• Continuous review and inspection of internal information security regulations
• Maintenance of information security standard certifications such as ISMS (ISMS-P) and ISO
• Information security training for employees and one-time campaigns
• Consideration of various processes and technical means to enhance the security of the workplace environment
• Function improvement activities and inspection/diagnostic support to ensure the security of services provided by the channel team
• Support for the activities of data handlers as per Article 26 of the Personal Information Protection Act of the client
🤔What will you be responsible for?
• Continuous review and inspection of internal information security regulations
• Maintenance of information security standard certifications such as ISMS (ISMS-P) and ISO
• Information security training for employees and one-time campaigns
• Consideration of various processes and technical means to enhance the security of the workplace environment
• Function improvement activities and inspection/diagnostic support to ensure the security of services provided by the channel team
• Support for the activities of data handlers as per Article 26 of the Personal Information Protection Act of the client
📖What experience and skills are required?
• No specific major, over 3 to 7 years of experience in information security tasks
• Sufficient understanding of the Act on Promotion of Information and Communications Network and the Personal Information Protection Act
• Experience in establishing the company’s services and internal information security policies
• Experience in preparing for information security certifications such as ISMS-P and handling audits
• Experience in proactively planning and executing internal information security audits and training
• Experience in operating internal information security committees, such as the Information Security Committee
• Ability to communicate and coordinate opinions smoothly
😊It would be great if you have:
• Knowledge and experience related to SaaS business, IaaS security, and container security
• Qualifications as an ISMS-P certification auditor and various auditor certifications (support for activities based on internal criteria)
• Experience in collaborating with relevant organizations and regulatory bodies such as the Korea Internet & Security Agency and the Personal Information Protection Commission or responding to such regulations
• Experience in responding to overseas (Japan, USA, GDPR, etc.) personal information protection regulations
• Proficiency in business-level English or Japanese
🏃How is the hiring process?
• It proceeds in the order of [Document Screening] > [1st Interview] > [2nd Interview] > [Final Acceptance].
• The interview will be conducted in a Q&A format, discussing job suitability, skills, and the culture of the ChannelTalk team broadly.
• During both the 1st and 2nd interviews, both parties can freely ask questions.
• The 1st interview can also be conducted online, depending on the applicant’s environment and requests.
• Depending on the situation, 1 to 2 additional interviews may be requested.
