About The Team
The Technology Governance team supports the organization in managing and mitigating data security and technology control risks through strong governance, standards, and assurance practices. The team partners closely with technology and business functions to help design, implement, and operate effective security, data, and technology control frameworks.
To enhance the company’s overall security and compliance posture, the team is responsible for building and maintaining the technology and data security management framework, defining control expectations, supporting risk identification activities, and driving the consistent implementation of governance and control solutions across the organization.
The team is also accountable for developing and maintaining technology and data security policies and standards, optimizing governance and assurance processes, and supporting the operation and continuous improvement of internal governance platforms. As the organization expands its use of data, analytics, and AI-enabled capabilities, the team plays a key role in strengthening data governance and AI governance practices in partnership with business and technology owners.
About The Role
We are looking for an experienced Technology Controls Specialist to assess, design, and evaluate the effectiveness of technology, security, and data-related controls across the organization. This role works closely with control owners, engineering teams, and business stakeholders to embed governance and control requirements into day-to-day operations.
What You’ll Be Doing
-
Perform assurance reviews to assess the design and operating effectiveness of IT, security, and data-related controls against internal standards, industry best practices, and applicable regulatory or customer requirements.
-
Monitor the organization’s security and compliance posture, identifying opportunities to enhance control design, consistency, and operational effectiveness.
-
Identify control gaps and improvement areas, and partner with control owners and stakeholders to support remediation planning and implementation.
-
Analyze findings and observations from internal and external audits, certifications, and assessments, and support timely and sustainable remediation.
-
Design, implement, and maintain approaches that support continuous alignment with industry security standards and frameworks, such as ISO/IEC 27001, SOC 1/2, NIST, CIS benchmarks, and SOX.
-
Support broader technology governance and compliance initiatives, including programs related to business growth, regulatory expectations, or IPO readiness where applicable.
-
Track remediation progress and provide regular updates and reporting to management on the effectiveness of governance and assurance activities.
-
Develop, review, and refine technology governance–related policies, standards, and procedures, and provide practical implementation guidance to stakeholders.
-
Stay current on evolving industry trends, regulatory expectations, and emerging technologies to continuously strengthen the organization’s governance and assurance capabilities.
What We Look For In You
-
At least 5 years of relevant work experience, including IT audit, risk management, compliance, and security governance within large internet enterprises, blockchain companies, fintech firms, or auditing firms.
-
In-depth understanding of various IT security frameworks and compliance requirements, such as ISO 27001, COBIT, SOC 2, SOC 1, NIST, and SOX.
-
Familiarity with relevant regulatory requirements, industry best practices, and data protection regulations (e.g., GDPR, CCPA).
-
One or more certifications, such as CISA, CISSP, CRISC, CISM, or equivalent qualifications, are highly desirable.
-
Experience leading cross-functional initiatives with operational and technical teams.
-
Proficiency in speaking, reading, and writing in both English and Mandarin to collaborate effectively with global and cross-functional team members.
-
Familiarity with the risks and compliance challenges posed by emerging technologies (such as AI and blockchain) would be a plus.
-
Experience in data governance or AI governance is highly desirable.
Perks & Benefits
-
Competitive total compensation package.
-
L&D programs and Education subsidy for employees' growth and development.
-
Various team building programs and company events.
-
Wellness and meal allowances.
-
Comprehensive healthcare schemes for employees and dependants .
-
More that we love to tell you along the process!
