Woowa Brothers

Overview of job

PURPOSE OF JOB

As a Mid/Senior Security Compliance Specialist, you will be responsible for managing the vulnerability management program and collaborating with cross-functional teams to ensure compliance with regulatory requirements, including NIST framework.

JOB RESPONSIBILITY

Vulnerability Management:

• Manage the vulnerability management program, including vulnerability scanning, risk assessment, and remediation efforts.
• Collaborate with IT and engineering teams to prioritize and remediate vulnerabilities.
• Develop and maintain vulnerability management policies and procedures.
• Monitor industry trends and emerging threats to continuously improve the vulnerability management program.

Compliance:

• Ensure compliance with regulatory requirements, including but not limited to NIST framework or GDPR, PCI DSS and SOC 2.
• Collaborate with cross-functional teams to develop and maintain compliance policies and procedures.
• Conduct compliance assessments and audits, and track remediation efforts.

Collaboration:

• Collaborate with IT, engineering, and product teams to ensure security is integrated into the development lifecycle.
• Work with cross-functional teams to identify and prioritize security initiatives.
• Communicate security risks and recommendations to non-technical stakeholders.
• Foster a culture of security awareness and best practices across the organization.

1. Experience self-leading growth in an environment that emphasizes autonomy and respects individual initiatives;
2. Acquire world-class knowledge accumulated from Woowa Brothers corporation with Korea's #1 food delivery app;
3. Enjoy everyday happiness at work with our witty culture, high flexibility with hybrid working model, open, young and dynamic environment,...

Education: Bachelor's degree in Computer Science, Information Security, or related fields.

Experience:

• 3+ years of experience in information security, with a focus on vulnerability management and compliance.
• Experience managing vulnerability management programs, including vulnerability scanning and risk assessment.
• Experience with compliance frameworks such as GDPR, PCI DSS, and SOC 2.

Skills/ Knowledge:

• Understanding of compliance frameworks and requirements, particularly NIST.
• Strong knowledge of vulnerability management best practices and tools.
• Understanding of compliance frameworks and requirements.
• Experience with collaboration tools and methodologies.
• Ability to communicate complex technical concepts to non-technical stakeholders.
• Good written and verbal communication skills in English and Vietnamese.

Attitude:

• Self-motivated and results-driven, with a strong sense of ownership and accountability
• Excellent problem-solving skills, with the ability to identify and resolve complex security issues
• Ability to prioritize and manage multiple tasks and projects simultaneously
• Strong attention to detail and ability to maintain accuracy while working under pressure
• Friendly and approachable, with a passion for helping others and promoting a positive work environment

If you meet the qualifications and are excited about the opportunity to work for a fast-growing food delivery startup company, please apply with your resume and cover letter.