Security Compliance Officer (ISO27001)

A leading organisation in Taipei is seeking a Security Compliance Officer to join their team and play a pivotal role in shaping the future of information security and compliance. This opportunity offers you the chance to work at the intersection of business objectives and pragmatic risk management, where your expertise will directly influence executive decision-making and safeguard critical infrastructure.

Salary: Competitive and based on experience

Location: Taipei

Keywords: cybersecurity, risk management, compliance, collaboration, stakeholder engagement, project delivery, information security, global teamwork, structured communication, business alignment

What you'll do:

• Develop, implement, and maintain comprehensive security compliance programmes aligned with international standards such as ISO 27001/27017/27701/42001 to ensure organisational resilience.
• Conduct regular risk assessments and audits across multiple departments to identify vulnerabilities, recommend mitigation strategies, and monitor remediation progress.
• Collaborate closely with cross-functional teams—including IT, operations, legal, and executive leadership—to align security protocols with evolving business objectives.
• Lead the preparation for external audits and certification processes by coordinating documentation, evidence gathering, and stakeholder briefings.
• Translate complex technical requirements into clear policies and procedures that are accessible to both technical and non-technical audiences.
• Advise senior management on emerging threats, regulatory changes, and best practices in cybersecurity governance to support informed decision-making.
• Oversee incident response planning and disaster recovery exercises to ensure readiness for potential security breaches or disruptions.
• Drive process optimisation initiatives within the compliance function to enhance efficiency, accuracy, and transparency of reporting frameworks.
• Support presales activities by contributing to bid management (RFP/RFI), solution design proposals, and client-facing presentations related to security compliance.
• Foster a culture of continuous improvement by mentoring colleagues on compliance topics and promoting awareness throughout the organisation.

What you bring:

• Proven experience in developing and managing security compliance programmes within complex organisations spanning multiple sectors such as government or technology.
• Extensive knowledge of international standards including ISO 27001/27017/27701/42001 as well as hands-on experience with audit preparation and certification processes.
• Strong background in risk assessment methodologies coupled with the ability to translate findings into actionable recommendations for diverse stakeholders.
• Exceptional interpersonal skills enabling effective collaboration with cross-functional teams globally (EMEA, US, APAC) as well as clear communication with C-level executives.
• Demonstrated ability to lead large-scale projects involving information security architecture redesigns or disaster recovery planning initiatives.
• Relevant certifications such as CISSP (Certified Information Systems Security Professional), PMP (Project Management Professional), CEH (Certified Ethical Hacker), or ITIL 4 are highly desirable.
• Experience supporting presales activities through solution design input or bid management is considered an advantage but not essential.
• Excellent written and verbal communication skills in both Mandarin and English are required for successful stakeholder engagement.
• A commitment to continuous learning demonstrated by ongoing education or participation in industry forums is valued.

What sets this company apart:

This organisation stands out for its unwavering dedication to advancing cybersecurity maturity while balancing business agility with robust risk management practices. Employees benefit from flexible working arrangements that promote work-life harmony alongside generous training opportunities designed to keep skills sharp amid evolving threats. The leadership team is known for its supportive approach—valuing open dialogue, transparent feedback loops, and shared successes—which fosters a sense of belonging regardless of department or tenure. Exposure to high-impact projects across government agencies, multinational corporations, and critical infrastructure providers ensures your work remains meaningful while offering ample room for personal growth. The company’s inclusive culture encourages knowledge sharing at every level so you can learn from peers who are equally passionate about protecting what matters most.

What's next:

If you are ready to make a lasting impact on organisational resilience while growing your career within a supportive network of professionals—this is your moment!

Apply today by clicking on the link provided; take the next step towards joining an inspiring team committed to excellence in cybersecurity compliance.