Enable job alerts via email!
IT Security Governance & Assurance Specialist
NETS
Singapore
On-site
SGD 70,000 - 90,000
Full time
Job summary
A financial services company in Singapore is seeking an IT Security Governance & Assurance Specialist. You will develop and maintain security policies, ensure regulatory compliance, conduct risk assessments, and manage third-party security. The ideal candidate has a degree in Cybersecurity and over 3 years of relevant experience. Certification in CISSP, CISA, or CRISC is preferred.
Qualifications
- 3+ years of experience in security governance, risk management, and compliance.
- Knowledge of industry security frameworks and regulatory requirements.
- Experience with risk assessments and cybersecurity audits.
Responsibilities
- Develop, implement, and maintain security policies and standards.
- Ensure compliance with regulatory requirements.
- Conduct risk assessments and monitor security threats.
Skills
Education
Tools
Develop, implement, and maintain security policies, procedures, and standards in line with industry best practices (ISO 27001, NIST, CIS, etc.).
Ensure compliance with regulatory requirements (MAS TRMG, CCoP).
Assist in internal audits and security assessments to identify gaps and recommend corrective actions.
Support third-party risk assessments and vendor security compliance.
Conduct risk assessments and identify potential security threats, vulnerabilities, and mitigation strategies.
Develop and maintain a security risk register, tracking risk treatment plans and progress.
Monitor emerging security threats and ensure proactive risk management strategies.
Assist in business continuity and disaster recovery planning related to security risks.
Security Awareness & Training:
Develop and deliver security awareness training programs for employees.
Promote a culture of security by advising stakeholders on best practices.
Required Qualifications & Skills:
Bachelor's degree in Cybersecurity, Information Security, IT, or a related field.
3+ years of experience in security governance, risk management, and compliance.
Knowledge of industry security frameworks (NIST, etc.).
Familiarity with regulatory requirements (MAS, CCoP).
Experience with risk assessments, cybersecurity audits and compliance monitoring.
Strong analytical and problem-solving skills.
Excellent communication and stakeholder management skills.
Relevant certifications such as CISSP, CISA or CRISC
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
