such as DSMM, and familiar with data full lifecycle management measures and data security technical protection measures.
- Possess good written and oral English communication skills, as well as logical analysis capabilities, and be able to carry out positive and effective collaborative cooperation with both technical and non-technical teams.
Get your free, confidential resume review.
or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Michael Carter
I was stuck sending out resumes with no response until I used JobLeads. They made my resume impossible for recruiters to ignore.
Sophie Reynolds
JobLeads' resume review helped me fix critical mistakes, and I started getting interviews almost immediately!
Daniel Fischer
With JobLeads' resume review, my resume went from overlooked to interview-ready in no time!