IT Security & Compliance Manager

IT Security & Compliance Manager

3-9 years
Not Specified

Job Description

Job Description :

  • Develop and maintain client's IT Security Management and Cyber Security Plan focus on Applications Systems and IT Infrastructure
  • Harmonise obsolescence management efforts across Applications Systems
  • Perform risk review and assessment for potential security vulnerabilities from identified activity and obsolete systems for Applications Systems and IT Infrastructure
  • Conduct regular penetration testing and Static Application Security Tests
  • Assess, evaluate, recommend and advice the mitigating measures to address potential security vulnerabilities
  • Schedule security scan for identified systems according to policies, and verify all vulnerability rectifications are satisfactorily rectified
  • Schedule mandate annual security self-attestation and independent review for Application Systems and IT Infrastructure and to submit the independent audit / review report to client
  • Conduct annual mandate hardening for Application System and IT Infrastructure to ensure compliance to the client policies and directives
  • Conduct Security Review on System Access and administration patterns weekly, and report unusual or suspicious activities, if any, to client and HQ Governance Management
  • Track, mitigate and deploy patch security vulnerabilities accordingly to the stipulated timeline.
  • Maintain oversight and submit reports on monthly basis
  • Escalate and/or seek Authority's acceptance and approval of assessed risks
  • Conduct IT Security Management briefings and workshops
  • Explore and propose continual improvement to the security workflow and processes to client

The ideal candidate should possess:
  • Diploma / Degree in Computer Sciences, Engineering and any Sciences disciplines
  • Certified Ethical Hacker (CEH) Certification
  • Certified Information Systems Security Professional (CISSP)
  • Hands-on experience Splunk, Tenable, BeyondTrust, HP Fortify Static Code Analyzer and Fireeye, WebInspect, BurpSuiteand Tools projects in OWASP

Job Details

Employment Types:




About SingTel

Singapore Telecommunications Limited, commonly known as Singtel and stylised as SingTel, is a Singaporean telecommunications conglomerate and one of the four major telcos operating in the country. The company is the largest mobile network operator in Singapore with 4.1 million subscribers and through subsidiaries, has a combined mobile subscriber base of 640 million customers at the end of financial year 2017.The company was known as Telecommunications Equipment until 1995. Singtel provides ISP, IPTV (Singtel TV) and mobile phone networks and fixed line telephony services.

Similar Jobs

Career Advice to Find Better