Privacy Manager

About the Team You Will Join

• The Security Division of Toss Securities comprises the Security Policy Team and the Security Engineering Team. The Security Policy Team includes roles such as Information Security Manager and Privacy Manager.
• The Security Division receives comprehensive support across the organization to create secure Toss Securities services and collaborates closely with all departments.
• Team members actively exchange experiences and knowledge with peers in the same roles across subsidiaries to achieve common goals through collaboration.
• The team consists of members with varying levels of experience, ranging from 1 to 20 years, most of whom have backgrounds in information security firms or as corporate information security officers.
• This year, we aim to strengthen our information security and privacy management systems through global security standard certifications and focus on risk management driven by data flow and business processes. Additionally, we will conduct research activities to advance regulations.

Responsibilities You Will Take On

• Lead the establishment and operation of privacy policies and the acquisition and maintenance of domestic and international security certifications (ISMS-P, ISO/IEC 27001, 27701, 27017, 27018, PCI-DSS, etc.).
• Design and operate processes for consent of personal (credit) information collection and usage, privacy policies, subcontracting contracts, and security agreements.
• Lead internal audits, inspections, and external agency assessments, driving improvement activities.
• Design and implement processes to prevent and respond to personal information breach incidents.
• Plan and operate privacy training and campaigns within the organization, promoting a culture of security.
• Mentor junior team members to enhance team capabilities collectively.

We Are Looking for Someone Who

• Has over 5 years of experience in privacy and information security within the financial and electronic finance sectors.
• Has direct experience leading the development of privacy agreements, terms, and internal regulations.
• Possesses experience in managing privacy policies, subcontracting, and security agreements.
• Has experience leading the acquisition and maintenance of domestic and international information security and privacy certifications.
• Can identify and lead new privacy challenges in a rapidly changing IT/service environment.

Resume Submission Tips

• If you have achievements that have enhanced the level of privacy protection, please write them with specific details.
• If you have encountered conflicts between privacy regulations and business objectives, provide case studies detailing the rationale behind your decisions.

Your Journey to Joining Toss Securities

• Application submission > Job interview > Cultural fit interview > Reference check > Salary negotiation > Final acceptance and onboarding.

Please Note

• If any false information is found in your resume or submitted documents, or if any disciplinary actions are confirmed during your employment history, your application may be canceled.
• Applicants who fall under the company's hiring restrictions or have disqualifying factors may have their applications canceled.
• Individuals with disabilities and those eligible for national veterans' benefits are given preferential treatment in accordance with relevant laws.

A Word for Future Colleagues

> "I find it satisfying to be able to gain diverse experiences in a dynamic environment."