AU
Jr Information Security Analyst conducting PCI - DSS compliance projects for AuditSafe. Supporting security controls implementation and leading technical meetings in a hybrid work environment.
AL
Hybrid Cybersecurity Consultant – Managed Agencies
Posted 3 weeks ago
About the role
- Support IT security incident management, responses and reporting till closure.
- Develop, review, and maintain operational SOPs and playbooks on IT security incidents management.
- Coordinate and work with both internal and external teams to investigate and resolve IT security incidents (including identifying the source of infection, impact).
- Review and submit IT security incident reports including documenting the calendar of event for the incidents.
- Recommend improvements to prevent the recurrence of the IT security incidents.
- Review, monitor and respond to security alerts and notifications and ensure that they are attended to and addressed in a timely manner.
- Coordinate and work with both internal and external teams to conduct reviews (which includes but is not limited to security reviews, assessments, tests, and remediation).
- Plan, schedule, conduct and ensure information required for the reviews are provided by the relevant teams.
- Ensure reviews conducted are supported with documentary evidence and submitted timely to the agency’s IT security team for closure.
- Provide support for audit activities and security testing (Vulnerability Assessment Scans Penetration Testing and Source Code Reviews).
- Ensure all findings and remediations are followed up within the time frames stipulated by relevant policies.
- Verify system components such as operating system, database, web servers, network devices are configured and set up according to the agency’s security standards and requirement.
- On top of monthly reporting, also includes providing and conducting IT security awareness, training and guidance to the users and vendors including recommending security practices and configurations.
- Vendor management includes evaluating vendor performance and conduct regular assessments to ensure compliance with contractual agreements and service level expectations.
Requirements
- Proven experience in IT security management with a focus on governance, risk, and compliance.
- In-depth knowledge of security governance frameworks, risk management methodologies, and compliance requirements.
- Familiar with relevant standards and regulations such as ISO 27001, GDPR, NIST, etc.
- Strong analytical and problem-solving skills with the ability to communicate complex security and compliance issues effectively.
- Experience in securing SaaS Products and cloud security is preferred
- Relevant certifications such as CISSP, CISM, CRISC, or CGEIT are a plus.
Benefits
- A wholly-owned subsidiary of GovTech.
- We promote a learning culture and encourage you to grow and learn.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Tech skills
Location requirements
A2
A2SECURECybersecurity Consultant
Cybersecurity Consultant ensuring cybersecurity operations and delivering consultancy projects for clients, focusing on strategic risk management and compliance assessments.
Leads SOC team ensuring cybersecurity for LWSA's operations. Responsible for team management, incident response, and security monitoring.
LG
Liebherr GroupSenior IT Security Engineer
Senior IT Security Engineer developing and optimizing innovative security solutions in an international environment. Engaging in corporate information security utilizing best practices.
Regional Lead overseeing physical security infrastructure and operations for OpenAI’s data centers in Singapore. Collaborating with teams and managing security technologies for compliance and risk assessment.
ZS
Business Continuity and Cybersecurity Awareness Manager at ZEAL, leading BCM and cybersecurity training initiatives. Ensuring resilient operations and fostering secure behavior across teams.
BG
Bureau Veritas GroupOperations Manager, Fire Safety and Building Equipment
Responsable d'Opérations en sécurité incendie et équipements du bâtiment chez Bureau Veritas. Animer une équipe tout en contribuant au développement commercial et à la qualité des prestations.
Senior Inhouse IT Consultant responsible for the network and server infrastructure of the L - mobile Group. Planning security measures and managing cloud and virtualization platforms.
Senior Manager in Cybersecurity leading Cyber Defense Center operations and strategy development for effective threat response. Collaborating with stakeholders to enhance security posture across the organization.
SK
Sana KlinikenJunior Information Security Officer
(Junior) Information Security Officer responsible for ISMS management at Sana Clinics. Ensuring compliance with NIS - 2 and training staff on information security.