Share this Job

Lead Consultant, IT Security (Governance, Risk & Compliance)

Date: 10-Jan-2021

Location: Singapore, Singapore

Company: Singtel


Develop and drive effective IT security compliance programs involving activities such as reviewing and developing security policies, processes/procedures, and guidelines, establishing compliance with policies, conducting security reviews and audits, vulnerability scans, security assessment and incident management.


Duties & Responsibilities

  • Review and development of security framework, information security policies, processes/procedures and guidelines on an ongoing basis.
  • Establish compliance with these policies/procedures through ongoing security reviews and audits, not limited to log analysis and security assessment of customer ICT systems
  • Conduct security risk management exercise
  • Conduct table-top exercises
  • Conduct vulnerability assessment, coordinate penetration tests activities
  • To conduct information security awareness training
  • Responsible for the development and management of customer security incident response plan
  • Lead and support customers in the matters of security incident resolution and response.
  • Point-of-contact/customer liaison to assist and advise customer for ICT security-related matters


The ideal candidate: 

  • Bachelor’s Degree in Computer Science, Engineering and Information Systems
  • At least 7 years of experience in the area of security audit, compliance and security governance
  • Strong understanding of information security principles, ISO 27001 and PCI Security Standard is preferred
  • Good working knowledge of security risk management, security governance framework and compliance (IT Security Audit/log review), technical vulnerability management (Vulnerability Assessment, Penetration testing), application security, security technologies (system hardening, IDS/IPS, firewall), security incident response and security assessment.
  • Customer-focused with good interpersonal skills
  • Team player with leadership qualities
  • Possess one (or more) of the following security certifications: CISSP/CISA/CISM/ISMS Lead Auditor Certification