Your Browser is Not Supported
To ensure jobstore run smoothly, please use the latest version of the following supported browsers:
Morgan Hunt are currently working with a Large National Charity in their search for an interim National Information Security Manager to oversee Information Governance & Security arrangements across the organisation.
You will act as a first point of contact for any information security enquiries, as well as ensuring the organisation maintains ISO27001:2013 accreditation.
This will involve coordinating external and conducting internal audits, managing a risk register, coordinating business continuity plans, updating the Information Security Manual, and any other tasks associated with this.
You will a transition to the new ISO27001:2022 standard as soon as possible, as well as coordinate Cyber Essentials certification renewals and Data Security Protection Toolkit submissions on an annual basis. You will also advise on, and support in, the drafting of information security policy documents, guidance, training, and other related documents.
The successful post-holder will have strong experience in an Information Governance/Information Security Manager position within the Public Sector, alongside recognised qualifications.
You will have a good understanding of the ISO27001 series of controls standards, knowledge of Data Security Protection Toolkit requirements and experience conducting audits.
You will have experience utilising quality management systems, strong analytical skills alongside excellent communication skills (written and verbal).
Job Title: National Information Security Manager
Location: Remote (Ad Hoc Travel to Offices)
Annual Salary: £52,500 - £57,000
Job Type: Fixed Term Contract (6 month, potential extension)
Hours: Full-Time (37.5 hours per week)
Key Responsibilities
Person Specification
Please contact to find out more information regarding this fantastic opportunity for a National Information Security manager.
Morgan Hunt is a multi-award-winning recruitment business for interim, contract and temporary recruitment and acts as an Employment Agency in relation to permanent vacancies. Morgan Hunt is an equal opportunities employer. Job suitability is assessed on merit in accordance with the individual's skills, qualifications and abilities to perform the relevant duties required in a particular role.
Official account of Jobstore.
Skills: Linux, Networking, ArcSight, Troubleshooting, Security and/or operations experience
Years of Related Experience: 2-5 years
This specialist role will be responsible for the validation of all Security information and event management (SIEM) activities, promotion of content to production, ongoing routine maintenance of the security tools and infrastructure. This position is primarily responsible for the integration and management of secure, reliable, stable, and dependable solutions that support and ensure the confidentiality, integrity, and availability of the newer complex security systems into the existing security infrastructure.
The successful candidate will have a proven track record in information security derived from an all-round Information Technology background and SOC/SIEM experience and possess a combination of the following skills, and competencies:
Official account of Jobstore.
Key Skills: External Attack Surface Management (EASM) solution & Vulnerability Management
Job Objectives
Ø This Vulnerability Management role will help on the strategic initiative to implement the External Attack Surface Management (EASM) solution.
Ø This role requires an experienced cybersecurity professional with the basic understanding of external threat landscapes, experience in attack surface management, and the ability to implement robust operational models.
Key Responsibilities
Ø Support the implementation of the EASM program across the organization.
Ø Collaborate with cross-functional teams and stakeholders to ensure comprehensive coverage of the bank's external attack surface.
Ø Support defining and establishing the operational model for EASM
Ø Collaborate with internal and external stakeholders to stay ahead of emerging cyber threats and vulnerabilities.
Ø Support the development and maintain incident response plans specifically tailored to address external threats identified through the EASM program.
Ø Coordinate assessing exposure, risk, and the remediation.
Ø Conduct regular drills and exercises to test the effectiveness of the incident response plans.
Ø Collaborate with third-party vendors providing EASM solutions and monitor the service quality.
Ø Develop contextual data sets, reports, and dashboards to provide management, risk, and service insights.
Ø Provide support for all audit and regulatory requests.
Key Requirements
Education:
Ø Diploma/Degree in Engineering/Computer Science/IT/Cyber Security from a recognized education institution
Ø Professional security related qualifications (e.g., CISSP, CISA, CISM, CCSP, etc.) will be favorable although not mandatory
Technical Skills:
Ø 3-5 years of experience in IT with a recent focus on cyber security or related fields
Ø Strong knowledge of network protocols, architecture, and security measures.
Ø Proficiency in configuring and managing firewalls, intrusion detection/ prevention systems, and other network security devices.
Ø Familiarity with vulnerability scanning tools and methodologies.
Ø Familiarity with threat intelligence platforms and analysis tools for proactive defense.
Ø Familiarity with using SIEM solutions to collect, analyze, and correlate security events.
Ø Knowledge of incident response processes and procedures.
Ø Ability to analyze large datasets for patterns and anomalies indicative of security threats.
Soft Skills:
Ø Excellent communication and collaboration skills
Ø Process aware mindset
Ø Strong analytical and problem-solving skills
Ø Effective time management and organizational skills
Ø Team player, including ability to establish and maintain effective working relationships within and across the organization
Official account of Jobstore.
Official account of Jobstore.
Summary
The Security consultant is a pivotal technical role essential for facilitating Zero Trust deployment initiatives. This role encompasses conducting thorough gap analyses, proficient project management, and delivering technical advisories. Collaboration with cross-functional regional teams across the Asia-Pacific region is integral to this role. The ideal candidate will exhibit a robust understanding of the Zero Trust framework (CISA Zero Trust Maturity Model and Microsoft Zero Trust Model), possess broad security experience, analytical acumen, and demonstrate a proactive approach to project management. This position will report to HQ.
Responsibilities:
Additional General Responsibilities:
Skills/Qualifications:
Technology Proficiency:
Official account of Jobstore.
Summary
The Security consultant is a pivotal technical role essential for facilitating Zero Trust deployment initiatives. This role encompasses conducting thorough gap analyses, proficient project management, and delivering technical advisories. Collaboration with cross-functional regional teams across the Asia-Pacific region is integral to this role. The ideal candidate will exhibit a robust understanding of the Zero Trust framework (CISA Zero Trust Maturity Model and Microsoft Zero Trust Model), possess broad security experience, analytical acumen, and demonstrate a proactive approach to project management. This position will report to HQ.
Responsibilities:
Additional General Responsibilities:
Skills/Qualifications:
Technology Proficiency:
Official account of Jobstore.
The Game Changers:
At AP+ we're changing the game! We're doing big things, and we can't do it alone. We're part of a big ecosystem, and we know teamwork and passion for our purpose is what will make us successful. We value the unique talents, perspectives, of all our employees. This includes people of all gender identities and sexual orientations, First Nations Peoples, people of all abilities and diverse backgrounds, as well as their families. AP+ brings together Australia’s three domestic payment providers, BPAY Group, eftpos and NPP Australia, into one integrated entity. Bringing these businesses together enables AP+ to create a more competitive and coordinated Australian payments organisation that is strategically placed to respond to the impacts of regulatory and technological change today, and into the future.
The Purpose:
At Australian Payments Plus (AP+), we're on a mission to revolutionise the payments industry and ensure the security of payments infrastructure across Australia. As the Chief Information Security Officer (CISO), you will play a critical role in safeguarding AP+ systems and data from cyber threats.
As the CISO, you will provide strategic and operational leadership for AP+'s information security program. You will develop and implement comprehensive security initiatives, policies, and procedures to protect our systems, networks, and data. You will be responsible for identifying and mitigating risks, managing security incidents, and ensuring compliance with relevant regulations and standards.
In addition, you will drive a culture of security awareness and promote best practices across the organisation. You will collaborate with cross-functional teams to integrate security into the development lifecycle and provide guidance on secure coding practices. You will also stay up to date with the latest industry trends and emerging threats to continuously enhance AP+'s security posture.
As the CISO your key responsibilities will be:
In order to be considered for the CISO role you will need to demonstrate:
What’s Next:
We know applying for a role can be a nerve-wracking experience, so we endeavor to review applications and plan to schedule screening interviews within the next two weeks. If you are among selected candidates, we’ll be in touch to schedule a phone interview. In any case, we will keep you posted on the status of your application.
We want to remove all barriers to inclusion so if you need advice or support with your application, we’re here to help. Please reach out to recruitment@auspayplus.com.au We also encourage you to let us know your pronouns at any point during the recruitment process.
AP+ are not partnering with Recruitment agencies for this role.
Official account of Jobstore.
Business Function
Group Technology and Operations (T&O) enables and empowers the bank with an efficient, nimble and resilient infrastructure through a strategic focus on productivity, quality & control, technology, people capability and innovation. In Group T&O, we manage the majority of the Bank's operational processes and inspire to delight our business partners through our multiple banking delivery channels.
Group Infrastructure & Cloud (GIC) provides a platform/product for all applications to use public cloud. This product enables applications to use Public cloud services through predefined templates that are highly secure and architected against best practices and standards.
Responsibilities
The Cloud Specialist role would need to be experienced in understanding how infrastructure components are used for application development to produce highly resilient and scalable architectures. The candidate would be responsible solutioning application requirements from new onboarding new applications to public cloud as well as defining requirements for new features in the DBS Cloud Product for consuming AWS Services. Working with Evovle, they would be responsible for solution business outcomes using Outcome and work with the developers on setting clear solutions and requirements.
The candidate should be highly analytical and technology savvy with strong problem-solving skills. The ability to pay close attention to detail, develop creative solutions for complex and abstract problems and concentrate for long periods is a must. They will need to be able to speak with developers who programme the code with the Product and provide them. this role requires hands on programming skills for building infra as code.
The candidate must possess strong oral and written communication skills as well as interpersonal and multi-tasking skills.
Requirements
Apply now
We offer a competitive salary and benefits package and the professional advantages of a dynamic environment that supports your development and recognises your achievements.
Official account of Jobstore.
Your background
What you can expect
The Third Party Cyber Security Assessor will conduct information security and business continuity assessments of third parties providing services to Bank of America. The assessor will examine a third party's program to determine if they meet the Bank’s requirements, identifying control gaps that may expose the Bank to risks and subsequently work with the third party on all remediation activities.
To succeed in this role, you should be highly independent, motivated and possess strong, hands-on, technical knowledge of a wide range of information security and business continuity controls and the processes used for evaluating their design and effectiveness and possess strong written and verbal communication skills including ability to communicate clearly and concisely to various levels, up to and including executive level management, and explain the need for key controls to technical and non-technical resources.
There will be opportunities to be involved in projects to improve processes & transform the assessment program. This will enable you to leverage and grow your leadership skills as you'll be expose to various internal stakeholders and industry partners.
What you will do
About Bank of America
Our purpose as a firm is to make financial lives better, through the power of every connection. Across the world, we partner with leading corporate and institutional investors through our offices in more than 35 countries. In the U.S. alone, we serve almost all of the Fortune 500 companies and approximately 67 million consumer and small-business clients. We provide a full suite of financial products and services, from banking and investments to asset and risk management. We cover a broad range of asset classes, making us a global leader in corporate and investment banking, sales and trading.
Connecting Asia Pacific to the world
Our Asia Pacific team is spread across 19 cities in 12 markets. We are focused on connecting Asia to the world and the world to Asia, using our global expertise to ensure success is shared between us, our clients and our communities. Our regional footprint covers 12 currencies, more than a dozen languages and five time zones, placing us firmly among the region’s leading financial services companies.
Official account of Jobstore.
Official account of Jobstore.
Official account of Jobstore.
Official account of Jobstore.
Contract Duration: 12 months
Working Hour: Normal Office Hour
Working Location: AMK
Remarks: SINGAPOREAN Only
Requirements
• 5+ years IT security experience required.
• CISSP certification is a Must, CISM, Security+, IT security tools certifications (Imperva, Carbon Black) is a plus
• Experience with Networks, Servers (Windows and UNIX), Database.
• Experience in IT security auditing, security assessments.
• Understand protocols, traffic flows, ability to analyse logs from various sources.
• Knowledge of Active Directory, Endpoint protection solutions, Early Detection and Response solution, Database Activities Monitoring tools, SIEM etc.
• Excellent written and verbal communication, presentation skills.
• Proficiency in Microsoft Excel.
• Flexible, team player, “get-it-done” personality.
• Ability to organize and plan work independently.
• Ability to work in a rapidly changing environment.
• Ability to multi-task and context-switch effectively between different activities and teams
Responsibilities
• Review and development of security framework, information security policies, processes / procedures and guidelines on an ongoing basis.
• Establish compliance with these policies / procedures through ongoing security reviews and audits, not limited to log analysis and security assessment of customer ICT systems
• Conduct security risk management exercise
• Conduct table-top exercises
• Conduct vulnerability assessment, coordinate penetration tests activities
• Conduct information security awareness training
• Responsible for the development and management of customer’s security incident response plan.
• Lead and support customer in the matters of security incident resolution and response.
• Be the point-of-contact/customer liaison to assist and advise customer for ICT security related matters
• Project managed the activities and deliverables during the implementation phase.
Interested candidates, please click "APPLY" to begin your job search journey and submit your CV directly through the official PERSOLKELLY job application platform - GO Mobile.
We regret to inform you that only shortlisted candidates will be notified.
This is in partnership with Employment and Employability Institute Pte Ltd (“e2i”). e2i is the empowering network for workers and employers seeking employment and employability solutions. e2i serves as a bridge between workers and employers, connecting with workers to offer job security through job-matching, career guidance, and skills upgrading services, and partnering with employers to address their manpower needs through recruitment, training, and job redesign solutions. e2i is a tripartite initiative of the National Trades Union Congress set up to support nationwide manpower and skills upgrading initiatives. By applying for this role, you consent to e2i’s PDPA.
By sending us your personal data and curriculum vitae (CV), you are deemed to consent to PERSOLKELLY Singapore Pte Ltd and its affiliates to collect, use, and disclose your personal data for the purposes set out in the Privacy Policy available at https://www.persolkelly.com.sg/policies. You acknowledge that you have read, understood, and agree with the Privacy Policy.
Gelangre Reyanelle Gelario | REG No : R1870995
PERSOLKELLY SINGAPORE PTE LTD | EA License No : 01C4394
Official account of Jobstore.
Reporting to Head of Information Security & IT GRC, here are your responsibilities:
Requirements:
If you are interested in the above job or related information security opportunities, please kindly send your updated CV to Shannagh.Wu@ethosbc.com
Reg No.R23112660
BeathChapman Pte Ltd
Licence no. 16S8112
Official account of Jobstore.
Business Function
Group Technology and Operations (T&O) enables and empowers the bank with an efficient, nimble and resilient infrastructure through a strategic focus on productivity, quality & control, technology, people capability and innovation. In Group T&O, we manage the majority of the Bank's operational processes and inspire to delight our business partners through our multiple banking delivery channels.
Responsibilities
Requirement
Apply Now
We offer a competitive salary and benefits package and the professional advantages of a dynamic environment that supports your development and recognises your achievements.
Official account of Jobstore.