Your Browser is Not Supported
To ensure jobstore run smoothly, please use the latest version of the following supported browsers:
Job Description:
Requirements:
Interested applicants can send your resume to Whatsapp 83208165 (Jennifer) and allow our consultant to match with our clients.
We regret to inform that only shortlisted candidates will be notified! All applications will be handled with strict confidentially.
Jennifer Tay Swee Shan
Reg No: R22111564 | EA No: 21C0845
Recruit Now Singapore Pte Ltd
Official account of Jobstore.
ABOUT THE NATIONAL INSTITUTE OF EDUCATION (NIE)
The National Institute of Education (NIE), Singapore, is Singapore’s national teacher education institute and we are proud to be an integral part of the nation’s education service. We play a key role in the preparation of teachers and in the provision of teacher professional and school leadership development programmes. We are committed to our vision of being An Institute of Distinction: Leading the Future of Education and our mission to Inspire Learning, Transform Teaching and Advance Research.
NIE invites suitable candidates to join the Division of Academic Computing & Information Services (ACIS) as a Senior IT Security Analyst (3-year contract).
Key Responsibilities:
Incident Response Leadership
Monitoring and Detection
AI and Automation
Threat Statistics and Reporting
Innovation and Continuous Improvement
Forensics Capability Development
Requirements:
Other Information
NIE staff can take chartered buses at their own expense from or near their home to the NIE campus. This is subject to the availability of bus routes and seats.
Req ID: R00018131
Official account of Jobstore.
Official account of Jobstore.
Role overview
We are recruiting a Senior Information Security Governance Manager which is part of the Global Information Security team, with a focus on the Governance, Risk and Compliance aspects of Information Security. Reporting directly into the Head of Information Security and with three direct reports, the role holder will be responsible for the firm's global information security policies and standards and delivering compliance with external security accreditations including ISO27001 and the UK's Cyber Essentials standard and managing the firm's information security policies, standards, and risk management framework.
NB: There is a requirement to work flexible hours 2 days per week to overlap with UK operating hours.
Reports to:
Head of Information Security
Career level:
Senior Manager
Status:
Permanent
Duties and responsibilities
· Manage the information security management system in accordance with the requirements of ISO27001
· Delivering compliance with external security accreditations including ISO 27001 and UK's Cyber Essentials plus standard
· Own and develop the firms Information Security Governance framework
· Manage client information security due diligence questionnaires, as well as bid and tender documents to support business development for clients in APAC and the UK.
· Manage internal and external audits, minimising the impact of audit fieldwork and maximising the relevance and benefit of findings and actions
· Manage information security audit actions to ensure actions identified are managed to completion within the required timescales
· Work across the Legal and Business Services team teams to integrate information security practices and initiatives with firm operational practises
· Regularly review and evaluate policies, processes, procedures and standards to ensure they are effective and drive continuous improvement for information security
· Deliver information security education, training and awareness programmes
· Maintain the Information Security Risk & Control Register, risk treatment plans and information security improvement programmes
· Undertake regular risk and control assessments with risk and control owners
· Ensure changes to information security risks are reported and escalated where required
· Provide regular governance, risk and compliance reporting utilising key risk and key performance indicators and metrics
· Own and manage the third-party risk management framework
· Undertake regular identity and access management reviews and recertifications
· Ensure timely third-party security assessments on new and existing suppliers
· Maintain current expertise in information security governance risk and compliance
· Provide Information Security advice to stakeholders
· Line management, mentoring, and coaching of the team
Experience Required
· Extensive experience working in a multinational law firm
· Detailed knowledge of Singapore, Hong Kong and UK information and cyber security regulatory and legislative requirements
· A proven track record delivering information security in accordance with the requirements of information security standards including ISO27001 and the UK's Cyber Essentials plus standard
· Experience developing and implementing practical information security policies, processes procedures, and standards
· Experience in identify and access governance and user access recertifications
· Demonstrable security risk management knowledge and experience
· Experience in operational risk management frameworks
· Experience in conducting security reviews and/or audits
· Excellent written and verbal communication skills with an emphasis on confidentiality, tact and diplomacy
· Previous experience working in regulated/compliance-oriented environments
· Experience delivering designing and implementing control and delivering compliance with ISAE3402 / SOC2.
· Solid experience in information security governance roles
· Solid experience leading, managing, and mentoring people
Attributes
· Knowledge and experience across cyber security, information security and risk management in the following areas: Access control and management, Threat and Vulnerability Management, Data Loss Prevention, Malware Protection, Incident Management, Information Classification, Education and Awareness, Software Development Lifecyle, Cloud Security
· Knowledge of best practice security standards
· Strong presentation skills with proven ability to successfully interface with and influence at all levels
· Holds at least one of the following, Certified Information Security Manager (CISM) or Certified Information Systems Auditor (CISA) or ISO27001 lead auditor
· Excellent stakeholder management skills
· Comfortable having difficult conversations
· Strong analytical, investigative and independent problem-solving skills
· Able to work independently and manage own workload
· Well organised / analytical & logical approach, with attention to detail
· Client focussed – able to focus on the ‘big picture’
· Capable of innovative problem-solving and process improvements
· Strong and resilient character – able to overcome resistance
· Self-motivated, energetic and enthusiastic manner
· Flexible and reliable team player
Official account of Jobstore.
Responsibilities:
· Responsible for assessing the technologies, applications, and overall security controls in Cloud platforms to identify potential risks and vulnerabilities
· Understanding and complying of the Global Information Security policy and relevant cyber security threats to complete security assessments.
· Providing expert technical guidance to support partners and adapting testing methods to emerging cyber security regulations and evolving threats, while developing others on the team.
· Lead and oversee efforts to identify vulnerabilities and misconfigurations in Cloud platforms and workloads.
· Manage daily operations of Cloud security solutions such as Aqua, Wiz, Qualys, CrowdStrike
· Enhance vulnerability identification process for Hybrid Cloud platforms
· Drive Cloud Security solutions in alignment with the Bank’s cloud strategy and in accordance with security best practices
· Leads the analysis, implementation, execution, and improvement of proactive security controls to prevent external threat actors from infiltrating company systems or information.
· Conducts research and provides leadership updates regarding advanced threats to compromise security controls and protocols.
· Monitors new threats and complex attempts to compromise security controls while developing a deep expertise in the early lifecycle for security techniques
Skills and Experience
· Deep understanding of Microsoft Azure and/or AWS native services, tools, and architecture
· Deep understanding of cloud and container security
· Deep working knowledge of cloud threat landscape
· Deep technical experience in infrastructure and security functions
· Experience in DevSecOps and CI/CD pipeline integration through security engineering lifecycles
· Experience writing requirements documentation
· Experience deploying and managing Cloud-based vulnerability management solutions
· Understanding of Threat modeling and cybersecurity frameworks(MITRE ATTCK/D3FEND, OWASP, STRIDE)
· Understanding of vulnerability management and scanning tools
· Well-developed analytic, qualitative, and quantitative reasoning skills with a demonstrated creative problem-solving ability.
iKas International (Asia) Pte Ltd
“Sanderson-iKas” is the brand name for iKas International (Asia) Pte Ltd
EA Licence No: 16S8086 | EA Registration No. R1988468
We regret to inform you that only shortlisted candidates will be notified /contacted.
Official account of Jobstore.
Job Description:
Job Requirements:
Official account of Jobstore.
Proud member of the Disability Confident employer scheme
Official account of Jobstore.
Senior Manager - Information Security
Experience: 12+ years
Location: Chennai
Candidate Profile:
Should have in-depth understanding of ISO 27001:2013, ISO 27001:2022, GDPR, DPDP Act, and other equivalent standards and Information Security Management System (ISMS) implementation for the organization.
Should be well versed with firewalls, proxies, SIEM, antivirus, and IDPS concepts. Should have decent understanding of Application Security.
Should know Cloud Security best practices and assessment (crypto specifics HSM & Vaults).
Should have strong understanding of NIS2, MITRE ATT&CK Framework, OWASP Standards, etc.
Should be able to:
- Formulate new and evolve existing policies with respect to changing technologies and business dynamics
- Understand business needs and risks assessment, in order to ensure appropriate security controls
- Perform effective ISMS audits on IT Projects, internal systems and third-party audits, w.r.t., ISO 27001:2022, NIS2, MITRE ATT&CK Framework, OWASP Standards as required in order to maintain compliance and certifications
- Coordinate the information security compliance initiatives across the organization
- Work with organizational Functions/Delivery accounts to ensure employees are aware of information security issues, are trained in information and data security best practices, and are practicing safe/secure data collection, data transfers and storage, and use of social media, mobile devices, and apps, among others
- Work with Support functions in managing and improvising the information security management system, by monitoring internal systems to ensure that appropriate controls are maintained
- Track, report and escalate violations of information security policy
- Investigate Information Security incidents and data breaches, and implement additional controls as and when necessary
- Building awareness and competences in the area of Information Security and Data Protection for new and existing employees
- Strong understanding of privacy regulations such as GDPR, Draft India Data Protection Bill and privacy frameworks
- Should have experience in at least 3 end to end privacy assessment & implementation projects (GDPR, DPDP, other country specific regulations)
- Interview client stakeholders and develop project artifacts such as Privacy Impact analysis, data flow diagrams & identify gaps
- Experience in implementation and use of privacy enhancing technologies and design of data privacy framework.
Official account of Jobstore.
Job Purpose
A Red Team operator is a member of the Information Security Assurance group driving security improvement through continuous assessment of our threat landscape. The Red Team is a globally dispersed “testing” team.
Team Duties
Responsibilities
Seniority is determined by experience and demonstration of exceptional competencies including:
Knowledge and Experience
Schedule
This role offers work from home flexibility of one day per week.
Intercontinental Exchange, Inc. is an Equal Opportunity and Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, gender identity, national origin or ancestry, age, disability or veteran status, or other protected status.
Official account of Jobstore.
About Us
Established in 1988, Rest is one of Australia’s largest profit-to-member superannuation funds.
We support nearly two million members, with around $75 billion of funds under management and are recognised as a responsible investment leader*. We believe when members understand and engage with their super, they’re more likely to get a better retirement outcome.
Everything we do at Rest is underpinned by our values and behaviours, we want to Be Daring, Keep it Simple, Take Action and Have Grit. To put it simply we want our people to thrive and love the work they do.
About the Job
The Information Security Cloud Analyst is responsible for safeguarding Rest’s cloud-based systems encompassing a broad range of activities including evaluating and mitigating risks, formulating cloud-specific security strategies, continuously watching for cyber threats, ensuring regulatory compliance, and responding to security incidents.
Additionally, the Information Security Cloud Analyst will create secure cloud designs and guardrails, educate employees on best practices, assess third-party vendors for security risks, maintain cloud security policies, and manage various cloud security technologies.
Key Responsibilities
Official account of Jobstore.
Official account of Jobstore.
Official account of Jobstore.
Lico Resources, the specialist executive search firm, is partnering with a leading financial institution in searching for an Information Technology Risk Management Professional. The institution is a key player in the finance sector and is dedicated to fostering a secure and technologically advanced environment for its clients. they are seeking a dynamic professional to join their existing team in Singapore.
This role involves collaborating with internal and external teams to assess risks, implement effective security measures, and ensure the overall robustness of the technology landscape.
Key Responsibilities:
Qualifications:
If you are interested in this role, please send us your updated resume today to nicole@licoresources.com quoting reference number A08915. Please note that only shortlisted candidates will be notified.
“Data provided is for recruitment purposes only.”
Job Reference No: A07415 EA Licence No.: 13C6733 EA Registration No.: R1333454
Official account of Jobstore.
Job Title: Information Security Analyst
Location: Bristol + Hybrid Working + UK Travel
Compensation: £40,000 - £45,000 + Benefits
Role Type: Full time / Permanent
Role ID: SF58487
At Babcock we're working to create a safe and secure world, together, and if you join us, you can play your part as an Information Assurance Administrator at our Ashton, Bristol site with travel to a variety of sites to the UK
The role
As an Information Security Analyst, you will be responsible for providing a high level of professional Information Assurance (IA) support across the Missions Systems business.
Day-to-day, you'll be responsible for supporting the effective delivery of all IA related matters ensuring key support functions are delivered in a smart, flexible and holistic manner to ensure the business continues to operate safely and securely.
Main responsibilities will be:
This role is full time, 37 hours per week and requires regular UK travel across a range of internal and customer sites on a monthly basis, alongside home working arrangements.
Essential experience of the Information Security Analyst
Qualifications of the Information Security Analyst
Security Clearance
The successful candidate must be a sole UK national who is able to achieve and maintain Security Check (SC) security clearance for this role with the ability to gain Developed Vetting (DV) once in post if required.
Many of the positions within our company are subject to national security clearance and Trade Control restrictions. This means that your eligibility for certain roles may be affected by your place of birth, nationality, current or former citizenship, and any residency you hold or have held.
What we offer
Babcock International
For over a century, Babcock has helped to defend nations, protect communities and build a better world. To continue, we must adapt, advance and be a sustainable business with a shared goal.
We are a disability confident committed employer. If you have a disability or need any reasonable adjustments during the application and selection stages, please email with the subject header 'Reasonable adjustments requirement'. We're committed to building an inclusive culture where everyone's free to thrive. We are happy to talk about flexible working - please ask about alternative patterns of work at interview.
Closing date: 13/08/2024
Proud member of the Disability Confident employer scheme
Official account of Jobstore.
Job Description:
Requirements:
All qualified applicants, please click “ APPLY NOW”
Kimmy Low Yi Ting (Kim) | CEI Registration Number: R23112122
Recruit Express Pte Ltd Company Reg. No. 199601303W | EA LICENCE Number: 99C4599
Official account of Jobstore.