Enable job alerts via email!
Tech Risk Analyst
FLINTEX CONSULTING PTE. LTD.
Singapore
On-site
SGD 80,000 - 120,000
Full time
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Job summary
A prominent consultancy firm in Singapore is seeking a Cybersecurity Specialist to manage risks and compliance in a dynamic environment. The role entails assessing digital solutions, developing security policies, and providing advisory services on digital initiatives. Ideal candidates will have a strong background in cybersecurity frameworks and relevant certifications. This is an opportunity to work with a leading team in enhancing digital security infrastructures.
Qualifications
- Minimum 5 years’ experience in Cybersecurity, Risk and Compliance.
- Knowledge of security standards such as NIST, ISO 27001, PDPA (SG).
- Certifications such as CISA, CISM, CISSP are a plus.
Responsibilities
- Conduct risk assessments on digital solutions and third-parties.
- Assist in developing policies and standards for digital asset protection.
- Manage security projects addressing cybersecurity risks.
Skills
Education
Tools
Job description
Key Roles and Responsibilities
• Conduct risk assessment on digital solutions and third parties. Identify potential risks and provide options to protect the OT critical infrastructure, ICT Infrastructure, application systems and cloud environment.
• Conduct compliance check on internal controls to ensure compliance with established policies and applicable regulations.
• Assist in developing policies, standards and guidelines to safeguard digital assets in adherence to business needs, industrial best practices and regulatory requirements.
• Provide advisory services to internal departments on business digital initiatives using Security By design / Zero Trust framework to ensure consistency in controls.
• Manage security projects and solution implementation activities that address cybersecurity risks.
• Plan, design and conduct cyber security incident response workshops and exercises (table-top exercises, simulation, and drills)
• Be aware of latest industry standards, regulatory requirements and the potential impacts to cybersecurity policies, standards and procedures.
Qualifications & Experience
• Minimum 5 years’ experience in Cybersecurity, Risk and Compliance
• Knowledgeable in security standards or regulations such as NIST, ISO 27001, SOC2, CCOP (SG), PDPA (SG), GDPR(EU), MPLS(CN), Security by Design
• Technical know-how and experience in solutions such as (but not limited to)
· Cloud Infrastructure, e.g. Azure, AWS, Huawei, Ali
· Cloud compliance e.g., Cloud Posture Management, Workload protectio
· Awareness Platform e.g., Proofpoint, Knowbe4
· Network Security e.g., F/W, IPS, Remote Access, NAC, Data Diode
· Content Security e.g., Web, Email protection
· End point Security e.g., AV, EDR, DLP
· Identify Protection e.g. MFA, Privilege access management
· Threat Management e.g., SIEM, UEBA, NDR, ASM, BAS
· GRC Tool e.g., RSA Archer
· Hardening guidelines for MS products, Linux
· Vulnerability Assessment and Application Testing Tool e.g., Tenable, Qualys, Veracode, Synopsys etc.
· System development lifecycle or DevOps framework
• Certifications such as CISA, CISM, CISSP, GICSP, CCSK, CRISC will be an added advantage
• Knowledge in OT solutions and security will be an added advantage
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
