[ref. o0367420] Toa Payoh - IT Infrastructure and Security Specialist

IT Infrastructure and Security Specialist

About The Company

The relationships that have been built over the years have earned us the reputation as one of Singapore’s trusted finance companies. We are seeking dynamic individuals to grow with us and to continue building relationships with our valued customers.

Responsibilities:

• Review and enhance the current IT Systems, Policies and Procedures.
• Contribute to IT Infrastructure setup, maintenance and operations.
• Support incident reporting and tracking system, including reviewing, monitoring, and reporting on the corrective measures and improvement areas.
• Monitor and advise on the operating effectiveness of information security workflows and controls.
• Monitor network usage and application logs to ensure compliance with security policies.
• Document any IT security breaches, frauds, assess their damage, support recovery and implement controls.
• Provide support in penetration and UAT testing.
• Liaise closely with suppliers and vendors for procurement of IT hardware, software and services.
• Oversee Annual BCP and DR exercises.
• Contribute to awareness of InfoSec among users by developing training tools and materials.

Requirements:

• Degree holder.
• Experience in managing financial sector IT security requirements, best practices and methodologies, IT governance and regulatory requirements, including direct responsibility for application and infrastructure security.
• Display proficiency in Microsoft applications, Active Directory, virtual machines, OS and Networking Systems.
• Good knowledge of information security and cybersecurity risks and controls, processes, workflows, methodologies, and trends.
• Ability to work independently and assume responsibility for project deliverables.
• Strong initiative to proactively find solutions to requirements.
• Experience in Cyber Security Operations, Incident Response, Forensic Investigation, Threat Intelligence or Vulnerability Management, Security Incident Response and Penetration Testing.
• Experience in application security, security technologies and tools, e.g. vulnerability scanners, firewalls, network, application security, security technologies (system hardening, IDS/IPS, firewall), etc.
• Certified Information Systems Security Professional (CISSP) or ISO 27001 or Certified Information Systems Auditor (CISA) or Certified Information Security Manager (CISM).
• Remuneration and corporate rank will commensurate with experience.