Security Officer

A leading organisation in the payment industry is seeking a Security Officer to join their Taipei office, offering you the opportunity to play a pivotal role in safeguarding both information and physical security across a global network. This position places you at the heart of cyber security initiatives, where your expertise will be valued in shaping and implementing robust frameworks that protect critical infrastructure and data.

Salary: Competitive and based on experience

Location: Taipei

Keywords: collaborative, dependable, supportive leadership, inclusive, flexible working opportunities, training opportunities, knowledgeable team

What you'll do:

• Develop and implement an information security framework tailored to local needs while aligning with global standards, ensuring all objectives and initiatives are met.
• Lead the creation, enhancement, and enforcement of information security policies, standards, and procedures to guarantee compliance with relevant regulations and frameworks.
• Monitor potential information security risks by planning and conducting mediation actions that proactively address vulnerabilities.
• Co-lead incident response efforts alongside domain experts during security incidents, ensuring swift resolution and minimal impact.
• Collaborate with global teams to establish and maintain a robust cyber threat intelligence system that integrates threat analysis into incident response processes.
• Stay abreast of local and international laws, regulations, industry standards such as PCI-DSS, and best practices; plan countermeasures to ensure ongoing compliance.
• Establish mechanisms for regular information security assessments and reviews covering infrastructure, projects, new technologies, external service providers, and changes related to information security.
• Provide timely responses to internal and external audit or review requests regarding information security matters.
• Oversee the maturity of information security practices within the organisation by proposing strategies for improvement and enhancement.
• Coordinate activities required for PCI-DSS compliance together with the compliance officer, including responsibility for annual recertification.

What you bring:

• At least five years of experience in information security management or related fields is essential for success in this role.
• Experience within the finance or payment industry or hands-on involvement in information security auditing or Security Operation Centre (SOC) environments is highly desirable.
• Comprehensive understanding of local and global regulations as well as industry standards such as PCI DSS, ISO 27001, NIST, CIS applicable to banking/payment sectors and web/mobile applications is required.
• Proficient knowledge of contemporary cybersecurity threats, trends, technologies—including zero trust models, firewalls, SEIM tools, VAPT methodologies, PAM solutions, AppSec protocols, CloudSec strategies (AWS/Azure Well-Architected Framework)—is expected.
• Preferred background includes Cyber Security Operations experience along with Incident Response capabilities; Forensic Investigation skills; Threat Intelligence acumen; Vulnerability Management expertise.
• Fluency in both English and Mandarin is necessary for effective communication across teams.
• Excellent communication abilities combined with attention to detail; organisational skills; positive attitude; active working manner; commitment to teamwork spirit are crucial attributes.
• Superior problem-solving aptitude coupled with analytical thinking enables you to address complex challenges efficiently while supporting others.
• Curiosity about emerging technologies paired with deep understanding of their potential implications for organisational security is highly valued.
• Holding one or more certifications such as QSA (Qualified Security Assessor), ISO 27001 Lead Auditor (LA), CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), or CISA (Certified Information Systems Auditor) would be advantageous.

What sets this company apart:

This organisation stands out as a leader in the payment industry due to its unwavering commitment to both information and physical security. Employees benefit from an inclusive culture that values collaboration across departments and geographies—ensuring everyone’s voice is heard when it comes to protecting critical assets. The company invests heavily in training opportunities so staff can stay up-to-date on the latest developments in cybersecurity. Flexible working arrangements allow employees to balance personal commitments while contributing meaningfully at work. Supportive leadership fosters an environment where knowledge sharing is encouraged—enabling individuals like yourself to grow professionally while making a tangible impact on regional operations throughout APAC. The organisation’s dedication to maintaining high standards means you’ll always have access to resources needed for success—whether it’s through mentorship programmes or participation in international projects designed to enhance overall resilience against evolving threats.

What's next:

If you are ready to make a meaningful contribution within a globally respected organisation dedicated to advancing payment industry security standards—apply now!