IT Security Engineer

KKCompany Technologies Group is a leading technology group in software services. We have created the worlds first legal music streaming platform, KKBOX, and are an international software technology group focused on multimedia technologies, digital cloud, and AI applications as our core business to create value for the customers. The group consists of self-owned brands including KKBOX, BlendVision, and Going Cloud with enterprise customers across Asia. KKCompany Technologies has attained OpenChain ISO/IEC 5230 and ISO 27001 third-party international certification.

We have over 500 employees across offices in Tokyo, Singapore, Taipei, Kaohsiung, and Hong Kong. For more information please visit our website: www.kkcompany.com and blog: blog.kkcompany.com

The IT Security Engineer is responsible for securing and managing the organizations IT infrastructure, including networks, identity, and endpoint security. This role ensures the protection of corporate data, systems, and services by implementing security measures, monitoring threats, and maintaining compliance. The IT Security Engineer also plays a key role in designing and overseeing office network and corporate infrastructure, ensuring security is embedded at every level.

Responsibilities:

• Design, implement, and maintain security controls across networks, systems, and endpoints.
• Oversee office network and corporate infrastructure construction with security best practices.
• Monitor security incidents, respond to breaches, and implement countermeasures.
• Manage identity and access controls to prevent unauthorized access.
• Conduct vulnerability assessments, penetration testing, and risk analysis.
• Deploy and manage security tools such as SIEM, EDR, and threat intelligence platforms. Investigate security incidents and conduct forensic analysis when needed.
• Implement data protection strategies, including encryption and backup solutions.
• Stay updated on emerging threats and evolving cybersecurity trends.
• Develop and enforce security policies aligned with industry standards (e.g., ISO 27001, NIST, GDPR, SOC 2).

Requirements:

• Bachelor's degree in Computer Science, Cybersecurity, IT, or equivalent experience.
• 3+ years of experience in IT security, infrastructure, or cybersecurity roles.
• Expertise in network security, firewalls, IDS/IPS, and endpoint protection.
• Hands-on experience with SIEM, vulnerability management, and threat detection tools.
• Proficiency in scripting and automation (Python, PowerShell, or equivalent).
• Strong analytical and problem-solving skills.
• Ability to work independently and in a team environment.
  

Nice to Have:

• Experience with cloud security (AWS, Azure, Google Cloud).
• Knowledge of Zero Trust architecture and secure identity management.
• Understanding of DevSecOps and secure software development practices.
• Industry certifications such as CISSP, CEH, CISM, or Security+ preferred.
• Experience with security frameworks such as NIST, ISO 27001, or SOC 2.