IT Security Compliance Analyst Malaysia

About Nintex:

At Nintex we are transforming the way people work everywhere.

As the global standard for process intelligence and automation were trusted by over 10000 public and private sector organizations across 90 countries. Our customers from industry giants like Amazon Coca-Cola and Microsoft rely on the Nintex Platform to accelerate their digital transformation journeys by managing automating and optimizing business processes quickly and efficiently. We improve their lives through the technology we build.

We are committed to fostering a workplace that supports amazing people in doing theirvery best work every day. Collaboration is constant our workplace is fun the environment is fast-paced and we value our peoples curiosity ideas and enthusiasm. Driven by passion and accountability we take initiative measure progress and deliver results. Our culture fosters innovation and problem-solving fueled by curiosity and a commitment to thinking big. Together we move with agility prioritize customer needs and build unity through empathy leaving a positive impact wherever we go.

About the role:

The Compliance Analyst is a member of the Nintex Security Team and partners with globally distributed departments to execute and sustain the companys compliance program. This role is operational and tactical in nature withresponsibility forworking with teams to implementcompliance requirements enabling audit readiness coordinating ongoing compliance activities and supporting external and internal audits.

The Compliance Analyst appliesstrong project managementand analyticalskillsto manage multiple concurrent initiatives and brings workingexpertiseacross multiple compliance frameworks to ensure consistent and effective compliance outcomes.

Your contribution will be:

Domain Knowledge and Documentation:Coordinatethe full compliance lifecycle including gap analysis remediation planning audit execution and continuous compliance monitoring. Preparetheorganization for new and evolving compliance frameworks by coordinating assessments audits self-assessments andevidencecollectionand reviewactivities. Developmaintain and review compliancerelated documentation to support training awareness and sustained operational the Revenue team by answering Security-related questions from customers and curating content for ongoing Security training requirements ensuring completion targets are met.

Global Stakeholder Management:Collaborate with globally distributed stakeholders across Engineering IT Product HR Legal and other business functions to support consistent implementation of compliance requirements. Serve as a primary liaison for audit coordination including facilitating interviews walkthroughs and evidence requests. Provide guidance and training to internal teams on compliance initiatives and audit readiness.

Adhere to Nintex Standards and Practices:Support adherence to Nintex governance risk and compliance standardsbyassistingwith thecreation review andupdatesof information security policies and procedures. Ensure compliance activities align with internal guidelines and approved risk management practices. Contribute to compliance integration efforts for acquisitions or organizational changes asrequired.

Risk Management and Mitigation:Support risk management activities byassistingwith security reviews andcompliancerisk assessments for new initiatives technologies and compliance and control gaps document risks andassistin tracking mitigation activities. Escalate identified risks and issues toappropriate stakeholdersin a timely manner.

To be successful we think you need:

• Bachelors degree in Information Security Information Technology Risk Management Business ora relatedfield or equivalentpractical experience.

• Working knowledge of common compliance and assurance frameworks such as SOC 2 ISO/IEC 27001 GDPR HIPAA FedRAMP or similar international regulatory standards.

• Relevant certifications are preferred but notrequiredincluding:CISA CRISC CISSP CCSK ISO 27001 Lead Implementer/Auditor or related compliance or risk certifications.

• Familiarity with common IT infrastructureSaaS basedcloud services identity and access management concepts and security tooling sufficient to assess control design and operational effectiveness (handson administration is notrequired).

Whats in it for you

Nintex has a hybrid working model enabling us to build culture learn and grow together. We intentionally connect and collaborate while emphasizing flexibility with a blend of at-home and in-office work. This role is a hybrid role in our local Nintex office.

While our offerings differ from country to country we offer our entire global workforcean array of exciting perks and benefits including

• Global Gratitude and Recharge Days
• Flexible paid time off policy
• Employee wellness programs and counseling resources
• Meaningful peer recognition and awards
• Paid parental leave
• Invention/patenting assistance
• Community impact paid volunteer time and opportunities
• Intercultural learning and celebration
• Multiple tools through which to learn and grow and an incredible global community

View more about our benefits here: Experience:

IC