개인정보보호 담당자

포지션 상세 정보

기술스택

CISSP
CISA
AWS
CPPG
Confluence
AZURE
ISMS
Jira

주요업무

• Response to and maintenance of Information Security Management System (ISMS) certification and e-Privacy
• Develop and apply security protocols to protect personal data.
• Perform regular audits and reviews of data protection practices and controls to ensure effectiveness and compliance.
• Ensure adherence to privacy regulations, and industry standards.
• Identify and evaluate risks to personal information and implementing mitigation strategies.
• Develop and implement procedures for responding to data breaches, including notification protocols, investigation processes, remediation actions, and report data breaches to relevant authorities and affected individuals as required by law.
• Develop, implement, and maintain data protection policies and procedures that align with legal requirements.
• Enhance personal data protection process through regularly reviewing personal data lifecycle and management workflow.
• Maintain a record of all personal data processing activities, including data sources, data flows, storage locations, and data sharing practices.
• Ensure that personal data is classified according to its sensitivity and that appropriate protection measures are in place for each classification.
• Provide training and awareness programs to employees about data protection principles, policies, and procedures.
• Act as a point of contact for data subjects, regulatory authorities, and internal stakeholders regarding data protection matters.
• Establish annual personal data protection and training plan and execute them. 
• Collaborate with IHQ privacy security team to satisfy GDPR requirements as need. 
• Oversee and conduct DPIAs for new projects, processes, or systems that involve the processing of personal data to ensure privacy risks are identified and addressed.

자격요건

• Information security and privacy protection related certifications (Information Security Engineer, CPPG, CISSP, CISA, ISMS certification auditor, ISO27701, etc.)
• Significant experience in privacy and security risk assessment.
• Hands-on experience in privacy assessments, certifications, and information security standards.
• Understanding of data protection laws, including Personal Data Protection Act of Korea, the General Data Protection Regulation (GDPR) and other relevant regulations.
• Ability to interpret personal information protection related laws and determine compliance with laws
• Ability to explain data practices to stakeholders in clear, common-sense terms.

우대사항

• Knowledge of privacy-enhancing technologies and tools.
• Thoroughly familiar with data lifecycle management
• Commitment to ongoing education and compliance.
• Good command of written and verbal English.

복지 및 혜택

• Development Allowance: 200,000 KRW per month
• Meal Allowance: 200,000 KRW per month
• Childcare Allowance: 200,000 KRW per month (for parents with legal children under 6 years old)
• Comprehensive Health Check-Up: Health check-up support for employees and their families
• Anniversary Celebrations: Birthday and Family Month celebrations
• PM Day: One designated work-free day every six months
• Profit Sharing: Annually
• Company Products: Monthly provision of company products and employee discounts on all products
• Books/Education Support: Support for books and educational expenses
• Welcome Gift: Gift for new hires
• Leave Policies: Founder’s Day, health check-up paid leave, work-life balance leave, birthday leave
• Other: Flexible working hours on Fridays (1 hour of autonomous work), early leaving option
• 휴가제도 ( 창립기념일, 건강검진 유급휴가, 워라벨휴가, 생일휴가)
• 매주 금요일 1시간 자율업무(조기퇴근 가능)
• 신규입사자 선물
• 기타

채용절차 및 기타 지원 유의사항

[채용절차]
• 서류전형 →  1차 인터뷰 → 2차 인터뷰 → 처우 협의 → 최종합격
※절차는 변경될 수 있습니다.
[지원 시 주의사항]
• 3개월의 수습 기간이 있습니다.(수습 기간 동일 급여와 복리후생 보장)
• 포트폴리오 제출 시,10MB 초과할 경우에는 링크를 기재해주세요.
[참고사항]
• 서류 합격자에 한해 연락드립니다.
• 본 채용은 수시 진행으로 우수 인재 채용 시 마감될 수 있습니다.