Cyber Security Analyst

ARE YOU SEEKING FOR GROWTH YET YOU WANT A FULFILLING CAREER?

Be ready to embark on a journey which offers you an exciting opportunity!

HERE’S A SHORT INTRO OF WHO WE ARE

Since 2005, finexis has been more than just a financial services provider – we are lifelong confidantes, guiding clients through every stage of their financial journey. As the largest and fastest growing independently-owned financial advisory firm in Singapore, we are proud to have over 900 consultants and staff, $1 billion in assets under advisory, and strategic partnerships that establish us as a market leader in personalised financial services.

We deliver tailored financial solutions in wealth management, investment planning, and risk management, all driven by our mission to impact lives beyond finance.

This role provides the finance leadership and governance for a portfolio of companies to ensure the day-to-day finance operational and reporting activities operate within the internal control framework.

To be successful in this role, you need to be a team player in a dynamic environment. Ready to ditch the status quo and dive into something exciting? We want YOU!

Security Monitoring & Analysis

• Continuously monitor security logs, network traffic, and system events to detect suspicious activity. (L1 support)
• Analyze alerts and anomalies to identify potential threats and vulnerabilities.
• Leverage SIEM tools to correlate and investigate security incidents across systems.

Incident Response

• Participate in incident response efforts, including containment, eradication, and recovery.
• Conduct forensic investigations to determine root causes of security breaches.
• Document incidents, response actions, and lessons learned for future prevention.

Vulnerability Management

• Managing project for vulnerability assessments and penetration testing to close all security gaps.
• Prioritize and track vulnerabilities, providing actionable remediation recommendations.
• Maintain and optimize vulnerability scanning tools and processes.

Security Control Implementation

• Deploy and manage security technologies such as firewalls, IDS/IPS, endpoint protection, and antivirus solutions.
• Configure and maintain security systems to ensure optimal performance and protection.
• Validate the effectiveness of security controls and update them as needed.

Compliance & Auditing

• Support internal and external audits related to cybersecurity.
• Develop, review, and maintain security policies, procedures, and standards.
• Ensure adherence to regulatory requirements and industry best practices.

Security Awareness & Training

• Design and deliver engaging security awareness programs for employees.
• Educate staff on cybersecurity best practices and emerging threats.
• Foster a culture of security mindfulness throughout the organization.

Threat Intelligence

• Stay informed on the latest threat landscapes, attack vectors, and vulnerabilities.
• Analyze threat intelligence to assess potential risks to the organization.
• Provide timely reports and strategic recommendations based on threat insights.

Collaboration & Communication

• Work closely with internal IT team, compliance, and business units to address security concerns.
• Communicate risks, incidents, and mitigation strategies to stakeholders clearly.
• Produce concise and actionable security documentation and reports.

Documentation & Reporting

• Maintain comprehensive and up-to-date documentation of security processes and incidents.
• Generate regular reports on security metrics, trends, and system health.
• Ensure all procedures are well-documented and accessible for audit and review.

• Bachelor’s degree in Computer Science, Information Security, or a related field; equivalent professional experience may also be considered.
• Minimum of 1 year of hands-on experience in IT security or information security roles.
• Strong analytical and problem-solving abilities, with proven capability in technical consulting and project management.
• Familiarity with established security and risk management frameworks, standards, and best practices (e.g., NIST, ISO 27001, CIS).
• Ability to effectively communicate complex security concepts to both technical and non-technical stakeholders, including executive leadership.

• Competitive remuneration
• Flexi-Benefits
• Hybrid work week
• A workplace environment that fosters collaboration and interactions with others
• Opportunity to work with various teams