Key Responsibilities
1. Develop and execute a global information security and compliance strategy aligned with business objectives and regulatory requirements.
2. Provide a forward-looking vision for risk management, enabling innovation while safeguarding the organization’s assets and intellectual property.
3. Build and drive a strong security culture across all levels of the company.
4. Partner with business leaders to align security practices with operational needs and strategic goals.
5. Define and track security KPIs and metrics, presenting insights in business-oriented terms for executive stakeholders.
6. Lead disaster recovery and business continuity planning, ensuring resilience across global operations.
7. Collaborate closely with the CIO to align budgets, investments, and resource planning with security priorities.
8. Assess and deploy advanced security technologies to proactively prevent, detect, and respond to threats.
9. Report regularly to senior leadership on risk posture, threat landscape, and ongoing mitigation initiatives.
10. Oversee third-party security assessments, audits, and independent validation of global networks and critical systems.
11. Strengthen cloud and remote workforce security strategies for a globally distributed environment.
12. Lead global compliance programs, including TISAX certification for manufacturing sites and adherence to GDPR, NIST, CMMC, and ISO 27001 standards.
13. Establish ongoing security awareness programs for employees and advanced technical training for security teams.

Skills & Qualifications
1. 10+ years of leadership experience in security, risk, or compliance, with 5–8+ years in hands-on technical security, audit, or risk management roles.
2. Proven expertise in Microsoft Security & Compliance solutions strongly preferred.
3. Strong command of English with excellent written and verbal communication skills, adaptable to technical and non-technical audiences.
4. Solid understanding of both IT and OT security environments, including their distinct risks and controls.
5. Demonstrated success leading global security programs in large-scale, complex enterprises.
6. Track record of building cohesive, high-performing security teams and instilling strong security culture.

Certifications
1. CISSP or CISM strongly preferred.
2. Additional credentials such as ISSMP or CCISO considered an advantage.

雇主依法應盡義務（含勞動基準法、性別平等工作法、全民健康保險法、勞工保險條例等）及員工依法應享權利（如勞健保、勞退、特別休假、婚假等）