Information Security Specialist

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Information Security Specialist in Malaysia.In this role, you will join a high-performing security team focused on protecting sensitive data, strengthening compliance frameworks, and continuously improving security operations in a fast-growing, globally distributed environment. You will play a key role in shaping and maintaining a strong security posture, balancing strategic governance with hands-on execution. Working closely with cross-functional teams, you will help bridge regulatory requirements and daily technical operations. This position offers broad exposure across compliance, risk management, and incident response initiatives. You will contribute directly to business trust, operational resilience, and regulatory excellence. The environment is collaborative, innovative, and fully remote, enabling flexibility, ownership, and impact at scale.AccountabilitiesLead and maintain the Information Security Management System, ensuring ongoing alignment with industry standards and internal policiesDrive and manage compliance programs including SOC 2 Type II, ISO 27001, and NIS2, preparing and supporting audits end-to-endTranslate regulatory and compliance requirements into actionable technical and operational security controlsAssess systems, processes, and infrastructure against security frameworks and best practicesParticipate actively in risk management initiatives, incident response activities, and continuous security improvementProvide expertise and support during customer and partner due diligence processesContribute to AI security governance and collaborate closely with engineering, product, and operational teamsRequirementsProven professional experience in information security, governance, risk, and complianceStrong knowledge of compliance frameworks such as SOC 2, ISO 27001, NIS2, PCI-DSS, with hands-on audit experienceAbility to interpret regulatory standards and implement effective technical security controlsSolid experience in security risk assessment, control design, and risk mitigation strategiesExcellent communication, collaboration, and stakeholder management skillsExperience in incident management, cloud security, or AI governance is considered a plusRelevant security certifications such as CISSP, CISA, CISM, or ISO 27001 Lead Auditor or Implementer are advantageousComfortable working in remote, asynchronous, and globally distributed environmentsBenefitsCompetitive salary package aligned with global market standardsFully remote work environment with flexible working hoursFlexible paid time off policy16 weeks of paid parental leaveMental health and wellbeing support servicesStock options and long-term incentive opportunitiesLearning and development budgetHome office setup budget and IT equipmentBudget for local coworking spaces or in-person team eventsWhy Apply Through Jobgether?We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team.We appreciate your interest and wish you the best!Why Apply Through Jobgether?Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.