Staff Security Governance Specialist – Security Audit and Assurance

Coupang is seeking an experienced professional with a strong background in security audit and assurance to join the Security Governance team. The role is ideal for a candidate committed to building a resilient information security posture through comprehensive monitoring and assessment of Coupang’s security controls. We are looking for a proactive team player who is detail-oriented, capable of high-level strategic thinking, able to collaborate effectively across cross-functional partners at Coupang and its subsidiaries. The successful candidate will have proactive problem-solving abilities, strong analytical skills, and a drive to adapt quickly in a fast-paced environment.

Key Responsibilities:

• Lead security control monitoring activities to evaluate and enhance Coupang’s information security posture across its operations and subsidiaries.

• Develop and implement security audit processes, identify improvement areas, and provide actionable recommendations.

• Collaborate with cross-functional teams and external stakeholders on security controls standards and audit initiatives.

• Act as a subject matter expert, providing insights on security control monitoring and assurance.

• Develop and enhance Coupang’s information security programs, including the creation of policies for security audit and assurance.

• Conduct in-depth analyses, generate detailed reports, and present findings to leadership and stakeholders across teams and regions.

• Stay informed on legislative and regulatory developments to guide assurance efforts in security control monitoring.

Minimum Qualifications:

• Bachelor’s degree in information security, IT, or a related field.

• 8 - 10 years of experience in information security, security audit, or control monitoring (8+ years with advanced degree in a relevant field).

• Demonstrated experience in security audit and assessment, with a focus on security control monitoring.

• Familiarity with IT infrastructure, cloud services, and security system management.

• Experience with GRC tools, ticketing systems like JIRA, and collaboration tools like SharePoint.

Preferred Qualifications:

• 5+ years of experience specifically in security control monitoring and audit.

• Strong verbal and written communication skills in both English and Korean, with the ability to convey complex information to various stakeholders.

• C-suite and board of directors reporting experience.

• Industry certifications such as CISA, CISSP, or CRISC.