Total 34 human resources job vacancies in Legal / Public / Security category in Islandwide

- 1-year outsourced contract

- Up to $5,000 + Allowance

- Mon – Fri: 8:30am – 6pm

- AMK

Job Responsibilities:

• Apprised of the current state of computer security in place in the organization
• Technically proficient and up-to-date in basic computer security policies and practices
• Proactive in preventing Cyber-Security Incident
• To perform technical security assessment for IT & Network components - Vulnerability assessment, Penetration testing, Opportunistic Hacking, Web application security testing, Security source code review etc.
• To monitor and track the identified vulnerability, issues and fix detected vulnerabilities to maintain a high-security standard
• Be familiar with browser, Web service, cloud security, mobile applications security, and operating system security concepts
• Understanding of leading vulnerability scoring standards and ability to translate vulnerability severity as security risk
• Perform forensic investigation if required
• Review all security logs

Period:

• 1-year outsourced contract

Working Hours:

• Mon – Fri: 8:30am – 6pm

Salary:

• Up to $5,000 + Support allowance $200

Location:

• AMK

Requirements:

• Degree in Computer Engineering, Computer Science or equivalent, although consideration will be given to experience and certifications in lieu of degree.
• At least 2-3 years' experience in cyber security
• Certifications such as CREST, OSCP and CISSP.
• Special Knowledge or Skills:

1. Perform PenTest, Vulnerability Assessment & Risk Assessment
2. Strong in technical skill
3. Able to handle demanding service response and recovery turnaround
4. Able to manage daily support tasks to meet stringent SLA requirements
5. Excellent scheduling and multitasking skills
6. Meticulous and process-oriented
7. Good, hard-working attitude with ability to work well under pressure
8. Good communication skills English (written, spoken) to serve English-speaking clients
9. Good analytical skills with ability to work with others to resolve problems.
10. Good organization skills, with ability to properly document and track information
11. Dynamic, customer oriented, experience working in a fast paced environment
12. Good Knowledge of following products will be advantageous:

- Splunk

- FireEye

- Tenable

Interested applicants, kindly email your detailed resume (MS Word format is preferred):
joan@successhrc.com.sg (Registration no: R1332758)

Please ensure that applications sent through email are no bigger than 1Mb.

We thank all applicants for your interest but regret to inform that only shortlisted candidates would be notified.

Success Human Resource Centre Pte Ltd (EA License Number: 97C4832)

3 Shenton Way, #19-01 Shenton House, Singapore 068805

T: 6337 3183 | F: 6337 0329 | W: www.successhrc.com.sg

Lico Resources, the specialist executive search firm, is partnering a leading financial institution in searching for an Information Technology Risk Management Professional. The institution is a key player in the finance sector, and is dedicated to fostering a secure and technologically advanced environment for its clients. they are seeking a dynamic professional to join their existing team in Singapore.

This role involves collaborating with internal and external teams to assess risks, implement effective security measures, and ensure the overall robustness of the technology landscape.

Key Responsibilities:

• Conduct comprehensive risk assessments for the firm's IT systems, applications, and processes.
• Develop, implement, and enforce risk management policies, procedures, and controls to mitigate potential threats.
• Collaborate with cross-functional teams to identify and address emerging risks associated with technological advancements.
• Monitor and analyze security incidents, providing timely response and remediation strategies.
• Stay abreast of industry trends, emerging threats, and best practices to enhance the firm's risk management capabilities.
• Communicate effectively with stakeholders, including IT teams, senior management, and regulatory bodies.

Qualifications:

• Bachelor's degree in Information Technology, Computer Science, or a related field.
• Minimum of 5 years of experience in information technology risk management, with a preference for candidates with financial services industry experience.
• Strong understanding of information security frameworks, risk assessment methodologies, and regulatory requirements.
• Familiar with related regulations such as Technology Risk Management Guideline, CCoP2 Risk Management Practices, Guideline on Business Continuity Management, Guideline on Outsourcing and other relevant notices and guidelines
• Familiarity with industry frameworks and methodologies for technology risk management, such as NIST Cybersecurity Framework, ITIL, ISO 27001, and COBIT. Professional certifications such as CISA (Certified Information Systems Auditor), CISM (Certified Information Security Manager), or CRISC (Certified in Risk and Information Systems Control) are advantageous.
• Experience with risk assessment tools and technologies.
• Excellent communication skills, both written and verbal.

If you are interested in this role, please send us your updated resume today to nicole@licoresources.com quoting reference number A09478 Please note that only shortlisted candidates will be notified.

“Data provided is for recruitment purposes only.”

Job Reference No: A07415 EA Licence No.: 13C6733 EA Registration No.: R1333454

Job Responsibilities:

• Network security management (e.g. intrusion prevention system, virtual private network)
• Web security management (e.g. URL filtering, web application firewall)
• End point security management (e.g. anti-malware, device control, application control, data loss prevention or network access control)
• Messaging security management (e.g. anti-malware, anti-spam, content filtering)
• Security & vulnerability management (security information and event management, security device systems management, device and application vulnerability management)
• Automation of management tasks

Period:

• 1 year contract

Working Hours:

• Monday - Friday, 8.30am - 6pm

Salary:

• up to $7000

Location:

• Kallang

Requirements:

• Degree/Diploma in Computer-related disciplines
• At least 5 years of experience that covers management of enterprise security solution n
• Experience in implementation and integration of Cyber Security Platform
• Possess knowledge across various information security technologies/areas in a large enterprise including firewalls, intrusion detection, encryption, Linux O/S, Windows O/S, databases, antivirus, patch management, vulnerability scanning, backup, logging and monitoring, remote access, application development, network security, application security, and change management
• Information Security or IT Controls Certification such as Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM) would be an added advantage

Interested applicants, kindly email your detailed resume (MS Word format is preferred):
tracy@successhrc.com.sg (Registration no: R1107390)

Please ensure that applications sent through email are no bigger than 1Mb.

We thank all applicants for your interest but regret to inform that only shortlisted candidates would be notified.

Success Resource Centre Pte Ltd (EA License Number: 97C4832)

3 Shenton Way, #19-01 Shenton House, Singapore 068805

T: 6337 3183 | F: 6337 0329 | W: www.successhrc.com.sg

Vulnerability Assessment Security Engineer | $ 6500

The key responsibilities:

1. Review and Analyze test report provided by the Authority
2. Provide recommendations for vulnerability remediation
3. Work with technical teams to implement fixes and improvements
4. Conduct follow-up tests to verify remediation for closure
5. Update report with remediation and or waiver justification
6. Analyze periodic security alert updates and reply
7. Work with Vendor to conduct VAPT

We looking for candidate with knowledge on

1. Proficiency in vulnerability scanning tools such as Nessus
2. Familiarity with programming/scripting languages such as Python
3. Strong analytical skills to assess risks and vulnerabilities
4. Our project environment is using Windows and good if candidate has experience and independent.

Interested candidates, please send your CVs on as@tg-hr.com

Regret to inform that only shortlisted candidates will be notified.

CEI: R1988671

EA License: 14C7275

- 1-year outsourced contract

- Up to $5,000 + Allowance

- Mon – Fri: 8:30am – 6pm

- AMK

Job Responsibilities:

• Apprised of the current state of computer security in place in the organization
• Technically proficient and up-to-date in basic computer security policies and practices
• Proactive in preventing Cyber-Security Incident
• To perform technical security assessment for IT & Network components - Vulnerability assessment, Penetration testing, Opportunistic Hacking, Web application security testing, Security source code review etc.
• To monitor and track the identified vulnerability, issues and fix detected vulnerabilities to maintain a high-security standard
• Be familiar with browser, Web service, cloud security, mobile applications security, and operating system security concepts
• Understanding of leading vulnerability scoring standards and ability to translate vulnerability severity as security risk
• Perform forensic investigation if required
• Review all security logs

Period:

• 1-year outsourced contract

Working Hours:

• Mon – Fri: 8:30am – 6pm

Salary:

• Up to $5,000 + Support allowance $200

Location:

• AMK

Requirements:

• Degree in Computer Engineering, Computer Science or equivalent, although consideration will be given to experience and certifications in lieu of degree.
• At least 2-3 years' experience in cyber security
• Certifications such as CREST, OSCP and CISSP.
• Special Knowledge or Skills:

1. Perform PenTest, Vulnerability Assessment & Risk Assessment
2. Strong in technical skill
3. Able to handle demanding service response and recovery turnaround
4. Able to manage daily support tasks to meet stringent SLA requirements
5. Excellent scheduling and multitasking skills
6. Meticulous and process-oriented
7. Good, hard-working attitude with ability to work well under pressure
8. Good communication skills English (written, spoken) to serve English-speaking clients
9. Good analytical skills with ability to work with others to resolve problems.
10. Good organization skills, with ability to properly document and track information
11. Dynamic, customer oriented, experience working in a fast paced environment
12. Good Knowledge of following products will be advantageous:

- Splunk

- FireEye

- Tenable

Interested applicants, kindly email your detailed resume (MS Word format is preferred):
joan@successhrc.com.sg (Registration no: R1332758)

Please ensure that applications sent through email are no bigger than 1Mb.

We thank all applicants for your interest but regret to inform that only shortlisted candidates would be notified.

Success Resource Centre Pte Ltd (EA License Number: 04C3201)

3 Shenton Way, #19-01 Shenton House, Singapore 068805

T: 6337 3183 | F: 6337 0329 | W: www.successhrc.com.sg

Responsibilities

• Responsible for implementing systems and network security related projects and work with customer, vendors, presales and project team during the deployment

• Gather business and/or system requirements for cyber security to plan, design and implement technical solutions in accordance with the specifications & service levels.

• Demonstrate in-depth experience and technical proficiency in systems and network security solutions for enterprise environments and provide expertise to service delivery teams on systems and network security domain

• Coordinate and/or manage project deployment tasks to include design, implementation integration, formal testing, configuration changes and specification/as-built documentations.

• Work closely with the project manager to coordinate and transit all technical deliverables into production environment.

• Responding to all system and/or network security breaches.

• Ensuring that the organization's data and infrastructure are protected by enabling the appropriate security controls.

• Participating in the change management process.

• Troubleshooting, testing and identifying network and system vulnerabilities.

• Daily administrative tasks, reporting, and communication with the relevant departments in the organization

Requirements

• At least 2 years implementation experience or accreditation from major security products or 2 years of work experience with incident detection, incident response, and forensics.

• Good understanding of Risk Management, Disaster Recovery, Business Continuity and IT Regulatory Compliance

• Experience / knowledge on IDM/IAM/PAM/MDM solutions would be an added advantage

• Experience in review the scope of work and design and contribute to the development of the solution architecture.

• Possess certifications like CISSP or equivalent would be an added advantage

• Strong analytical and problem solving skills

• Driven, motivated and has initiative

• Good project coordination skills

Licence no: 12C6060

Responsibilities

• To conduct periodic cybersecurity vulnerability assessment for the respective business unit and liaising with Group IT and SOC for remediation

• To own and conduct all Security Acceptance Test (SAT) for the group and sectors IT initiatives, and liaise with the business owners for remediation

• Maintain awareness of evolving cybersecurity threats, threat detection and protection techniques to safeguard existing systems

• To provide cybersecurity awareness training, technical advisory and consultancy to the group and business unit

• To review the group and business unit security appliances’ rules i.e. Firewall, Intrusion Protection System, Proxy, Web Application Firewall (WAF), Network Access Control (NAC), Antivirus, Data Loss Prevention (DLP) and ensure relevancy

• To be the group and/or business unit’s interface for all cybersecurity queries, reviews and audits

Requirements

• Degree in Information Security, Computer Science, Information Technology, Computer Engineering or equivalent

• Minimum 3 years experience in infrastructure & application security

• Good knowledge of security principles, policies and industry best practices

• Excellent communication skills and able to work independently

• Candidate with Certification in Systems Security Certified Practitioner (SSCP) or Information System Security Professional (CISSP) or Ethical Hacker (CEH) will be an advantage

Licence no: 12C6060

Job Objectives

The Security Governance Specialist role will support the Head of Security Governance in enhancing and maintaining the Security Governance within the Group Information Security(GIS) function in the Bank.

Key Responsibilities

This position will support senior Security Governance team members and work closely with various business, risk and technology stakeholders to:

• Proactively assess the compliance exposure to current and emerging security-related regulatory requirements and plan & track remediation efforts.

• Manage reverse third-party due diligence engagements related to GIS.

• Manage audit, assurance and regulatory engagements related to GIS including ongoing knowledge management on queries and request for information.

• Track and report against the technology KORI(Key Operational Risk Indicators)/KRIs and required security metrics.

• Execution of the GIS KRCSA (Key Risk and Control Self Assessments).

• Management policy, procedures and standards updates and control.

• Manage various GIS initiatives and duties as assigned.

Key Requirements

• Communicate effectively with a variety of internal and external teams and stakeholders.

• Capable of managing a variety of priorities and deliverables with minimal guidance or supervision.

• Ability to respond to any requests and issues on a timely basis.

Education

• Diploma/Degree in engineering/Computer Science / IT/Cyber Security from a recognized education institution.

• Professional Technology Risk Management/Cybersecurity related qualification will be favorable although not mandatory.

• Knowledge of industry best practices.

Technical Skills

• Overall experience 5+ years of experience.

• 2+ years of relevant experience in Security/IT governance disciplines.

• Have a strong security risk and analytical mindset in approaching situations and interactions with stakeholders.

• Effective negotiating skills and demonstrated sensitivity to working and interacting with stakeholders.

• Good knowledge of Security concepts and practices.

• Good knowledge of Security related guidelines and advisories from regulators.

• Good with numbers for use in metrics.

Soft Skills

• Good written and verbal communication skills and expertise in setting and managing stakeholder expectations.

• Process aware mindset.

• Strong analytical and problem-solving skills.

• Effective time management and organizational skills.

• Strong team player.

• Able to work independently with minimal supervision.

• High degree of attention to detail and discipline on tracking and managing the closure of identified gaps and issues.

• Willing to learn quickly.

We are representing our client in the International Affairs industry to hire for a Legal Counsel.

Key Responsibilities:

• Provide legal support, draft and review contracts, agreements, and legal documents.
• Conduct legal research and offer advice on regulatory matters.
• Handle disputes, manage litigation, and coordinate with external counsel.
• Update legal policies, maintain a legal database, and ensure compliance with organizational policies.
• Assist with reporting and offer recommendations for improvements.
• Deliver internal training on relevant laws if needed.
• Support general administrative and coordination tasks as assigned.

Skills & Knowledge:

• Solid understanding of private law, both domestic and international, including contracts, data protection, IP rights, HR, and financial management.
• Strong attention to detail and the ability to manage multiple tasks with internal teams and external partners.

Qualifications & Experience:

• Law degree from an accredited institution.
• Bar admission with legal practice eligibility.
• 2-3 years PQE

Interested candidates, please apply here.

EA Personnel (Koh Pei Wen)

EA Reg: R23115205

APBA TG Human Resources Pte Ltd

EA License: 14C7275

Responsibilities

• Configure, manage, and maintain security devices such as firewalls, Endpoint Security etc. listed below.

• Ensure proper integration and functioning of security platforms.

• Regularly review and update security device configurations to align with best practices and evolving threats.

• Perform routine maintenance, updates, and patches on security devices and platforms.

• Monitor security alerts and events from various sources, including SIEM systems, IDS/IPS, firewalls, and Endpoint security tools etc..

• Investigate and analyse security incidents to determine the root cause and impact.

• Conduct regular vulnerability assessments and scans on the organization's systems, networks, and applications.

• Analyse scan results, prioritize vulnerabilities based on risk, and work with IT teams to remediate identified issues.

• Track and report on the status of vulnerabilities and remediation efforts.

• Work closely with IT, network, and application teams to ensure security controls are integrated into system design and implementation.

• Collaborate with external partners and vendors to address security issues and coordinate incident response efforts

Requirements

• Degree in Computer Science or Equivalent

• At least 3-5 years of relevant experiences

• Familiar with at least 5 of the listed tools below:

• Privilege Access Management

• Database Activity Monitoring

• Endpoint Detect and Response

• Endpoint Anti-malware

• Vulnerability Assessment scanner

• Next Gen Firewall

• Patch management system

• Security Information and Event management

• Security event review and investigation

• Handling of security advisory

• Security configuration management system

Licence no: 12C6060

Cyber Security Operations and Support Engineer

Responsibilities:

• Maintain the IT security infrastructure components such as firewalls, servers, intrusion prevention / detection systems, end-point protection system, VMware systems, SIEM, PAM, etc.
• Manage problem resolution process and solve technical issues with hardware and software using various diagnostic tools.
• Work well with OEM/ product vendor to keep customer infrastructure in good shape.
• Handle patching process and look after the IT security components, e.g. monitor, evaluate, test, and apply critical patches to operating systems, applications, firmware, network switches, etc.
• Technically proficient in networking technologies.
• Able to perform hardening, vulnerabilities assessment and findings resolution.
• Ready to be on 24x7 standby (rare activation).

Requirements:

• Degree / Diploma in Information Technology, Information Systems, IT Security, Computer Science or equivalent
• Good working knowledge in Windows and Red Hat Linux OS
• Good working knowledge of virtualization, end-point security and network security
• Basic knowledge in Nessus scan, PAM and SIEM is preferred.
• Good troubleshooting and problem-solving skill.
• Independent with little supervision
• Relevant work experience in servers & network management and maintenance
• Certification in Cybersecurity or networking has an advantage.
• Mainly in Changi Naval Base, occasionally at AMK or Tuas Naval base (transport reimbursement provided)

Maestro HR

damien lee tian hong

R1106726

16C8462

Lico Resources, the specialist executive search firm, is partnering with a leading financial institution in searching for an Information Technology Risk Management Professional. The institution is a key player in the finance sector and is dedicated to fostering a secure and technologically advanced environment for its clients. they are seeking a dynamic professional to join their existing team in Singapore.

This role involves collaborating with internal and external teams to assess risks, implement effective security measures, and ensure the overall robustness of the technology landscape.

Key Responsibilities:

• Conduct comprehensive risk assessments for the firm's IT systems, applications, and processes.
• Develop, implement, and enforce risk management policies, procedures, and controls to mitigate potential threats.
• Collaborate with cross-functional teams to identify and address emerging risks associated with technological advancements.
• Monitor and analyze security incidents, providing timely response and remediation strategies.
• Stay abreast of industry trends, emerging threats, and best practices to enhance the firm's risk management capabilities.
• Communicate effectively with stakeholders, including IT teams, senior management, and regulatory bodies.

Qualifications:

• Bachelor's degree in Information Technology, Computer Science, or a related field.
• Minimum of 8 years of experience in information technology risk management.
• Strong understanding of information security frameworks, risk assessment methodologies, and regulatory requirements.
• Familiar with related regulations such as Technology Risk Management Guideline, CCoP2 Risk Management Practices, Guideline on Business Continuity Management, Guideline on Outsourcing and other relevant notices and guidelines
• Familiarity with industry frameworks and methodologies for technology risk management, such as NIST Cybersecurity Framework, ITIL, ISO 27001, and COBIT. Professional certifications such as CISA (Certified Information Systems Auditor), CISM (Certified Information Security Manager), or CRISC (Certified in Risk and Information Systems Control) are advantageous.
• Experience with risk assessment tools and technologies.
• Excellent communication skills, both written and verbal.

If you are interested in this role, please send us your updated resume today to nicole@licoresources.com quoting reference number A08915. Please note that only shortlisted candidates will be notified.

“Data provided is for recruitment purposes only.”

Job Reference No: A07415 EA Licence No.: 13C6733 EA Registration No.: R1333454

Job Responsibilities

Insider Threat Analyst is an operational role within UOB’s Group Security Operations Center. The incumbent will be responsible for the continuous monitoring, analyzing, and investigating of insider threats and data leakage incidents. He/She must have good analytical and investigative skills to recognize and detect anomalous behavior.

Key Responsibilities

§ To participate in the day-to-day monitoring, triaging, and investigating of potential suspected anomalous usage behavior alerts

§ To work with internal teams to validate alerts within stipulated SLA

§ To perform analysis on usage behavior trends to discover potentially fraudulent activities

§ To perform continuous review and improvement on current monitoring operations to enhance effectiveness of monitoring

§ Work with external partners to resolve issues or implement improvement to monitoring

§ To gain good understanding of internal business applications to be able to analyze, recognize and identify potentially anomalous activities

§ Investigate Data Loss Prevention (DLP) alerts and escalate DLP incidents in accordance to the DLP incident response and handling procedures

§ Carry out DLP System Ruleset change requests in accordance to change management procedures

§ Support management reporting of DLP incidents and statistics for ad-hoc and monthly reporting

§ Coordinate DLP audit requests; respond to questions or reporting requirements from local authorities as required

§ To work with internal cyber security teams to ensure investigations are comprehensive and to track and follow up on all escalated incidents to closure

Job Requirements

Education

§ Diploma/Degree in Business Information Technology/Business Analytics from recognized academic institutions

Technical Skills and Experience

§ Minimum 3-5 years of relevant experience as an insider fraud/threat analyst in a financial institution

§ Excellent analytical and investigative skills

§ Prior experience with analytical platforms

§ Experienced with working with machine learning enabled platforms would be advantageous

§ Experience with administration and operation of DLP Systems preferred

§ Experience in development and fine tuning of DLP Ruleset preferred

§ Knowledge of Cyber Security would be advantageous

§ Relevant working experience in SOC environment and related processes will be added advantages

Soft Skills

§ Good communication skills

§ Strong analytical and problem-solving skills

§ Ability to adhere to work processes and procedures

Other Requirements

§ Ability to work independently

§ Ability to work well with the rest of the team and department

Responsibilities

• Responsible for conducting Cloud Security Penetration Testing and ensuring the security of the platform.

• Your day-to-day activities will involve identifying vulnerabilities, conducting security assessments, and implementing security measures.

• Support the independent Cloud Security Penetration Testing performed by independent Security Vendor

• Develop and implement security measures to protect the platform from potential threats.

• Conduct security assessments to identify potential risks and vulnerabilities.

• Collaborate with cross-functional teams to ensure the seamless integration of security measures.

Requirements

• Bachelor's degree in Computer Science, Information Security, or a related field.

• Beginner proficiency in Cloud Security Penetration Testing and advanced proficiency in Platform Security.

• More than 1- 2 years of relevant working experiences

Licence No: 12C6060