job description
Join Shopee as an Automation Compliance Engineer in our 2026 Graduate Program and become a key player in ensuring IT compliance across our cutting-edge e-commerce ecosystem. As part of our "IT doctors" team, youâll collaborate with cross-functional business units to design, implement, and optimize automated compliance solutions that mitigate risks while driving operational efficiency.
Based in the vibrant hub of Bali, youâll work in a dynamic environment where innovation meets regulatory excellence. This role offers a unique opportunity to bridge the gap between IT governance and business agility, ensuring our systems adhere to global standards (e.g., ISO 27001, SOC 2, GDPR) while leveraging automation to streamline audits and reporting.
Ideal for recent graduates with a passion for cybersecurity, risk management, or IT compliance, this position provides mentorship, hands-on experience with industry-leading tools, and a pathway to leadership in a fast-growing tech company.
Responsibility
- Develop and maintain automated compliance monitoring systems to track adherence to internal policies and external regulations.
- Collaborate with IT and business teams to identify compliance gaps and implement remediation strategies.
- Design and execute risk assessments and audit workflows using scripting (Python, Bash) and compliance tools (e.g., ServiceNow, RSA Archer).
- Create and update compliance documentation, including policies, procedures, and evidence repositories.
- Monitor and report on IT control effectiveness to stakeholders, highlighting trends and improvement areas.
- Automate evidence collection for third-party audits (e.g., PCI DSS, SOX) to reduce manual effort.
- Stay current with emerging compliance frameworks and industry best practices, proposing enhancements to existing processes.
- Participate in incident response activities, ensuring compliance violations are addressed promptly.
Qualifications
- Bachelorâs or Masterâs degree in Computer Science, Information Security, IT Governance, or a related field (2026 graduates encouraged to apply).
- Basic knowledge of compliance standards (e.g., ISO 27001, NIST, GDPR) and IT controls.
- Familiarity with scripting languages (Python, PowerShell) or automation tools (Ansible, Terraform).
- Strong analytical and problem-solving skills with attention to detail.
- Excellent communication skills to articulate compliance requirements to non-technical stakeholders.
- Experience with SIEM tools (e.g., Splunk) or GRC platforms is a plus.
- Certifications such as CISA, CISSP, or CompTIA Security+ are advantageous.
- Ability to work in a fast-paced, collaborative environment with a proactive mindset.