Security Manager(甲方經驗/ 資安合規)

An exceptional opportunity awaits for an experienced Information Security Management Manager to take the lead in shaping and safeguarding the information security landscape of a renowned AI multimedia technology group based in Taipei. This role offers you the chance to drive strategic initiatives that ensure robust compliance with international standards and global privacy regulations, while working alongside knowledgeable teams across multiple regions.

Salary: Competitive and based on experience

Location: Taipei

Keywords: security and privacy compliance, ISO 27001 and ISO 27701, risk management, cross-functional collaboration, incident-response readiness, global privacy regulations

What you'll do:

• Take ownership of the ongoing improvement of ISMS and PIMS frameworks, ensuring all practices remain compliant with ISO 27001, ISO 27701, GDPR, PDPA, and related international standards.
• Monitor regulatory updates proactively, manage both internal and external audits—including third-party assessments—and coordinate remediation plans through to successful completion.
• Conduct comprehensive enterprise-wide security and privacy risk assessments such as Business Impact Analyses (BIA) and Privacy Impact Assessments (PIA), overseeing mitigation actions to reduce organisational risk.
• Develop, update, and enforce information security and privacy policies, standards, and procedures while managing the full lifecycle of documentation across the company.
• Work collaboratively with engineering, product, and business teams to translate policies into practical controls and processes that are embedded throughout daily operations.
• Design and deliver engaging security and privacy awareness training programmes for staff at all levels, including executive briefings and incident-response exercises.
• Coordinate incident-response readiness activities such as tabletop drills, escalation workflows, post-incident reviews, ensuring swift resolution of any issues.
• Provide empathetic leadership to your team by setting clear objectives, coaching professional development pathways, managing performance reviews, and fostering a supportive work environment.
• Engage regularly with global stakeholders to ensure consistent application of security protocols across multiple jurisdictions.
• Champion a security- and privacy-first culture by promoting best practices in every aspect of organisational life.

What you bring:

• Minimum five years’ experience in information security, privacy or compliance roles with at least two years spent in a leadership capacity overseeing teams or projects.
• ISO 27001 Lead Auditor or Lead Implementer certification along with ISO 27701 Lead Auditor certification or an equivalent recognised privacy qualification.
• Comprehensive understanding of ISMS and PIMS frameworks as well as global privacy laws such as GDPR and PDPA; proven track record applying these standards within complex organisations.
• Demonstrated expertise leading enterprise-level risk assessments including BIA/PIA exercises; experience managing audits from planning through remediation phases.
• Exceptional cross-functional communication skills enabling you to produce clear documentation for both technical audiences and senior executives alike.
• Proficiency using collaboration tools like GitLab or Jira combined with solid project-management fundamentals supporting multi-team initiatives.

What sets this company apart:

Joining this organisation means becoming part of a forward-thinking technology group that has been at the forefront of digital transformation across Asia for over two decades. With nearly 500 employees spread across offices in Tokyo, Singapore, Taipei, Kaohsiung, and Hong Kong—and flagship brands serving tens of millions of consumers—the company offers unparalleled exposure to diverse industries including telecommunication, multimedia streaming services, online education platforms, fitness solutions, smart retail innovations and more. The workplace culture emphasises flexibility: whether it’s remote work options or tailored professional development plans designed around your strengths. You’ll benefit from supportive leadership committed to knowledge sharing as well as generous opportunities for training so you can continue growing your expertise. The organisation’s dedication to creating value through simple yet powerful technological solutions means your contributions will have real impact—helping clients achieve their digital ambitions while upholding the highest standards of data protection.

What's next:

If you are ready to make a meaningful difference by championing information security excellence within a vibrant multinational environment—this is your moment!

Apply today by clicking on the link below; take the next step towards joining a team where your skills are valued and your growth is supported.