CISO Office - Security Compliance & Governance Engineer
On-site · Hong Kong, Hong Kong
Job Summary
CISO Office - Security Compliance & Governance Engineer leads cross-functional audit remediation and governance programs across engineering, product, legal, and operations in a fast-moving crypto/fintech environment. Responsible for independent governance workstreams, regulator/auditor engagement, and drafting/operationalising IT governance policies. Leverages AI to accelerate compliance operations, develops governance dashboards and executive briefs, and tracks evolving regulatory requirements across active jurisdictions. Requires 8+ years in IT audit, risk management, or security governance with 3+ years leading governance programmes at large-scale internet/financial services/crypto firms; ISO 27001, SOC 1/2, PCI-DSS, GDPR/APAC data protection knowledge; experience reading code/architecture diagrams; strong English communication with Mandarin as a strong advantage. Location is Hong Kong; role entails in-person work in HK with global offices.
Required Qualifications
- 8+ years in IT audit, risk management, compliance, or security governance
- 3+ years leading governance programmes at a large-scale internet, financial services, or crypto firm
- Experience with ISO 27001, SOC 1/2, PCI-DSS, COBIT, NIST
- Familiarity with cloud environments (Alibaba Cloud, AWS, GCP) and related security tooling
- Executive-level written and verbal communication in English; Mandarin proficiency a strong advantage
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.