Enable job alerts via email!
Data Compliance Specialist
ECARX TECHNOLOGY PTE. LTD.
Singapore
On-site
SGD 60,000 - 80,000
Full time
Today
Be an early applicant
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A global tech firm in Singapore is looking for a Data Security Compliance Officer to manage the enterprise's global data and privacy security management. Responsibilities include developing data security plans, conducting compliance audits, and enhancing personnel security awareness. Candidates should have at least 3 years of experience in cyber security compliance, relevant certifications, and excellent English communication skills. This role presents an opportunity to work in a prominent industry.
Qualifications
- At least 3 years of experience in cyber security compliance or data security.
- Certifications such as CISSP, CISA, CISM preferred.
- Familiar with GDPR, ISO standards, and ICTS.
Responsibilities
- Oversee global data security management operations.
- Develop data security plans and conduct risk management.
- Conduct reviews/assessments for data security compliance.
Skills
Cyber security compliance experience
Familiarity with international data security regulations
Knowledge of data encryption technologies
Good communication skills in English
Tools
ISO 27001
CISSP
GDPR
Job description
Responsibilities:
- Responsible for the operation of the enterprise's global data and privacy security management system, including the formulation and optimization of detailed strategies, the implementation and promotion of data compliance policies in key areas, and other tasks;
- Develop an overall data security plan according to the requirements of the DPO, and be responsible for risk management and closed-loop handling of data security on the enterprise side;
- Responsible for conducting compliance operations regarding the implementation of regularized enterprise data security requirements, and responding to security matters and audits related to external supervision;
- Responsible for conducting reviews/assessments of matters related to enterprise data security/personal information protection on the business side, including reviews related to data security/personal information protection throughout the information system lifecycle, such as Data Protection Impact Assessment (DPIA), Transfer Impact Assessment (TIA), Data Protection Impact Assessment (PIA), Data Protection Agreement (DPA), and capability assessment reviews related to ICTS (the US ICTS Rule, i.e., the Rule on Ensuring the Security of the Information and Communication Technology and Services Supply Chain);
- Responsible for conducting internal audits of information security, data security, and privacy compliance at the company's global sites, coordinating with third-party audit or certification bodies introduced by the company, and assisting in completing audit work such as ISO 27001, ISO 27701, ISO 21434, TISAX, ESG, and ICTS equal-level protection.
- Collaborate to complete the formulation of detailed rules for safety rewards and punishments, safety assessment plans, and the implementation of assessment work;
- Responsible for regularly conducting special project training and publicity on enterprise-side data security to enhance personnel's security awareness and capabilities.
Requirements:
- At least 3 years of professional work experience in cyber security compliance, or 3 years in the data security field. Cyber security: Those with certifications such as CISSP, CISA, CISM, ISO27001LA, etc. will be given priority. Law: Those holding international certifications such as Exin-DPO, CIPP/E, CIPM, etc. will be preferred;
- Familiar with or proficient in domestic and international network and data security management regulations, system standards, and compliance requirements, such as ICTS, ISO27001/27701, Information Security Level Protection, Cyber Security Law, GDPR, etc.;
- Familiar with road vehicle cyber security management standards such as ISO21434 and TISAX, and understand the supplier requirements and CSMS certification requirements in Regulations R155 and R156;
- Have a relatively comprehensive understanding of the knowledge system of cyber and data security, and be familiar with common cyber and data security technologies, products, and security solutions, such as work security, data encryption, data desensitization, firewalls, host security, and SDLC;
- Familiar with data security management systems such as DSMM, and familiar with data full lifecycle management measures and data security technical protection measures;
- Possess good written and oral English communication skills, as well as logical analysis capabilities, and be able to carry out positive and effective collaborative cooperation with both technical and non-technical teams.
Get your free, confidential resume review.
or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Michael Carter
I was stuck sending out resumes with no response until I used JobLeads. They made my resume impossible for recruiters to ignore.
Sophie Reynolds
JobLeads' resume review helped me fix critical mistakes, and I started getting interviews almost immediately!
Daniel Fischer
With JobLeads' resume review, my resume went from overlooked to interview-ready in no time!