CrawlJobs Logo

Information Security & Compliance Engineer (ISO 27001)

https://www.randstad.com Logo

Randstad

Location Icon

Location:
Singapore , Singapore

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

7000.00 - 9000.00 SGD / Month
Save Job
Save Icon
Apply Position

Job Description:

We need a dynamic, technically literate security professional with a strong IT background who can serve as our Global ISMS Management Representative under ISO/IEC 27001. You will own the bridge between governance and technical execution. You won’t just read about security gaps discovered by auditors. You will actively architect, evaluate, and validate the actual technical solutions (from SIEM and DLP to SSE and EDR) to close them.

Job Responsibility:

  • Lead the international ISMS framework as the primary representative, keeping all risk registers and policies sharp to guarantee seamless passes for ISO 27001, SOC 1/2, and OSPAR
  • Spot technical vulnerabilities stemming from audits or business scaling, then spearhead proof-of-concepts for advanced tools (like SIEM, PAM, and EDR) to validate them before infrastructure deployment
  • Steer the monitoring ecosystem by decoding complex alerts, threat intelligence, and vulnerability data from SIEM, EDR, and DLP tools into tactical defense strategies
  • Command emergency response efforts from simulated exercises to full post-incident reviews, while scheduling routine penetration tests and vulnerability assessments
  • Team up with DevOps, R&D, and Infrastructure squads to weave secure-by-design principles right into the DNA of the product platforms
  • Act as the technical authority on security, handling high-stakes client questionnaires and reviewing contract clauses to help close business deals

Requirements:

  • Minimum 5 years of experience in information security, successfully balancing technical IT operations with governance
  • Direct experience serving as an ISO27001 ISMS management representative and coordinating assurance audits like SOC1/SOC2
  • Ability to confidently interpret cloud security logs, SIEM alerts, EDR findings, and vulnerability scans
  • You should understand cloud architectures (AWS/Alibaba Cloud preferred) and core security domains (IAM, encryption, network security)
  • ISO27001, ISMS management representative, cloud security logs, SIEM alerts, EDR findings, vulnerability scans, AWS, Alibaba Cloud, SOC1/SOC2, SIEM, DLP, EDR, ISO/IEC 27001, CISSP, CISA, IT Security, security compliance, CISM, CCSP, ISO 27001 Lead Imp
  • Associate Degree/Diploma

Additional Information:

Job Posted:
May 20, 2026

Expiration:
July 12, 2026

Work Type:
On-site work
Icon
Randstad - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon
PREMIUM
More languages and countries
+ Unlock 31694 hidden job offers
Languages
English Čeština Deutsch Ελληνικά Español Français +15
Countries
United States United Kingdom India Canada Australia +
See plans
Plans from $2.99 / month

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Information Security & Compliance Engineer (ISO 27001)

Information Security Engineer

Cogoport is on a mission to bridge the $3.4 trillion Trade Knowledge and Executi...
Location
Location
India , Mumbai; Bangalore
Salary
Salary:
Not provided
https://cogoport.com/ Logo
Cogoport
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of experience in information security, cybersecurity, or security engineering
  • Strong knowledge of application security, cloud security (AWS/GCP/Azure), and network security
  • Experience with SIEM solutions, log analysis, and intrusion detection/prevention systems
  • Hands-on experience with secure coding practices in programming languages like Java, Python, or Go
  • Proficiency in security testing tools such as Burp Suite, Metasploit, OWASP ZAP, Nessus, and Wireshark
  • Understanding of encryption, authentication protocols, and PKI
  • Experience in DevSecOps and securing CI/CD pipelines
  • Strong knowledge of firewalls, VPNs, IDS/IPS, and endpoint security solutions
  • Hands-on experience with security automation and scripting
  • Excellent problem-solving skills and the ability to work in a fast-paced environment
Job Responsibility
Job Responsibility
  • Design, implement, and maintain robust security controls for applications, networks, and cloud infrastructure
  • Conduct vulnerability assessments, penetration testing, and risk analysis to identify security gaps
  • Develop and enforce secure coding practices for software development teams
  • Implement IAM (Identity & Access Management) policies and security monitoring solutions
  • Ensure compliance with security frameworks such as ISO 27001, SOC 2, GDPR, and NIST
  • Work closely with DevOps teams to integrate security into CI/CD pipelines
  • Monitor, analyze, and respond to security incidents and threats
  • Conduct threat modeling and security awareness training for engineering teams
  • Automate security processes using scripting (Python, Bash, etc.)
  • Collaborate with cross-functional teams to ensure secure architecture design
What we offer
What we offer
  • Entrepreneurial culture
  • Working with brightest minds in the industry
  • Driving digital transformation in logistics
  • Career growth
  • Fulltime
Read More
Arrow Right

Senior Information Security Compliance Analyst

We're looking for a technically grounded Senior IS Compliance Analyst who speaks...
Location
Location
United States , Chicago
Salary
Salary:
90000.00 - 130000.00 USD / Year
blumeglobal.com Logo
Blume Global
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Hands-on experience in technical security roles such as Security Operations, Incident Response, Security Analysis, penetration testing, or similar
  • Practical knowledge of security tools, SIEM platforms, vulnerability management, and security monitoring
  • and ability to read and understand security logs, configurations, and technical documentation
  • 6+ years of total experience with significant time in GRC
  • Working knowledge of ISO 27001, NIST frameworks, SOC 1/2, and GDPR requirements
  • Experience developing and implementing information security policies and controls
  • ISO 27001:2022 Lead Implementer and Lead Auditor certification
Job Responsibility
Job Responsibility
  • Lead technical security assessments and integration of acquired companies, mapping their security architectures and controls to our GRC frameworks, identifying gaps, and building remediation roadmaps that address both technical security and compliance alignment
  • Bridge technical security and business stakeholders by evaluating risks through a technical lens, working alongside security engineering teams to translate GRC requirements into practical security measures, and communicating effectively across technical and non-technical audiences
  • Develop and harmonize security policies and control frameworks across acquired entities, ensuring they're both audit ready and operationally sound, while translating between technical security requirements and governance documentation
  • Own customer security questionnaire responses by leveraging your hands-on security background to provide detailed, accurate answers and collaborating with infrastructure, application security, and operations teams to gather technical evidence
  • Drive continuous improvement of our GRC program through technical security enhancements, meaningful security and compliance metrics, and process improvements that increase both control effectiveness and operational efficiency
What we offer
What we offer
  • health and welfare benefits
  • tuition assistance
  • 401K savings and other retirement programs
  • employee assistance programs
Read More
Arrow Right

Director of Information Security

Jeeves is looking for a visionary and hands-on Director of Information Security ...
Location
Location
Mexico , Mexico City
Salary
Salary:
Not provided
tryjeeves.com Logo
Jeeves
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Security, or a related field
  • Master's degree preferred
  • 10+ years of progressive experience in information security
  • At least 5 years in a leadership or management role, preferably within a B2B SaaS or FinTech environment
  • Proven experience operating in a global organization with a strong understanding of diverse regulatory landscapes across North America, EMEA, and Latin America (Mexico, Colombia, Brazil)
  • Strong understanding of financial industry security regulations and compliance frameworks (e.g., PCI DSS, SOC 2, ISO 27001, NIST Cybersecurity Framework, GDPR, LGPD)
  • Deep technical expertise across a broad range of security domains, including network security, cloud security (AWS, Azure, GCP), application security, data security, identity and access management, and incident response
  • Experience with various security tools and technologies (SIEM, EDR, WAF, DLP, vulnerability scanners, etc.)
  • Excellent communication, interpersonal, and presentation skills, with the ability to articulate complex security concepts to technical and non-technical audiences, including executive leadership
  • Strong analytical and problem-solving skills, with a proactive and pragmatic approach to security
Job Responsibility
Job Responsibility
  • Develop, implement, and maintain a robust global information security strategy aligned with business objectives, regulatory requirements, and industry best practices
  • Lead the evolution of our security roadmap, identifying emerging threats, vulnerabilities, and opportunities for improvement
  • Provide expert guidance and leadership on all aspects of information security to executive management and key stakeholders
  • Oversee the design, implementation, and continuous improvement of security policies, standards, procedures, and guidelines across the organization
  • Manage and mature our security awareness and training programs for all employees
  • Develop and manage the information security budget and resource allocation
  • Establish and maintain an enterprise-wide information security risk management framework, conducting regular risk assessments and managing mitigation plans
  • Ensure compliance with relevant international, regional, and local data privacy and security regulations
  • Lead and coordinate external security audits and assessments
  • Oversee security operations, including vulnerability management, penetration testing, security monitoring, and incident detection and response
  • Fulltime
Read More
Arrow Right

Information Security Risk Lead

The Information Security Risk Lead is responsible for driving efforts to support...
Location
Location
Thailand , Bangkok
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master’s/Bachelor’s/University degree or equivalent experience in Computer Science, Cyber Security, Computer/Information Engineering, Information Technology or a related discipline is preferred
  • One or more industry-recognized cybersecurity-related certifications such as CISSP, CISA, CISM, CRISC, ISO 27001
  • 6 - 10 years or above of relevant experience in Cyber Security Management / Cyber Security Operations / Technology Risk Management / Third-party Risk Management or IT Audit, preferably with experience gained from banking / finance services industry / consultancy / control compliance or legal disciplines
  • Experience in assessing cyber regulatory compliance from BOT, SEC etc.
  • Strong understanding of International Standards/Frameworks such as: NIST, ISO 27001series, COBIT, CIS, GDPR, DORA, etc.
  • Proficient in interpreting and applying policies, standards and procedures
  • Excellent project management and organizational skills (PMP, PRINCE2, etc. is a plus)
  • Strong consultation, reporting writing and communication skills with highly proficiency in both spoken and written English and Thai
  • Thai language fluency is a must.
Job Responsibility
Job Responsibility
  • Manage and validate deliverables of all Information Security (IS) programs, ensuring closure per agreed timelines and goals
  • Engagement with local regulators BOT, SEC, TB-CERT, Thai-CERT, MDES, NCSA, etc. on IS related matters
  • Manage regulatory exams and internal & external audits
  • Work closely with Global & Regional Information Security teams to improve processes and reduce risk, and support the IS regulatory related activities for Thailand
  • Manage internal/external resources to organize cyber-attack simulations exercise, coordinating and overseeing vulnerability, mitigation/remediation/correction action plans, and issues management process
  • Accountable for delivery of the associated remediation from regulatory assessments
  • Proficiency in preparing periodic updates / reports / presentation deck for both internal stakeholders and regulators
  • Provide timely and appropriate updates to regional and global stakeholders
  • escalate issues in a timely manner to senior management
  • Build and develop partnerships with business, IT, risk, compliance, IS, senior management staff and stakeholders
  • Fulltime
Read More
Arrow Right

Infrastructure & DevOps Engineer (Security‑Focused)

We’re looking for a versatile technical profile to join us full-time, with skill...
Location
Location
France , Lyon
Salary
Salary:
Not provided
hawkcell.com Logo
HawkCell
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2–4 years of experience in system administration, security, or DevOps
  • Strong scripting and infrastructure-as-code skills
  • Familiar with VPN configuration, endpoint management, and AWS services
  • Interest and experience in cybersecurity and regulatory compliance
  • Comfortable working independently across multiple domains
  • Ability to work in an international and English-first environment
Job Responsibility
Job Responsibility
  • Take ownership of AWS DevOps tasks, including deployment, maintenance, and scaling of HawkCT and HawkAI cloud infrastructures
  • Manage IPSec tunnel setups and collaborate with client IT departments to ensure secure and stable connectivity
  • Oversee IT infrastructure across multiple office locations, including VPNs (Marcy-Vaise, Grosse Bertha), Synology, and individual VPNs to devices
  • Improve and enforce standardized configuration policies using NinjaOne for all categories of devices (Mac/Windows, internal/external)
  • Contribute to the development of an on-premise version of HawkAI for clinics with limited internet access
  • Enhance system monitoring, ensuring robust and responsive infrastructure performance
  • Collaborate with the team to implement a secured public testing version of HawkAI, aligned with suggestions from internal stakeholders
  • Support the development of HawkAI with improvements in processing parallelization (by slice and by sequence)
  • Participate in securing cloud environments, ensuring data encryption, implementing intrusion detection systems, and overall hardening of infrastructure
  • Perform monthly vulnerability assessments on Python packages and third-party dependencies
What we offer
What we offer
  • A mission to revolutionize the animal healthcare industry
  • A great and ambitious team to grow with
  • An international culture with 10+ nationalities in the team
  • An amazing office for you to share with other Hawkstars in Lyon, France
  • Fulltime
Read More
Arrow Right

Sr. Security Engineer

The position of Security Engineer involves performing professional security anal...
Location
Location
United States , Chicago
Salary
Salary:
130000.00 - 150000.00 USD / Year
blumeglobal.com Logo
Blume Global
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 8 years’ experience working on Information Security
  • Experience with cybersecurity requirement and analysis
  • Experience with Linux/Unix and windows security patch management, analysis of security scans and defect eradication
  • Experience with writing/implementing security policies
  • Experience with the Apache web server and plugins and configuration
  • Networking protocol knowledge (must have): ssh, DNS, TCP/IP, HTTP, HTTPS, SSL
  • Bachelor’s degree or higher from an accredited 4 year university
  • Professional Information Security credentials (e.g. CRISC, CISM), CISSP preferred
Job Responsibility
Job Responsibility
  • Design and implement robust security architectures for cloud and on-prem environments
  • Lead incident response efforts, including investigation, containment, and remediation
  • Conduct vulnerability assessments and penetration testing across systems and applications
  • Develop and enforce security policies, standards, and procedures
  • Manage and optimize SIEM, IDS/IPS, firewalls, and endpoint protection platforms
  • Collaborate with DevOps and IT teams to integrate security into CI/CD pipelines
  • Monitor threat intelligence feeds and apply insights to strengthen defenses
  • Provide mentorship and technical guidance to junior engineers
  • Ensure compliance with frameworks such as NIST, ISO 27001, etc
  • Prepare detailed reports for executive leadership and auditors
What we offer
What we offer
  • health and welfare benefits
  • tuition assistance
  • 401K savings and other retirement programs
  • employee assistance programs
Read More
Arrow Right

Security Operation Engineer

The Security Operation Engineer is responsible for ensuring the security and int...
Location
Location
Malaysia , Kuala Lumpur
Salary
Salary:
Not provided
https://www.allianz.com Logo
Allianz
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in computer science, information technology, cybersecurity, or a related field
  • Proven experience in information security, network security, or a related role
  • Strong understanding of security principles, practices, and technologies
  • Experience with security monitoring and incident response tools and technologies
  • Proficiency in scripting or programming languages (e.g., Python, PowerShell) for automation tasks
  • Familiarity with cloud security and security frameworks (e.g., NIST, ISO 27001)
  • Strong analytical and problem-solving skills
  • Excellent communication and interpersonal skills
  • Ability to work independently and as part of a team
  • Certifications in security or related areas (e.g., Certified Information Systems Security Professional - CISSP, Certified Ethical Hacker - CEH) are a plus
Job Responsibility
Job Responsibility
  • Monitor security systems and alerts to detect and respond to potential security incidents and threats
  • Investigate and respond to security incidents, conducting root cause analysis and implementing corrective actions
  • Conduct regular vulnerability assessments and penetration tests to identify and remediate security weaknesses
  • Deploy, configure, and maintain security tools and technologies, such as firewalls, intrusion detection/prevention systems, endpoint security, and SIEM solutions
  • Assist in the development and enforcement of security policies, procedures, and standards to ensure compliance with industry regulations and best practices
  • Maintain accurate documentation of security incidents, processes, and configurations
  • Work closely with IT, network, and application teams to ensure security is integrated into all aspects of the organization's technology environment
  • Stay up-to-date with emerging security threats and trends, and recommend enhancements to improve the organization's security posture
  • Completing projects on various issues when needed.
What we offer
What we offer
  • Diverse and inclusive workforce
  • Equal opportunity employer
  • Support for employees and their ambitions.
  • Fulltime
Read More
Arrow Right

Cyber Security Engineer

We are looking for a highly skilled Cyber Security Engineer to join our team in ...
Location
Location
United States , Mesa
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Security, or a related field
  • 3+ years of experience in Cyber Security, information security, or network security roles
  • Proficiency with security tools such as firewalls, intrusion detection/prevention systems (IDS/IPS), and SIEM platforms
  • Strong understanding of Cyber Security principles, including threat analysis, incident response, and vulnerability assessments
  • Strong understanding of secure avionics networks (ARINC 429, MIL-STD-1553, CAN Bus)
  • Familiarity with industry regulations and compliance standards (e.g., ISO 27001, NIST, GDPR)
  • Certifications such as CISSP, CEH, or CISM are highly desirable
  • Ability to obtain Security Clearance.
Job Responsibility
Job Responsibility
  • Assist in development and maintenance of incident response plans
  • Conduct forensic analysis of systems and networks as they relate to projects
  • Stay current on cyber threats and attack techniques
  • Collaborate with external partners to investigate incidents
  • Identify vulnerabilities and assess risks
  • Implement security measures per project requirements
  • Secure aircraft, satellites, UAVs, and military-grade embedded systems
  • Ensure resilience against cyber warfare tactics (e.g., jamming, spoofing, malware injection)
  • Monitor for signs of intrusion or malicious activity
  • Protect real-time operating systems (RTOS) used in aircraft and military-grade hardware
What we offer
What we offer
  • Medical, vision, dental, and life and disability insurance
  • Eligible to enroll in company 401(k) plan
  • Free online training.
  • Fulltime
Read More
Arrow Right