Description of the Company’s background
Xiaomi Corporation was founded in April 2010 and listed on the Main Board of the Hong Kong Stock Exchange on July 9, 2018. Xiaomi is a consumer electronics and smart manufacturing company with smartphones and smart hardware connected by an IoT platform at its core.
Embracing our vision of “Make friends with users and be the coolest company in the users’ hearts”, Xiaomi continuously pursues innovations, high-quality user experience and operational efficiency. The company relentlessly builds amazing products with honest prices to let everyone in the world enjoy a better life through innovative technology.
Xiaomi is one of the world's leading smartphone companies. The company’s market share in terms of smartphone shipments ranked no. 2 globally in the second quarter of 2021. The company has also established the world’s leading consumer AIoT (AI+IoT) platform, with 374.5 million smart devices connected to its platform (excluding smartphones and laptops) as of 31 March 31, 2021, excluding smartphones and laptops. Xiaomi products are present in more than 100 countries and regions around the world.
Job Description
1.Analyze management and technical controls to ensure that specific security and compliance requirements are met through the verification of documented processes, procedures, and standards to validate maintenance of secure configurations.
2.Track compliance across multiple security frameworks including ISO/IEC27xxx, NIST, GDPR, and maintain up-to-date records of requirements and corresponding mitigating controls.Monitor third-party risk assessments and assist in performing internal risk assessments.
3.Collaborate on critical IT projects to ensure that security policy/risk issues are addressed throughout the project life cycle.
4.Develop key performance metrics to track and ensure compliance with established policies and standards.Work out the realistic solution to have security risk issues and requirements fixed or fulfilled.
Job Requirements
1.Business and IT audit or compliance experience desired.Knowledge and understanding of ISO27xxx, GDPR, NIST, and SOC-2 information security standards and/or frameworks.
2.Familiar with public clouds, like AWS, Azure, etc. understand the particular security/compliance challenges to the IT infrastructure running on public cloud.
3.Ability to maintain security documentation and manuals.
4.Minimum 2 years' experience conducting IT security management.
5.High-level of attention to detail and be a self-starter with the ability to work independently, multi-task, and adjust to shifting priorities.
6.Strong oral and written communication skills.
7.Preferred Qualifications: CISA, CISSP, PMP, CIPM, ISO 27XXX or other compliance certifications.
8.Strong analytical/problem-solving skills and cross-functional expertise across multiple IT operational and security disciplines.
9.Experience executing IT, application development management, data management, incident and problem management processes.
10.ITIL experience a plusBroad and in-depth knowledge in the use of compliance monitoring and reporting platforms.
11.Working knowledge of international compliance standards and requirements.
BIPO Service (Singapore) Pte. Ltd.
EA License No. : 18S9180
