Information Security & Compliance Engineer (ISO 27001)

• AI transformation journey
• Fast paced and open for new changes/challenges
• CISSP, CISM, CCSP, or ISO 27001 Lead Implementer/Auditor

about the company
We need a dynamic, technically literate security professional with a strong IT background who can serve as our Global ISMS Management Representative under ISO/IEC 27001.

You will own the bridge between governance and technical execution. You won’t just read about security gaps discovered by auditors. You will actively architect, evaluate, and validate the actual technical solutions (from SIEM and DLP to SSE and EDR) to close them.

about the job

• Lead the international ISMS framework as the primary representative, keeping all risk registers and policies sharp to guarantee seamless passes for ISO 27001, SOC 1/2, and OSPAR.
• Spot technical vulnerabilities stemming from audits or business scaling, then spearhead proof-of-concepts for advanced tools (like SIEM, PAM, and EDR) to validate them before infrastructure deployment.
• Steer the monitoring ecosystem by decoding complex alerts, threat intelligence, and vulnerability data from SIEM, EDR, and DLP tools into tactical defense strategies.
• Command emergency response efforts from simulated exercises to full post-incident reviews, while scheduling routine penetration tests and vulnerability assessments.
• Team up with DevOps, R&D, and Infrastructure squads to weave secure-by-design principles right into the DNA of the product platforms.
• Act as the technical authority on security, handling high-stakes client questionnaires and reviewing contract clauses to help close business deals.

skills and experience required
Minimum 5 years of experience in information security, successfully balancing technical IT operations with governance.

Direct experience serving as an ISO27001 ISMS management representative and coordinating assurance audits like SOC1/SOC2.

Ability to confidently interpret cloud security logs, SIEM alerts, EDR findings, and vulnerability scans. You should understand cloud architectures (AWS/Alibaba Cloud preferred) and core security domains (IAM, encryption, network security).

whats an offer
The permanent opportunity for an Information Security & Compliance Engineer (ISO 27001), will pay a salary range of $ 7,000 - $ 9,000 plus benefits.

To apply online please use the 'apply' function, alternatively you can reach me at
https://www.linkedin.com/in/Oliviatoh-032330132/. (EA: 94C3609 / R22109942)