NCS - Singapore

Business used to rely on technology, now business is technology, and customer experience is the IT experience. Navigating and harnessing this digital transformation quickly is how to get ahead but it comes with challenges. NCS designed to help accelerate digital transformation by making Hybrid IT simple and powering the new way of operations. By leveraging NCS's strength in infrastructure, partner ecosystems and end-to-end lifecycle experience, solutions are optimized supporting unique business demands.
The Transformation Office brings together a creative workforce that innovates and revolutionise our workplace & customers' experience. We imbue a culture of commitment to operational excellence, collaboration, people development, and creative thinking. We inspire an outcome that transforms and modernised the way people live and work.
Job Description:
We're looking for a Senior Cyber Risk & Compliance Analyst to join our Singapore team to develop and drive effective cyber risk assessment and IT security compliance programs involving activities such as reviewing and developing security policies, processes/procedures and guidelines, establishing compliance with policies, conducting security reviews and security assessment.
Role Responsibilities:
  • Review and development of security framework, information security policies, processes / procedures, and guidelines on an ongoing basis.
  • Establish risk assessment, compliance enforcement activities with these policies / procedures through ongoing security/compliance reviews, not limited to log analysis and security assessment of customer ICT systems.
  • Conduct security risk management exercise, conduct table-top exercises, conduct vulnerability assessment, coordinate penetration tests activities, conduct information security awareness training for Line of Business Representatives.
  • Support internal projects in the matters of security risk assessment and compliance enforcement work.
  • Be the point-of-contact to assist and advise project leads for ICT security related matters.

The ideal candidate should possess:
  • Your skills and expertise: In the area of risk assessment, compliance enforcement security and security governance: -
  • Years of IT/IT Security Experience: Minimum 5-10 Years
  • Work Experience: Minimum 8-12 Years
  • Understanding of information security principles, ISO 27001 controls, Center for Internet Security (CIS) controls, Cloud Controls Matrix (CCM) controls and PCI Security Standard are preferred.
  • Good working knowledge of security risk management, security governance framework and compliance (IT Security Audit / log review), application security, security technologies (system hardening, IDS/IPS, firewall), security incident response and security assessment.
  • Internal project focused with good interpersonal skills.
  • Team player with leadership qualities.
  • Preferred: Possess one (or more) of the following security certifications: CISSP/CISA/CISM/ISMS Lead Auditor Certification.
  • Bachelor's Degree in Information Security, Information Assurance, Computer Science and Computer Engineering.