Consultant, IT Security

NCS is a leading technology services firm that operates across the Asia Pacific region in over 20 cities, providing consulting, digital services, technology solutions, and more. We believe in harnessing the power of technology to achieve extraordinary things, creating lasting value and impact for our communities, partners, and people. Our diverse workforce of 13,000 has delivered large-scale, mission-critical, and multi-platform projects for governments and enterprises in Singapore and the APAC region. 

A Security Consultant provides expert IT security consultancy and advisory services, helping to secure cyber assets, including networks, mobile applications, web applications, and IoT devices. The role involves security system configuration, source code review, and penetration testing.

What will you do?

• Conduct security assessments and audits to identify threats, vulnerabilities, risks and control gaps.
• Develop security policies, procedures, and standards.
• Develop incident response plans, procedures and playbooks.
• Provide expert advice and recommendations to clients to address security gaps.
• Perform cyber threat modelling and develop cyber threat profiles based on relevant threat actor Techniques, Tactics & Procedures (TTPs)
• Design scenarios for cybersecurity Table-Top Exercises (TTX)
• Perform security architecture reviews to identify control gaps
• Stay updated with the latest cybersecurity trends, threats, and technologies.
• Collaborate with internal teams and clients to deliver security requirements for complex projects.
• Manage multiple projects as a team to ensure that deliverables are completed in a timely manner
• Develop materials and tools for delivery of consultancy services (e.g. workpapers, report templates).
• Prepare high-quality reports and documentation for clients.

The ideal candidate should possess:

• Degree or higher in Cybersecurity, Computer Science, Engineering, or Information Systems
• Minimum of 1-3 years working in areas of information security governance, risk management, and/or audit; experience in other areas of cybersecurity will be considered
• Experience in Singapore based Government projects will have an added advantage
• Knowledge of cybersecurity frameworks, industry standards or regulatory requirements such as the following will be advantageous:
  • NIST Cyber Security Framework;
  • GovTech ICT&SS;
  • Cybersecurity Code of Practice;
  • MITRE ATT&CK Framework
• Industry certifications such as CISSP, CRISC and CISA are highly desirable.
• Team player with interpersonal skills
• Highly motivated individual with a positive “can-do” attitude, creative with excellent oral and written communication skills.

We are driven by our AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity—and we seek individuals who embody these values in both their professional and personal lives. We are committed to our Impact: Valuing our clients, Growing our people, and Creating our future.  

Together, we make the extraordinary happen.  

Learn more about us at ncs.co and visit our LinkedIn career site.