Senior Information Security Engineer at Wells Fargo investigating insider threats and strengthening cybersecurity measures. Conducting advanced investigations and collaborating with cyber teams to mitigate risks.
AL
Hybrid Cybersecurity Consultant – Managed Agencies
Posted 2 months ago
About the role
- Cybersecurity Consultant managing IT security incidents and compliance with government agencies in Singapore. Driving security operations and training while collaborating with internal and external teams.
Responsibilities
- Support IT security incident management, responses and reporting till closure.
- Develop, review, and maintain operational SOPs and playbooks on IT security incidents management.
- Coordinate and work with both internal and external teams to investigate and resolve IT security incidents (including identifying the source of infection, impact).
- Review and submit IT security incident reports including documenting the calendar of event for the incidents.
- Recommend improvements to prevent the recurrence of the IT security incidents.
- Review, monitor and respond to security alerts and notifications and ensure that they are attended to and addressed in a timely manner.
- Coordinate and work with both internal and external teams to conduct reviews (which includes but is not limited to security reviews, assessments, tests, and remediation).
- Plan, schedule, conduct and ensure information required for the reviews are provided by the relevant teams.
- Ensure reviews conducted are supported with documentary evidence and submitted timely to the agency’s IT security team for closure.
- Provide support for audit activities and security testing (Vulnerability Assessment Scans Penetration Testing and Source Code Reviews).
- Ensure all findings and remediations are followed up within the time frames stipulated by relevant policies.
- Verify system components such as operating system, database, web servers, network devices are configured and set up according to the agency’s security standards and requirement.
- On top of monthly reporting, also includes providing and conducting IT security awareness, training and guidance to the users and vendors including recommending security practices and configurations.
- Vendor management includes evaluating vendor performance and conduct regular assessments to ensure compliance with contractual agreements and service level expectations.
Requirements
- Proven experience in IT security management with a focus on governance, risk, and compliance.
- In-depth knowledge of security governance frameworks, risk management methodologies, and compliance requirements.
- Familiar with relevant standards and regulations such as ISO 27001, GDPR, NIST, etc.
- Strong analytical and problem-solving skills with the ability to communicate complex security and compliance issues effectively.
- Experience in securing SaaS Products and cloud security is preferred
- Relevant certifications such as CISSP, CISM, CRISC, or CGEIT are a plus.
Benefits
- A wholly-owned subsidiary of GovTech.
- We promote a learning culture and encourage you to grow and learn.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Tech skills
Location requirements
Staff Product Manager overseeing enterprise security product strategy for Tenable. Collaborating with various teams to deliver customer - focused solutions and product features.
Information Systems Security Officer managing operational security posture for information systems at GDIT. Collaborating closely with ISSM and ISO, handling security aspects, and ensuring compliance with security standards.
Program Security Representative providing multi - discipline security support for Special Access Programs. Ensuring compliance, developing policies, and conducting security assessments in a military context.
Senior Cyber Security Project Manager at Airbus Protect managing medium complexity projects in Cyber Security Consulting. Focusing on project leadership and team management in diverse client settings.
Security Architect responsible for designing cloud security architectures for leading brands. Ensuring compliance and guiding incident response strategies in AWS environments.
Senior Security Consultant for ISMS Management at Bundesdruckerei GmbH in Berlin. Responsible for security analysis, management, and advisory roles on cybersecurity issues.
IT - Systemadministrator managing Video Surveillance and Alarm Systems at Mühlbauer. Supporting technical solutions for multimedia and conference systems with project involvement and ticket handling.
AI Application Security Architect in charge of driving secure development lifecycle for AI systems across multi - cloud environments and hybrid platforms.
Security Project Manager responsible for managing cyber - security project delivery and ensuring quality execution in Bulgaria. Requires excellent communication skills and fluency in English.