job description
Join Delegate CX as a Remote IT Security and Compliance Specialist and play a pivotal role in safeguarding our digital infrastructure while ensuring adherence to global security standards. Based in the vibrant regions of Bali, you’ll work in a dynamic, remote-first environment, collaborating with cross-functional teams to implement robust security protocols and maintain compliance with frameworks such as ISO 27001, SOC 2 Type 2, and other industry-leading standards.
This is a unique opportunity to contribute to a forward-thinking organization that values innovation, security, and operational excellence. Your expertise will directly impact our ability to protect sensitive data, mitigate risks, and uphold the trust of our clients and stakeholders.
If you are passionate about cybersecurity, compliance, and continuous improvement, we invite you to apply and help shape the future of secure digital operations at Delegate CX.
Responsibility
- Develop, implement, and maintain IT security policies, procedures, and controls in alignment with ISO 27001, SOC 2 Type 2, and other relevant frameworks.
- Conduct regular security audits, vulnerability assessments, and risk analyses to identify and mitigate potential threats.
- Monitor and respond to security incidents, ensuring timely resolution and minimal impact on business operations.
- Collaborate with internal teams to ensure compliance with data protection regulations and industry standards.
- Provide guidance and training to employees on security best practices and compliance requirements.
- Oversee access management, including user provisioning, deprovisioning, and role-based access control (RBAC).
- Maintain documentation of security policies, incident reports, and compliance evidence for audits.
- Stay updated on emerging security threats, trends, and technologies to proactively enhance the organization’s security posture.
Qualifications
- Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field. Relevant certifications (e.g., CISSP, CISM, ISO 27001 Lead Auditor, SOC 2) are a plus.
- Minimum of 3-5 years of experience in IT security, compliance, or risk management roles.
- In-depth knowledge of security frameworks such as ISO 27001, SOC 2 Type 2, NIST, or GDPR.
- Experience with security tools (e.g., SIEM, IDS/IPS, endpoint protection, firewalls) and vulnerability scanning.
- Strong analytical and problem-solving skills with the ability to assess and mitigate security risks.
- Excellent communication and interpersonal skills to collaborate with stakeholders at all levels.
- Ability to work independently in a remote setting while managing multiple priorities effectively.
- Familiarity with cloud security (e.g., AWS, Azure, GCP) is highly desirable.