Total 565 it technician job vacancies in Legal / Public / Security category in The United States of America

Summary of Role:

Security Analyst is responsible for security monitoring and responding to alerts and events. He/Shewill be creating, tuning, compiling metrics of all security devices, along with documentation of processes and procedures.

This role will require strong analytical and collaboration skills, detailed working knowledge of current and emerging security technologies, as well as the ability to correlate events to identify abnormal behaviour.

Responsibilities:

• Monitor and advice on information security issues related to the systems and workflow to ensure the internal security controls are appropriate and operating as intended.
• Coordinate response to information security incidents.
• Develop and publish information security policies, procedures, standards and guidelines based on knowledge of best practices and compliance requirements.
• Assist with data classification assessment and security audits and remediation plans.
• Collaborate with IT management to manage security vulnerabilities.
• Perform network penetration tests, vulnerability assessment scans and risk assessment reviews.
• Develop, coordinate and review server hardening for platforms used within the environment.
• Review of logs pertaining to security of various platforms, namely server events and logs, network logs.
• Create, conduct and maintain user security awareness.
• Conduct security research in keeping abreast of latest security policies.
• Perform other security related duties as assigned.

Requirements:

• Degree in Computer Science/Information Technology or equivalent.
• At least 3 years’ experience in IT sector.
• Basic technical knowledge in IT network infrastructure, server platforms (Unix, Windows platform) and desktops (OS X and Windows XP and above).
• Experience in using security tools (Security Endpoint solutions, HP ArcSight, QRadar, Rapid7 Nexpose, Tenable Nessus).
• Certified with one or more of the following: QISP, CISSP, Cybersecurity Nexus, CompTIA Security+.

Responsibilities :

• Analyze and prioritize vulnerabilities based on severity, potential impact and business risk, and collaborate with relevant teams to implement effective mitigation strategies.
• Provide strategic guidance, insights, and direction on technological, cybersecurity, and policy-related topics.
• Lead and participate in the development, implementation, and continuous improvement of incident response procedures, and processes.
• Collaborate with other teams at multiple geographic locations to investigate and document security incidents, root causes, and recommend remediation actions.
• Planning and appraising ongoing assessment of antivirus, application control, firewall, SIEM, VPN, SSL, intrusion detection or intrusion prevention and other network component policies.
• Managing and configuring security systems such as firewalls, intrusion detection and prevention systems, anti-virus software, and other security-related software and hardware.
• Monitoring systems, servers, and networks to detect and respond to potential security threats or suspicious activities.
• Developing and implementing security policies and procedures that ensure the organization’s data and systems are protected against cyber threats.
• Conduct regular vulnerability assessments and penetration testing to identify potential security weaknesses and risks to make improvements in the organization’s security.
• Report all security incidents to the home office and work with corporate IT on response and resolution strategy.
• Contribute to the development and execution of security awareness training programs for employees to enhance security awareness and best practices.
• Stay up to date with the latest cybersecurity threats, attack techniques and incident response strategies.

Requirements :

• Bachelor’s Degree in Computer Science/Information Technology or equivalent.
• At least 5 years of experience in a cyber or information security management role.
• Strong knowledge of the latest cybersecurity threats, trends, modern cybersecurity concepts, and technologies (zero trust, CIS Controls, OWASP, MITRE ATT&CK, XDR, CloudSec, AppSec, NIST, ITIL, Azure Well Architected Framework, etc).
• Experience in domains of Cyber Security Operations, Incident Response, Forensic Investigation, Threat Intelligence, or Vulnerability Management preferred.
• Ability to manage and configure security systems, monitor network traffic and system logs, conduct regular security assessments and respond to security incidents.
• Demonstrated understanding of business processes, IT risk management, and related standards.
• Proficiency in utilizing industry-standard tools for vulnerability scanning, assessment, and penetration testing.
• Excellent problem-solving skills and the ability to think critically under pressure.
• Effective communication and interpersonal skills, with the ability to collaborate across teams and convey technical concepts to non-technical stakeholders.
• Proven track record of staying current with evolving cybersecurity threats and best practices.
• Exceptional planning and organizational skills, and excellent written and oral communication.
• Self-starter with initiative and the ability to effectively prioritize and execute tasks with direction from corporate headquarters.
• Professional information security certification preferred, such as:

- CompTIA Security+

- Certified Information Systems Security Professional (CISSP)

- Certified Information Systems Auditor (CISA)

- Certified Information Security Manager (CISM)

Position

Data Security Specialist- Data Security and Endpoint Security

Data Security Specialist is a technical Specialist role within the Data Security Services team and will be responsible for managing, administration and supporting the Data Security and Endpoint Security technologies for the bank.

Person will be the technical point of contact for the Run team and the related activities to data security and will be the last level of escalation for the Security specialists in the team. He/She is also responsible for the technical transition and validation of Security services from other regions to Singapore. He/She will be involved in projects and POC’s that may involve security services. He/She works with continuous improvement principles. He/She is equivalent to the Subject Matter Specialist on the technologies within data security.

Data Security Services team in Singapore is responsible for day-to-day operational services on the infrastructure of Europe (mainly France and UK) and Asia remotely from Singapore. France infrastructure represents approximately 80% of the worldwide production activities of the company in Singapore.

Team works in Europe time zones and this role will be aligned primarily to Paris working hours. Flexible rotations are followed based on the nature of duties.

The operational support of the team covers the following technical scope:

• Endpoint Security technologies – Anti-virus management, Host Intrusion Prevention System etc.
• Data Leak Prevention systems. - Email Prevent, Web Prevent, Endpoint Protect,
• Encryption Solutions: Disk Encryption, File and Folder encryption,
• Database Audit Monitoring solutions
• Email and Web Phishing Prevention solutions.
• Vulnerability Management

Detailed Job Responsibilities

The Specialist has a wide spectrum of responsibilities and actions. Person will be responsible for following (but not limited to) responsibilities in day-to-day work:

As the Specialist of the team, he/she:

• act as the last level of escalation for the team members
• own Incident, Problem and change management process for the team
• assigns technical tasks and manages delegation
• animates the team to encourage collaboration and sharing of practices
• participates to recruitment process for the team

As the Specialist of his/her scope of activity, he/she:

• is actively involved in incident management (fault investigation, resolution escalations of all monitoring alerts and user initiated problem calls/tickets) and request management
• Is the final technical approver for any changes into Data Security systems and is accountable for any technical changes in the environment from a RUN/BAU perspective
• Is involved in projects like End of Life, New Builds, migrations and technical upgrades of the solution managed by the team
• Participates in global Infra events (like Power down and DR Tests)
• ensures activity is performed in compliance with norms, standards, processes and procedures
• gathering required evidence using multiple forensic tools to investigate any data leak incident, conducting interrogation if required, case closure and reporting
• ensures documentation is up to date and relevant for use
• lead the continuous improvement initiatives
• responsible to drive and deliver root cause for any high severity issues
• Focus on automation and optimum use of the team to improve efficiency
• Maintain appropriate knowledge to ensure to be fully qualified to undertake the role.
• Complete all mandatory training as required to attain and maintain competence
• Comply with all applicable legal, regulatory and internal Compliance requirements, including, but not limited to, the Singapore Compliance manual and Compliance policies and procedures as issued from time to time; Financial Security requirements, including, but not limited to, the prevention of Financial Crime and Fraud including reporting obligations to the Money Laundering Reporting Officer.

Work Schedule

• Work schedule is mainly focused to support Asia and EMEA (Paris) time zone; however, may have to support during non-offce hours for critical incidents or escalation as per the assigned on-call support requirements;
• Rotational Shift schedule is followed;
• Work Hours: 2 PM – 11 PM SGT (with 1 week of General shift 9 AM – 6 PM SGT).

Qualifications and Profile

Functional

• 8 - 10 years of IT Security experience in administration and management of IT Security technologies primarily Symantec Data Loss Prevention, Symantec Endpoint Protection, Email Security, Data Classification and other endpoint & data security solutions;
• Should be a bachelors/masters/engineering graduate or equivalent technical degree in Information Technology or Computer Science;
• Knowledge of different domains of IT Security;
• Working & hands-on experience in administering the IT Security Solutions;
• Must have experience in working in similar Production setup in Run (Operations) mode;
• Ability to apply risk based approach while working on assigned responsibilities;
• Experience in defining, implementing, and enforcing enterprise-level IT security policies for endpoint and data security solutions;
• Must have working experience in managing endpoint security solution for a Large enterprise level environment, working experience in financial organization is preferred;
• Excellent in analytical, communication and documentation skills;
• Ability to organize work and be able to priories work as per the needs of Production Operation’s needs;
• Must have strong understanding of ITIL processes and comfortable working in process oriented environment;
• Ability to work independently and as well as a part of team and is able to work under minimal supervision;
• Should have time management skills and able to manage work in fast moving environment;
• Excellent written and oral English language skills;
• Knowledge of French language is preferred.

Technical

• Hands-on experience on Symantec Data Loss Prevention (DLP);
• Highly proficient in data leakage prevention (DLP) technologies - troubleshooting and configuration management;
• Deployment, integration and administration experience of various components of Symantec DLP:

- Symantec Endpoint Protect

- Symantec Web Prevent

- Symantec Email Prevent

- Symantec Enforce

• Must have experience in defining, designing and configuring DLP Policies as per the business requirements;
• Deploy, upgrade and troubleshooting knowledge on Symantec DLP solution;
• Scripting knowledge (Phyton, Regular Expression, Powershell) is desirable;
• Professional Certifications:

- CISSP certified is highly preferred

- Symantec Certified Specialist: Administration of Data Loss Prevention (any version) is highly preferred.

• Must be experienced to cover the scope as mentioned in the SKILLS MATRIX section of this document.

SKILLS MATRIX

Technical skills

• Symantec Data Loss Prevention Administration (DLP Policy/Rules creation Specialistise): Must to have
• Trend Micro Deep Discovery Email Inspector (Phishing Prevention): Good to have
• Symantec Endpoint Protection (Anti-Virus): Good to have
• Phyton, Regular Expression, Powershell: Good to have

General skills

• Ability to prioritize effectively: Must to have
• Ability to work autonomously: Must to have
• Ability to work successfully in a team: Must to have
• Adaptability to changing environments: Must to have
• Inter-personal skills: Must to have

Management skills

• Ability to deal with issues, time management: Critical
• Manage escalated incidents: Critical
• Capacity to cooperate / work across discipline: Critical
• Capacity to develop others: Desired

Language skills

• English: Must to have
• French: Good to have

Next Step

Prepare your updated resume and expected package.

Simply click on 'Apply here' or email to prasant.sirohi@adecco.com to drop your resume

All shortlisted candidates will be contacted.

Prasant Sirohi

EA License Number: 91C2918

Registration Number: R22106307

Requirement

• At least 3 years or more of relevant experience
• Skills on Cyber Security
• Skills on SIEM SOAR/Qradar, Splunk, Palo, DAM, Google Secops is good to have

Responsibilities

• Integrate security into all stages of system design and development. Perform risk assessments and threat modelling when required.
• Implementation & Automation: Deploy SIEM, SOAR, UEBA, and cloud security solutions. Automate security infrastructure with Terraform and maintain consistent security deployments.
• Testing & Hardening: Conduct System Security Acceptance Testing (SSAT), Operational Security Acceptance Testing (OSAT), Integration Acceptance Testing (IAT), User Acceptance Testing (UAT), and system hardening to ensure secure configurations.
• Documentation & Handover: Create detailed documentation for security controls and processes. Provide training and handover to the operations team, with operational guides for security management.
• Log Management & Monitoring: Implement log management systems to centralize security event data and monitor cloud environments with AWS and Azure tools.

Interested applicants, Please send your updated resume in Word format to hres@itcspl.com

Please indicate Job Code 109 on email subject

We regret that only shortlisted candidates will be notified.

IT Consultancy & Services Pte Ltd

EA No: 92C5311 | EA Reg No. R1104129

Please visit www.itcspl.com to learn more information about ITC

Company Description

ESGpedia Pte Ltd is Asia’s leading ESG data and technology company, headquartered in Singapore. Its ESGpedia platform powers the ESCAP Sustainable Business Network (ESBN) Asia-Pacific Green Deal digital platform, the ASEAN Single Accesspoint for ESG Data (SAFE) pilot initiative, and the Monetary Authority of Singapore’s (MAS) Greenprint ESG Registry. With more than 5 million sustainability data points, ESGpedia serves as the Nexus of ESG, digitally empowering the financial sector, corporates, and SMEs to ensure compliance towards ESG regulations and attain their ESG goals.

ESGpedia is an Award Winner of the MAS Global FinTech Innovation Challenge Awards 2020, and a two-time awardee of the Financial Sector Technology and Innovation (FSTI) Proof of Concept (POC) grant, under the Financial Sector Development Fund administered by the MAS. ESGpedia is also an IMDA Spark company and GRI Licensed.

Job Summary

The primary role of the IT Security Officer is to ensure that it acts in the best integrity to align to ESGpedia’s Information Security Strategy and achieves ESGpedia’s information security objectives. It works with the various Committees of the Company (such as ISMS Committee, Risk Committee, Sustainability & BCM Committee) to undertake these aspects:

a) Establishing, implementing and maintaining the Information Security Management System in compliance with the Information Security Policies governed under ISO Standards, SOC2 Type 2 and all relevant local regulations pertaining to IT Security compliance standards.

b) Coordinating operational security activities for ESGpedia’s, managing the ISMS daily and conducting risk assessments, and in some cases timely remediations of internal/external audits points pertaining to all IT Security matters.

c) Escalating any issues, as necessary, to the respective Committees that govern after IT and Operational Security matters.

Job Responsibilities

a) Assume role of an Administrator and have oversight function of the system access management of AWS, Atlassian, and Microsoft platforms, including user access management, security configurations, and vulnerability assessments.

b) Conduct regular security assessments and audits to identify and mitigate potential risks and vulnerabilities.

c) Collaborate with cross-functional teams to develop, update, and enforce IT security policies, procedures, and guidelines.

d) Provide company-wide training on IT Security Awareness to promote a culture of security consciousness and best practices.

e) Stay up to date with the latest industry trends, threats, and technologies to proactively identify potential security risks and recommend appropriate countermeasures.

f) Manage vendor relationships, including selection, evaluation, and ongoing oversight to ensure compliance with security requirements.

g) Perform proof-of-concept evaluations for new security technologies, solutions, or enhancements.

h) Respond to security incidents, conduct investigations, and provide recommendations for incident response and remediation.

i) Collaborate with internal and external stakeholders to develop and implement incident response plans and business continuity strategies.

j) Maintain documentation of security processes, procedures, and controls to meet regulatory and compliance requirements.

k) Participate in security-related projects, initiatives, and risk assessments as required.

Qualifications for IT Security Officer

a) Graduate from a recognized University with a degree in Computer Science, IT Engineering subjects is preferred.

b) Professional certifications such as CISSP, Security+, CEH, or similar are welcomed.

c) Proven experience in administering AWS, Atlassian, and Microsoft platforms is advantageous.

d) In-depth knowledge of IT security principles, best practices, and standards.

e) Ability to monitor surveillance systems and respond to emergency situations

f) Excellent team-building and leadership skills

g) Ability to pay close attention to detail

h) Interest in protecting the people and assets within the organization or company

i) Able to handle stress well, maintain a positive attitude, full of initiative and able to work independently with minimum supervision.

Technical Skillset Requirements

• Min. 2- 3 years' working experiences in IT Security operations
• Good knowledge of Industry Standards such as ISO 27001, PDPA, NIST, PCI-DSS, MTCS and TRM.
• Good command of English, both written and spoken.
• Able to work independently & take ownership, an out-of-the box thinker with modern concepts and initiatives who likes to come out of the comfort zone with a can-do attitude.

Notice

We regret to inform that only shortlisted candidates will be notified. All applications will be treated with strictest confidence.

By submitting any application or resume to us, you will be deemed to have read and agreed to the terms of our Privacy Policy(https://esgpedia.io/privacy-policy/), and consented to us collecting, using, retaining and disclosing your personal information to prospective employers for their consideration.

You may refer and access our website(https://esgpedia.io/) for more information.

Position Overview

The IT Security Operations Analyst role’s is to safeguard the organization’s IT systems and data. This role requires the candidate's active participation in the implementation of security policies and procedures, the monitoring and analysis of security events and the maintenance of security tools. Other responsibilities are to identify, investigate and resolve any security threats, vulnerabilities and incidents. The candidate must keep up to date with the latest security trends, have excellent communication and problem-solving skills and have a deep understanding of security principles and technologies. The individual will have a functional role in mentoring other team members and share the off-hour support responsibilities.

Responsibilities

1. Monitor, maintain, and analyze network and computers for unusual activity or suspicious behavior by reviewing information security logs.
2. Manage and resolve security Level 2 support tickets per defined SLAs
3. Investigate and analyze security incidents to determine root cause and impact.
4. Report compliance failures to management for immediate remediation.
5. Responsible for the effective management of the organization’s Crowdstrike Falcon Admin Console.

• Deploy Crowdstrike Falcon EDR detection agent on all corporate devices.
• Ensure coverage of malware detection for all managed EDR Agent capable devices.
• Migrate existing server agents from alert-only mode to blocking mode.
• Provide EDR escalation support for agents already installed

1. Assist and collaborate with the Information Security Group and coordinate with IT Infrastructure on the following:

• IT Threats and Vulnerabilities Assessments, Protection, and Remediation
• IT security patch management follow-up and reporting
• Firewall rule documentation, review, and approval
• Promote within IT Infrastructure the proper Security controls aligned with the IT Security Program
• Validate and maintain operational security documentation.

1. Continuously assess the current Security Posture and provide recommendations for remediation and prevention of security incidents.
2. Collaborate with cross-functional teams to implement security solutions and technologies.
3. Stay up to date with industry trends and emerging security threats to proactively address potential risks.
4. Assist in the deployment of new security systems.
5. Participate in security audits and assessments to ensure compliance with regulations and standards.
6. Understand the dark and deep web ecosystem.
7. Manage and support the following applications:

• Palo Alto/Firewall
• Network security (Micro-segmentation)

1. Perform other duties as required

Qualifications and Experience

• Bachelor’s degree in Cybersecurity Engineering or Computer Sciences
• Strong professional experience in information security with a focus on security operations and technical support
• Strong Experience with Palo Alto and Crowdstrike platform
• Experience with VPN, SSL and other encryption technologies
• Good knowledge of server, workstation, and Active Directory technologies that impact security controls
• Deep understanding of TCP/IP, DNS and common network services
• Experience with security frameworks and compliance requirements such as GDPR, ISO 27001, NIST 800 and PCI DSS.

Position:

We are looking for an IT Security Specialist to join our Core Banking IT team in a dynamic, multicultural environment. Key responsibilities include managing z/OS Unix (Mainframe Access Management) operations and audits, driving z/OS initiatives like MFA and STIG, scripting for task automation, and overseeing identity and access management to ensure strong controls and high service quality.

Job Responsibilities

• Manage and drive the z/OS Unix (Mainframe Access Management operations and Audits.
• Drive and operationalize to complete z/OS initiatives like MFA, STIG
• Ability to write scripts/JCL to automate tasks & improve processes
• Manage identity and access management processes, standards and procedures to ensure control effectiveness and service quality
  

Job Requirements

• Bachelor’s degree in IT or equivalent. Major in IT security or related areas would be an added advantage.
• At least 5 – 7 years of experience in Mainframe Security (RACF) administration/operations provided by z/OS UNIX system services (USS), CICS, DB2 and WebSphere MQ with hands-on regulatory compliance knowledge.
• Strong understanding of zSecure Admin and zSecure Audit modules.
• Good working knowledge of Access Management lifecycle and process
• Strong hands-on experience in Microsoft Excel
• Experience in banking or financial services institutions preferred

Next Step

• Prepare your updated resume and expected package.
• Simply click on 'Apply here' or email to prasant.sirohi@adecco.com to drop your resume
• All shortlisted candidates will be contacted.

Prasant Sirohi

EA License Number: 91C2918

Registration Number: R22106307

Security Engineer - IT

As a Security Engineer, you will focus on the problem of keeping our systems safe and protecting our customers while adapting to the high-speed growth of our business and our enormous scale. You will be focusing on keeping interactions on our platform as simplified as possible using advanced engineering to detect and mitigate vulnerabilities and security flaws in Xtremax’s system. The ability to perform systems security or vulnerability analysis and design is a must. 

Responsibilities: 

• Develop a set of security standards and best practices for the organization and recommend security enhancements to management as needed. Develop strategies to respond to and recover from a security breach 
• Set up, configure, and tweak security in all infrastructure systems (System, Server, Network, and Client) 
• Handle, maintain and manage various potential security threats 
• Collaborate with other team members for security design and policy 
• Doing system hardening and penetration testing 
• Doing an internal security audit 
• Handle antivirus and malware protection 
• Doing backup and restore data in our system 
• Documented all internal audit processes, such as patching, update, server access log, VAPT, and backup recovery process 
• Conducts periodic scans of networks to find any vulnerability. They also conduct penetration testing, in which they simulate an attack on the system to highlight or find any weaknesses that might be exploited by a malicious party. 
• Proactive learning, assess and utilize new technologies and concepts with customer requirements 
• Responsibility for educating the workforce on information security through training and building awareness 

• Bachelor’s Degree in Software Engineering / Computer Science / Information Technology / equivalent or relevant work experience. 
• Having good knowledge about security systems and policy 
• Good at managing sensitive and confidential data, workstation devices, patching and upgrading systems, applications, services, and other infrastructure foundational components. 
• Good at planning, developing, and implementing IT security controls that are documented and working properly. 
• Familiar with system hardening and penetration testing 
• Experience handling antivirus and malware protection 
• Familiar with ISO27001 
• Familiar with Linux and Windows OS 
• Familiar with cloud security services such as AWS, Azure, and GCP 
• Able to create some script, i.e., bash, python 
• Love to learn, assess, and utilize new technologies 
• Having certification in cloud security area is a plus 

Job Description

• Industry/ Organization Type: Manufacturing/Electronic Components and Boards
• Position Title: IT Security Manager (Regional)
• Working Location: Bedok (Company pick-up provided at Bedok MRT)
• Working Hours: 5 Days, Mon – Fri (8:15 am – 5:15 pm)
• Salary: Basic up to $12,000 + Variable Bonus
• Duration: Permanent

Key Responsibilities

• Analyze and prioritize vulnerabilities based on severity, potential impact, and business risk, and collaborate with relevant teams to implement effective mitigation strategies.
• Provide strategic guidance, insights, and direction on technological, cybersecurity, and policy-related topics.
• Lead and participate in the development, implementation, and continuous improvement of incident response procedures, and processes.
• Collaborate with other teams at multiple geographic locations to investigate and document security incidents, root causes, and recommend remediation actions.
• Planning and appraising ongoing assessment of antivirus, application control, firewall, SIEM, VPN, SSL, intrusion detection or intrusion prevention, and other network component policies.
• Managing and configuring security systems such as firewalls, intrusion detection and prevention systems, anti-virus software, and other security-related software and hardware.
• Monitoring systems, servers, and networks to detect and respond to potential security threats or suspicious activities.
• Developing and implementing security policies and procedures that ensure the organization’s data and systems are protected against cyber threats.
• Conduct regular vulnerability assessments and penetration testing to identify potential security weaknesses and risks to make improvements in the organization’s security.
• Report all security incidents to the home office and work with corporate IT on response and resolution strategy.
• Contribute to the development and execution of security awareness training programs for employees to enhance security awareness and best practices.
• Stay up to date with the latest cybersecurity threats, attack techniques, and incident response strategies.

APPLY NOW!!!

• Bachelor’s Degree in Computer Science, IT, or equivalent experience.
• Has 5+ years of experience in a cyber or information security management role.
• Strong knowledge of the latest cybersecurity threats, trends, modern cybersecurity concepts, and technologies (zero trust, CIS Controls, OWASP, MITRE ATT&CK, XDR, CloudSec, AppSec, NIST, ITIL, Azure Well Architected Framework, etc).
• Experience in domains of Cyber Security Operations, Incident Response, Forensic Investigation, Threat Intelligence, or Vulnerability Management preferred.
• Professional information security certification preferred (e.g. CompTIA Security+, CISSP, CISA, CISM).

Kindly apply through ANY of the following methods:

• Submit your application by clicking the APPLY button;
• Email your resume to Job(at)anradus.com.sg. Kindly indicate #67372 on the email subject.

Anradus Application Policy: We value each application and ensure every resume is reviewed. Our process is efficient, typically concluding within 3 working days. If you do not receive communication from us within this timeframe, it’s likely that your application has not been shortlisted by our client. In such cases, we recommend continuing your job search to maximize your opportunities.

Anradus Pte Ltd | EA License No. 20C0161 | Angel Lim | EA Reg No.: R1769781

Job Description

• Industry/ Organization Type: Manufacturing/Electronic Components and Boards
• Position Title: IT Security Manager (Regional)
• Working Location: Bedok (Company pick-up provided at Bedok MRT)
• Working Hours: 5 Days, Mon – Fri (8:15 am – 5:15 pm)
• Salary: Basic up to $12,000 + Variable Bonus
• Duration: Permanent

Key Responsibilities

• Analyze and prioritize vulnerabilities based on severity, potential impact, and business risk, and collaborate with relevant teams to implement effective mitigation strategies.
• Provide strategic guidance, insights, and direction on technological, cybersecurity, and policy-related topics.
• Lead and participate in the development, implementation, and continuous improvement of incident response procedures, and processes.
• Collaborate with other teams at multiple geographic locations to investigate and document security incidents, root causes, and recommend remediation actions.
• Planning and appraising ongoing assessment of antivirus, application control, firewall, SIEM, VPN, SSL, intrusion detection or intrusion prevention, and other network component policies.
• Managing and configuring security systems such as firewalls, intrusion detection and prevention systems, anti-virus software, and other security-related software and hardware.
• Monitoring systems, servers, and networks to detect and respond to potential security threats or suspicious activities.
• Developing and implementing security policies and procedures that ensure the organization’s data and systems are protected against cyber threats.
• Conduct regular vulnerability assessments and penetration testing to identify potential security weaknesses and risks to make improvements in the organization’s security.
• Report all security incidents to the home office and work with corporate IT on response and resolution strategy.
• Contribute to the development and execution of security awareness training programs for employees to enhance security awareness and best practices.
• Stay up to date with the latest cybersecurity threats, attack techniques, and incident response strategies.

APPLY NOW!!!

• Bachelor’s Degree in Computer Science, IT, or equivalent experience.
• Has 5+ years of experience in a cyber or information security management role.
• Strong knowledge of the latest cybersecurity threats, trends, modern cybersecurity concepts, and technologies (zero trust, CIS Controls, OWASP, MITRE ATT&CK, XDR, CloudSec, AppSec, NIST, ITIL, Azure Well Architected Framework, etc).
• Experience in domains of Cyber Security Operations, Incident Response, Forensic Investigation, Threat Intelligence, or Vulnerability Management preferred.
• Professional information security certification preferred (e.g. CompTIA Security+, CISSP, CISA, CISM).

Kindly apply through ANY of the following methods:

• Submit your application by clicking the APPLY button;
• Email your resume to Job(at)anradus.com.sg. Kindly indicate #67372 on the email subject.

Anradus Application Policy: We value each application and ensure every resume is reviewed. Our process is efficient, typically concluding within 3 working days. If you do not receive communication from us within this timeframe, it’s likely that your application has not been shortlisted by our client. In such cases, we recommend continuing your job search to maximize your opportunities.

Anradus Pte Ltd | EA License No. 20C0161 | Angel Lim | EA Reg No.: R1769781

TRANSCOMOS ZERO is currently searching for a passionate and dedicated IT Security / Operations Engineer who is proficient in Japanese to add value to our vibrant Operations Team.

Role Objectives:

The successful candidate will be a crucial part of our team, using their expertise in IT security to manage and maintain systems for not only our company but also our group companies.

The role is not limited to security support but includes account management and technical support for clients and vendors.

With a strong grasp of our cloud-based infrastructure tools, the candidate will be fundamental in providing continuous technical support to clients and internal teams within the APAC region.

Key Responsibilities:

- Implement and maintain security configuration across our IT infrastructure (including M365, Google Workspaces, ClickUp, Bitbucket, and etc.)

- Guide IT managers of the group companies per the headquarters' directive.

- Effectively manage and analyze system logs on an ongoing basis.

- Remain updated about the latest security vulnerabilities and take immediate action if necessary.

- Collaborate with internal and external parties to ensure secure, smooth operations.

- Handle client inquiries about our proprietary applications.

- Automate redundant tasks using programming language skills.

- Regularly monitor and maintain system metrics dashboard and alerts.

- Educate colleagues and enhance company documentation about our IT infrastructure.

- Collaborate closely with the Tech department at Japan HQ.

Desired Skills and Experience:

- At least 5 years of extensive experience in IT-related fields.

- Proficient reading and writing skills in Japanese.

- Exceptionally good communication and interpersonal skills.

- Clear knowledge of AWS, Azure(Entra), and/or GCP Services, relating to software development.

- Strong ability to configure SIEM and Power BI tools.

- In-depth familiarization with account management and data security.

- Experience in creating, monitoring and responding to security events.

Preferred Qualifications:

- Proficiency in additional languages such as Chinese, Malay, or Thai.

- Proven experience with Cyber Incident Response Plan (CIRP).

- Expertise in vulnerability management, penetration testing, and implementing security incident response processes.

- Extensive experience in developing, implementing, and maintaining security policies.

- Knowledge of network security design and implementation.

- Experience in using vulnerability scanning tools and security tools.

- Proven record of enhancing cloud security through policy implementation and monitoring.

- Experience in promoting social engineering and phishing countermeasures.

- Ability to provide in-house security training.

- Professional security-related certifications such as CISSP, CISM, CEH are highly desirable.

Position

Data Security Specialist- Data Security and Endpoint Security

Data Security Specialist is a technical Specialist role within the Data Security Services team and will be responsible for managing, administration and supporting the Data Security and Endpoint Security technologies for the bank.

Person will be the technical point of contact for the Run team and the related activities to data security and will be the last level of escalation for the Security specialists in the team. He/She is also responsible for the technical transition and validation of Security services from other regions to Singapore. He/She will be involved in projects and POC’s that may involve security services. He/She works with continuous improvement principles. He/She is equivalent to the Subject Matter Specialist on the technologies within data security.

Data Security Services team in Singapore is responsible for day-to-day operational services on the infrastructure of Europe (mainly France and UK) and Asia remotely from Singapore. France infrastructure represents approximately 80% of the worldwide production activities of the company in Singapore.

Team works in Europe time zones and this role will be aligned primarily to Paris working hours. Flexible rotations are followed based on the nature of duties.

The operational support of the team covers the following technical scope:

• Endpoint Security technologies – Anti-virus management, Host Intrusion Prevention System etc.
• Data Leak Prevention systems. - Email Prevent, Web Prevent, Endpoint Protect,
• Encryption Solutions: Disk Encryption, File and Folder encryption,
• Database Audit Monitoring solutions
• Email and Web Phishing Prevention solutions.
• Vulnerability Management

Detailed Job Responsibilities

The Specialist has a wide spectrum of responsibilities and actions. Person will be responsible for following (but not limited to) responsibilities in day-to-day work:

As the Specialist of the team, he/she:

• act as the last level of escalation for the team members
• own Incident, Problem and change management process for the team
• assigns technical tasks and manages delegation
• animates the team to encourage collaboration and sharing of practices
• participates to recruitment process for the team

As the Specialist of his/her scope of activity, he/she:

• is actively involved in incident management (fault investigation, resolution escalations of all monitoring alerts and user initiated problem calls/tickets) and request management
• Is the final technical approver for any changes into Data Security systems and is accountable for any technical changes in the environment from a RUN/BAU perspective
• Is involved in projects like End of Life, New Builds, migrations and technical upgrades of the solution managed by the team
• Participates in global Infra events (like Power down and DR Tests)
• ensures activity is performed in compliance with norms, standards, processes and procedures
• gathering required evidence using multiple forensic tools to investigate any data leak incident, conducting interrogation if required, case closure and reporting
• ensures documentation is up to date and relevant for use
• lead the continuous improvement initiatives
• responsible to drive and deliver root cause for any high severity issues
• Focus on automation and optimum use of the team to improve efficiency
• Maintain appropriate knowledge to ensure to be fully qualified to undertake the role.
• Complete all mandatory training as required to attain and maintain competence
• Comply with all applicable legal, regulatory and internal Compliance requirements, including, but not limited to, the Singapore Compliance manual and Compliance policies and procedures as issued from time to time; Financial Security requirements, including, but not limited to, the prevention of Financial Crime and Fraud including reporting obligations to the Money Laundering Reporting Officer.

Work Schedule

• Work schedule is mainly focused to support Asia and EMEA (Paris) time zone; however, may have to support during non-offce hours for critical incidents or escalation as per the assigned on-call support requirements;
• Rotational Shift schedule is followed;
• Work Hours: 2 PM – 11 PM SGT (with 1 week of General shift 9 AM – 6 PM SGT).

Qualifications and Profile

Functional

• 8 - 10 years of IT Security experience in administration and management of IT Security technologies primarily Symantec Data Loss Prevention, Symantec Endpoint Protection, Email Security, Data Classification and other endpoint & data security solutions;
• Should be a bachelors/masters/engineering graduate or equivalent technical degree in Information Technology or Computer Science;
• Knowledge of different domains of IT Security;
• Working & hands-on experience in administering the IT Security Solutions;
• Must have experience in working in similar Production setup in Run (Operations) mode;
• Ability to apply risk based approach while working on assigned responsibilities;
• Experience in defining, implementing, and enforcing enterprise-level IT security policies for endpoint and data security solutions;
• Must have working experience in managing endpoint security solution for a Large enterprise level environment, working experience in financial organization is preferred;
• Excellent in analytical, communication and documentation skills;
• Ability to organize work and be able to priories work as per the needs of Production Operation’s needs;
• Must have strong understanding of ITIL processes and comfortable working in process oriented environment;
• Ability to work independently and as well as a part of team and is able to work under minimal supervision;
• Should have time management skills and able to manage work in fast moving environment;
• Excellent written and oral English language skills;
• Knowledge of French language is preferred.

Technical

• Hands-on experience on Symantec Data Loss Prevention (DLP);
• Highly proficient in data leakage prevention (DLP) technologies - troubleshooting and configuration management;
• Deployment, integration and administration experience of various components of Symantec DLP:

- Symantec Endpoint Protect

- Symantec Web Prevent

- Symantec Email Prevent

- Symantec Enforce

• Must have experience in defining, designing and configuring DLP Policies as per the business requirements;
• Deploy, upgrade and troubleshooting knowledge on Symantec DLP solution;
• Scripting knowledge (Phyton, Regular Expression, Powershell) is desirable;
• Professional Certifications:

- CISSP certified is highly preferred

- Symantec Certified Specialist: Administration of Data Loss Prevention (any version) is highly preferred.

• Must be experienced to cover the scope as mentioned in the SKILLS MATRIX section of this document.

SKILLS MATRIX

Technical skills

• Symantec Data Loss Prevention Administration (DLP Policy/Rules creation Specialistise): Must to have
• Trend Micro Deep Discovery Email Inspector (Phishing Prevention): Good to have
• Symantec Endpoint Protection (Anti-Virus): Good to have
• Phyton, Regular Expression, Powershell: Good to have

General skills

• Ability to prioritize effectively: Must to have
• Ability to work autonomously: Must to have
• Ability to work successfully in a team: Must to have
• Adaptability to changing environments: Must to have
• Inter-personal skills: Must to have

Management skills

• Ability to deal with issues, time management: Critical
• Manage escalated incidents: Critical
• Capacity to cooperate / work across discipline: Critical
• Capacity to develop others: Desired

Language skills

• English: Must to have
• French: Good to have

Next Step

Prepare your updated resume and expected package.

Simply click on 'Apply here' or email to prasant.sirohi@adecco.com to drop your resume

All shortlisted candidates will be contacted.

Prasant Sirohi

EA License Number: 91C2918

Registration Number: R22106307

Job Description

• Industry/ Organization Type: Manufacturing/Electronic Components and Boards
• Position Title: IT Security Manager (Regional)
• Working Location: Bedok (Company pick-up provided at Bedok MRT)
• Working Hours: 5 Days, Mon – Fri (8:15 am – 5:15 pm)
• Salary: Basic up to $12,000 + Variable Bonus
• Duration: Permanent

Key Responsibilities

• Analyze and prioritize vulnerabilities based on severity, potential impact, and business risk, and collaborate with relevant teams to implement effective mitigation strategies.
• Provide strategic guidance, insights, and direction on technological, cybersecurity, and policy-related topics.
• Lead and participate in the development, implementation, and continuous improvement of incident response procedures, and processes.
• Collaborate with other teams at multiple geographic locations to investigate and document security incidents, root causes, and recommend remediation actions.
• Planning and appraising ongoing assessment of antivirus, application control, firewall, SIEM, VPN, SSL, intrusion detection or intrusion prevention, and other network component policies.
• Managing and configuring security systems such as firewalls, intrusion detection and prevention systems, anti-virus software, and other security-related software and hardware.
• Monitoring systems, servers, and networks to detect and respond to potential security threats or suspicious activities.
• Developing and implementing security policies and procedures that ensure the organization’s data and systems are protected against cyber threats.
• Conduct regular vulnerability assessments and penetration testing to identify potential security weaknesses and risks to make improvements in the organization’s security.
• Report all security incidents to the home office and work with corporate IT on response and resolution strategy.
• Contribute to the development and execution of security awareness training programs for employees to enhance security awareness and best practices.
• Stay up to date with the latest cybersecurity threats, attack techniques, and incident response strategies.

APPLY NOW!!!

• Bachelor’s Degree in Computer Science, IT, or equivalent experience.
• Has 5+ years of experience in a cyber or information security management role.
• Strong knowledge of the latest cybersecurity threats, trends, modern cybersecurity concepts, and technologies (zero trust, CIS Controls, OWASP, MITRE ATT&CK, XDR, CloudSec, AppSec, NIST, ITIL, Azure Well Architected Framework, etc).
• Experience in domains of Cyber Security Operations, Incident Response, Forensic Investigation, Threat Intelligence, or Vulnerability Management preferred.
• Professional information security certification preferred (e.g. CompTIA Security+, CISSP, CISA, CISM).

Kindly apply through ANY of the following methods:

• Submit your application by clicking the APPLY button;
• Email your resume to Job(at)anradus.com.sg. Kindly indicate #67372 on the email subject.

Anradus Application Policy: We value each application and ensure every resume is reviewed. Our process is efficient, typically concluding within 3 working days. If you do not receive communication from us within this timeframe, it’s likely that your application has not been shortlisted by our client. In such cases, we recommend continuing your job search to maximize your opportunities.

Anradus Pte Ltd | EA License No. 20C0161 | Angel Lim | EA Reg No.: R1769781

Position Type :

Type Of Hire :

Education Desired :

Travel Percentage :

Privacy Statement

FIS is committed to protecting the privacy and security of all personal information that we process in order to provide services to our clients. For specific information on how FIS protects personal information online, please see the Online Privacy Notice.

Sourcing Model

Recruitment at FIS works primarily on a direct sourcing model; a relatively small portion of our hiring is through recruitment agencies. FIS does not accept resumes from recruitment agencies which are not on the preferred supplier list and is not responsible for any related fees for resumes submitted to job postings, our employees, or any other part of our company.

#pridepass

Responsibilities :

• Analyze and prioritize vulnerabilities based on severity, potential impact and business risk, and collaborate with relevant teams to implement effective mitigation strategies.
• Provide strategic guidance, insights, and direction on technological, cybersecurity, and policy-related topics.
• Lead and participate in the development, implementation, and continuous improvement of incident response procedures, and processes.
• Collaborate with other teams at multiple geographic locations to investigate and document security incidents, root causes, and recommend remediation actions.
• Planning and appraising ongoing assessment of antivirus, application control, firewall, SIEM, VPN, SSL, intrusion detection or intrusion prevention and other network component policies.
• Managing and configuring security systems such as firewalls, intrusion detection and prevention systems, anti-virus software, and other security-related software and hardware.
• Monitoring systems, servers, and networks to detect and respond to potential security threats or suspicious activities.
• Developing and implementing security policies and procedures that ensure the organization’s data and systems are protected against cyber threats.
• Conduct regular vulnerability assessments and penetration testing to identify potential security weaknesses and risks to make improvements in the organization’s security.
• Report all security incidents to the home office and work with corporate IT on response and resolution strategy.
• Contribute to the development and execution of security awareness training programs for employees to enhance security awareness and best practices.
• Stay up to date with the latest cybersecurity threats, attack techniques and incident response strategies.

Requirements :

• Bachelor’s degree in computer science, information technology, or equivalent experience.
• 5+ Years of experience in a cyber or information security management role.
• Strong knowledge of the latest cybersecurity threats, trends, modern cybersecurity concepts, and technologies (zero trust, CIS Controls, OWASP, MITRE ATT&CK, XDR, CloudSec, AppSec, NIST, ITIL, Azure Well Architected Framework, etc).
• Experience in domains of Cyber Security Operations, Incident Response, Forensic Investigation, Threat Intelligence, or Vulnerability Management preferred.
• Ability to manage and configure security systems, monitor network traffic and system logs, conduct regular security assessments and respond to security incidents.
• Demonstrated understanding of business processes, IT risk management, and related standards.
• Proficiency in utilizing industry-standard tools for vulnerability scanning, assessment, and penetration testing.
• Excellent problem-solving skills and the ability to think critically under pressure.
• Effective communication and interpersonal skills, with the ability to collaborate across teams and convey technical concepts to non-technical stakeholders.
• Proven track record of staying current with evolving cybersecurity threats and best practices.
• Exceptional planning and organizational skills, and excellent written and oral communication.
• Self-starter with initiative and the ability to effectively prioritize and execute tasks with direction from corporate headquarters.
• Professional information security certification preferred, such as:CompTIA Security+
  Certified Information Systems Security Professional (CISSP)
  Certified Information Systems Auditor (CISA)
  Certified Information Security Manager (CISM)
  

Interested candidates who wish to apply for the advertised position, please clock on “Apply”. We regret that only shortlisted candidates will be notified.

EA License No.: 01C4394 (PERSOLKELLY Singapore PTE LTD)

By sending us your personal data and curriculum vitae (CV), you are deemed to consent to PERSOLKELLY Singapore Pte Ltd and its affiliates to collect, use and disclose your personal data for the purposes set out in the Privacy Policy available at https://www.persolkelly.com.sg/policies. You acknowledge that you have read, understood, and agree with the Privacy Policy.