We’re looking for a technically strong Compliance professional to lead and mature our cybersecurity governance, risk, and compliance program. You will own the end-to-end lifecycle for ISO27001 and SOC2, drive control design and testing across cloud and on-prem environments, and partner with engineering to embed security-by-design. Experience with Singapore frameworks such as the Cyber Trust Mark, Data Protection Trustmark (DPTM), and ISO42001 (AI Management System) is a strong advantage.

• Define and maintain ISMS scope, risk methodology, Statement of Applicability, and control baseline.
• Lead risk assessments, treatment plans, and ongoing control performance monitoring.
• Establish policy framework (security, access control, asset, cryptography, operations, supplier, incident, business continuity).
• Plan and execute internal audits; coordinate external certification audit...