Deskripsi Pekerjaan
Join Trends Group, Inc. as a Risk and Compliance Specialist - Applications and become a guardian of our digital ecosystem. This pivotal role focuses on ensuring our applications meet rigorous ISO 27001 compliance standards while integrating NIST framework requirements and application security best practices. You'll be instrumental in safeguarding sensitive data, mitigating risks, and maintaining regulatory compliance across our software development lifecycle. The ideal candidate thrives in dynamic environments where they can translate complex security requirements into actionable controls, conduct thorough risk assessments, and collaborate with cross-functional teams to embed security-first principles. If you're passionate about bridging the gap between compliance and application security, this role offers the opportunity to make a tangible impact on our organization's security posture and operational integrity.
Tanggung Jawab
- Conduct risk assessments and compliance audits for applications aligned with ISO 27001 and NIST frameworks
- Develop and implement application security policies, procedures, and best practices
- Collaborate with development teams to integrate security controls into SDLC processes
- Monitor compliance status and prepare detailed audit reports for stakeholders
- Remediate security gaps and implement corrective actions based on audit findings
- Stay updated on emerging threats, vulnerabilities, and regulatory changes
- Provide security awareness training to development and operations teams
- Document compliance evidence and maintain security documentation
Kualifikasi
- Bachelor's degree in Computer Science, Information Security, or related field
- Minimum 3 years of experience in application security or compliance roles
- ISO 27001 Lead Auditor or NIST Cybersecurity Framework certification preferred
- Strong knowledge of application security testing methodologies (SAST/DAST)
- Experience with risk assessment frameworks and compliance tools
- Proficiency in developing security policies and compliance documentation
- Excellent analytical skills with attention to detail
- Strong written and verbal communication skills