A Global Insurance Company is looking for a talented ISO & Privacy Mark Specialist (P3) with experience in various security tasks, projects, and regulatory/audit responses, strengthening security controls and policies. 

Responsibilities

- Promoting security systems - Continuous improvement through the PDCA cycle based on ISO27K

- Respond to inquiries and requests from our businesses as part of privacy-by-design.

- Understand the business use case, identify applicable data protection law(s) and corresponding obligations, conduct privacy risk assessment to determine a risk treatment plan for new services and products.

- Develop, operate and improve different modules of our privacy program that includes our internal privacy policies, procedures and processes such as data mapping, PIA (Privacy Impact Assessment), data breach management and so on.

- Draft, amend, and improve privacy notices.

- Performing risk assessment for security exceptions and follow-up on improvement plans

【Company Details】

Our client is one of the world's largest insurance - financial groups, trusted by over 50 million customers. The company provides various financial protections including general insurance, life insurance, retirement funds, and inheritance throughout the lifetime for individual customers, small businesses, and large companies.

【Working Hours】
9:00AM - 5:00PM Mon-Fri (flextime available)

【Working Style】

Hybrid: 2 days in office and 3 days WFH every week

【Holidays】
Saturday, Sunday, and National Holidays, Year-end and New Year Holidays, Paid Holidays, Other Special Holidays

【Services / Benefits】

Social insurance, Transportation Fee, No smoking indoors allowed (Designated smoking area), etc.

- Experience with ISO work, ISSM work or Privacymark (P-mark) work

- Experience in IT/management consulting

- Experience in data protection / data privacy / data security.

- Basic knowledge of information systems/IT, or experience in system audits

- Experience in implementing ISO27K, or P-mark, or PCI-DSS, etc.