Loading...
Share this Job

IT Security Compliance & QA Manager

Date: 19-Sep-2021

Location: Singapore, Singapore

Company: Singtel Group

Overview

 

You will be part a team of highly motivated individuals in the development and maintenance of systems for our client. You should have proven track records in IT Security Compliance focusing in applications systems.

If you thrive on being part of delivery and transforming the clients’ operation, then this is the position for you. Your 'hands-on' knowledge, vast exposure and wealth of experience either in vendor and/or user environments, coupled with a driven and self-motivated personality, will ensure your success.

 

Key Roles & Responsibilities

  • Develop and maintain client’s IT Security Management Plan focus on Applications Systems
  • Harmonise obsolescence management efforts across Applications Systems
  • Perform risk assessment for potential security vulnerabilities from identified activity and obsolete systems for Applications Systems. 
  • Conduct regular penetration testing and Static Application Security Tests
  • Assess and recommend mitigating measures to address potential security vulnerabilities
  • Schedule security scan for identified systems according to policies, and verify all vulnerability rectifications are satisfactorily performed
  • Conduct Security Review on System Access and administration patterns weekly, and report unusual or suspicious activities, if any, to Governance Management (SMO)
  • Track, mitigate and deploy patch security vulnerabilities accordingly to the stipulated timeline.
  • Maintain oversight and submit reports on monthly basis
  • Escalate and/or seek Authority’s acceptance and approval of assessed risks
  • Conduct IT Security Management briefings and workshops

 

The Ideal Candidate Should Have/ Be

  • Diploma / Degree in Computer Sciences, Engineering and any Sciences disciplines
  • Certified Ethical Hacker (CEH) Certification
  • Certified Information Systems Security Professional (CISSP)
  • Hands-on experience Splunk, Tenable, BeyondTrust, HP Fortify Static Code Analyzer and Fireeye, WebInspect, BurpSuite and Tools projects in OWASP