Information Security Manager

Overview

BIPO: Shaping the Future of HR with Innovation and Global Reach

At BIPO, we are a global leader in HR services, offering innovative solutions that empower businesses to streamline and scale their operations effortlessly. Our award-winning cloud-based Human Resource Management System (HRMS) revolutionizes HR processes, making them simpler, more efficient, and cost-effective. By staying at the forefront of digital transformation, we help companies remain agile in a rapidly changing world.

Our comprehensive suite of services—including Payroll Outsourcing, Attendance Automation, HR Consulting, Recruitment & Business Process Outsourcing, and Flexible Employee Management—are designed to modernize HR functions, allowing businesses to focus on growth while we manage their HR complexities.

Why Join BIPO?

What sets BIPO apart is our dynamic, fast-paced culture where innovation thrives. We foster a work environment that values collaboration, creativity, and adaptability. Joining BIPO means being part of a global team thats passionate about pushing boundaries and shaping the future of HR. Our diverse workforce spans over 40 countries, and our APAC headquarters in Singapore, along with R&D centers in Singapore, Shanghai, Indonesia, and Malaysia, serve as the driving force behind our growth and innovation.

Since our founding in 2004, BIPO has cultivated a vast global network, delivering cutting-edge HR solutions across more than 40 countries. As we continue to grow and innovate, we’re seeking talented, ambitious individuals to join us on this exciting journey. At BIPO, you’ll have the opportunity to make a real impact, work with forward-thinking professionals, and help shape the future of HR. The possibilities are limitless—discover how you can grow with BIPO and be part of our global success story

Responsibilities

• Lead compliance audit activities (SOC, ISO 27001) for BIPO Singapore, Hong Kong, and China
• Lead internal audit activities, IT security compliance projects/activities
• Lead staff information security awareness training, phishing campaigns
• Lead incident response to security and data breach incidents and cyber security incident response exercises
• Formulation, review, and update of information security-related company policies
• Support the business team in responding to customer's questionnaires and RFP, for IT security area.
• Manage security of IT systems, review of security logs, reporting IT systems security posture
• Lead IT security/compliance projects and operations, work with IT Infra Manager and IT infra team (e.g. annual penetration testing by external vendor)
• Formulating security checklists/guidelines for BIPO products and servers.
• Performs other duties as assigned related to information security/compliance.

Skills And Experience We Value

• Bachelor's degree in Information Technology or equivalent field of study
• Experienced in all or most of these: ISO 27001 implementation and/or maintenance, information security audit, security incident response, leading cyber security tabletop exercise, IT security policies, endpoint security, vulnerability scans/management, attack surface management, third-party risk management, SIEM, data loss prevention, managing security baselines for servers and endpoints, user security awareness training, penetration testing coordination with external vendor. Experience in cloud computing and Microsoft Azure AD/Office 365 security advantageous.
• Background in IT operations advantageous (e.g., server administration, network/system security, disaster recovery, system high availability, backup operations, system monitoring, storage administration, change management, patch management).
• Strong English writing skills, effective communication skills in business environment in Chinese and English.
• Good project management skills, problem-solving skills, and documentation skills.
• Responsible, resourceful, result oriented.
• Able to respond to critical security alerts and be contactable for urgent issues outside office hours.
• Professional certifications in information security/IT internal audit advantageous.
• Strong command of the Chinese language is required to effectively communicate with Mandarin-speaking stakeholders.

Seniority level

• Executive

Employment type

• Full-time

Job function

• Information Technology, Consulting, and Accounting/Auditing

Industries

• Human Resources Services

#J-18808-Ljbffr

---