Overview
Security Compliance & Governance Engineer Jobs in Singapore, Singapore at Tbwa Chiat/Day Inc
Title: Security Compliance & Governance Engineer
Company: Tbwa Chiat/Day Inc
Location: Singapore, Singapore
Type: Full Time
Category: IT/Tech, Security
Security Compliance & Governance Engineer
OKX will be prioritizing applicants who have a current right to work in Singapore and do not require OKX’s sponsorship of a visa.
Who We Are At OKX, we believe that the future will be reshaped by crypto, contributing to every individual’s freedom. OKX is a leading crypto exchange and the developer of OKX Wallet, giving millions access to crypto trading and decentralized crypto applications (dApps). We are a trusted brand by large institutions seeking access to crypto markets, backed by our Proof of Reserves.
Our core principles are:
We Before Me, Do the Right Thing, and Get Things Done.
About the Team The Technology Governance team provides security advice and guidance across all OKX entities, supporting business growth by collaborating with all teams to help achieve their goals. This team works closely with compliance and legal teams to interpret global licensing requirements and regional regulations.
About the Opportunity Stay abreast of the latest developments in laws, regulations, policies, and information security standards related to Network Security, Data Security, and Data Protection. Ensure timely updates and maintenance of the internal information security management system. Apply for information security certifications such as ISO 27001, SOC, and PCI for our products. Advocate for and oversee the implementation of security compliance and privacy protection requirements.
Promptly address and rectify any non-compliant items. Validate and verify that the organization’s security controls meet industry requirements. Conduct thorough examinations of processes, systems, policies, procedures, network diagrams, and system configurations. Monitor business activities through
collaboration
with cross-functional team leaders to ensure ongoing compliance with external certifications.
What You’ll Be Doing Analyze and assess security and compliance gaps identified by internal and external audits.
Develop and execute remediation plans and solutions for audit findings.
Coordinate with relevant departments to implement problem fixes and governance measures.
Conduct IT security and architecture governance to ensure systems and processes comply with relevant standards and regulations.
Track remediation progress and regularly report to management on governance work progress and effectiveness.
Develop and refine IT governance-related policies and procedures (P&P), and provide implementation guidance.
Communicate effectively with external auditors and regulators, coordinating audit work.
Continuously monitor and evaluate the company’s security compliance status, proposing improvement suggestions.
Stay
up-to-date
on industry trends and best practices to drive
continuous improvement
of the company’s security compliance capabilities.
What We Look For In You At least 8 years of relevant work experience, including IT audit, risk management, compliance, and security understanding of various audit standards such as ISO 27001, COBIT, SOC2, SOC1, PCI-DSS, and NIST.Familiarity with relevant laws and regulations, including industry-specific norms and data protection regulations (e.g., GDPR).Excellent
project management
skills, able to manage multiple complex audit finding remediation plans simultaneously.
…
