594 Information Security Manager jobs in Singapore

Posted 29 July 2025 Salary S$12000 - S$13000 per annum + Variable Bonus Location Singapore Job type Permanent Discipline Technology Reference 283869_1753768672

Our client is seeking an experienced Information Security Manager to lead and strengthen their security operations. This role will focus on monitoring, detecting, and responding to cyber threats, managing security technologies, driving vulnerability management initiatives, and ensuring compliance with industry regulations. The position will work closely with IT, engineering, and risk management teams to maintain a secure and resilient environment.

Key Responsibilities:

1. Security Operations & Incident Response

• Lead and enhance the operations of the Security Operations Center (SOC), ensuring timely monitoring, detection, and incident response.
• Manage and optimize the use of SIEM, EDR, IDS/IPS, and other security technologies.
• Oversee the full incident response lifecycle, including investigation, containment, eradication, and recovery.
• Conduct post-incident reviews and implement continuous improvements.

2. Vulnerability & Threat Management

• Coordinate vulnerability scanning, penetration testing, and remediation activities.
• Stay informed of emerging threats and ensure proactive security measures are implemented.
• Partner with IT and engineering teams to address vulnerabilities and harden systems.

3. Security Compliance & Risk Management

• Ensure compliance with relevant regulatory frameworks (e.g., PCI DSS, MAS TRM, GDPR).
• Support internal and external audits, risk assessments, and regulatory reviews.
• Maintain and continuously update security policies, standards, and procedures

4. Security Awareness & Collaboration

• Lead security awareness and training initiatives across the organization.
• Collaborate with DevOps and engineering teams to embed security into CI/CD pipelines.
• Engage with external vendors, partners, and law enforcement on security-related matters.

Key Requirements:

• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field.
• Minimum 5 years of experience in information security, with at least 2 years in a leadership or management role within security operations.
• Hands-on experience with security technologies such as SIEM (Splunk, Azure Sentinel), EDR, IDS/IPS, firewalls, and cloud security platforms (AWS, Azure, GCP).
• Strong understanding of threat intelligence, malware analysis, and forensic investigation tools.
• Knowledge of regulatory compliance frameworks, particularly within the financial services sector (PCI DSS, MAS TRM, GDPR).

If this job isn't quite right for you, but you know someone who would be great at this role, why not take advantage of our referral scheme? We offer SGD1,000 or SGD350 in shopping vouchers for every referred candidate who we place in a role. Terms & Conditions Apply.

Our client is seeking an experienced Information Security Manager to lead and strengthen their cybersecurity operations across the region. This is a critical role where you will be responsible for managing the overall security operations framework — covering threat detection, incident response, vulnerability management, and compliance while working closely with IT, engineering, and risk stakeholders.

Key Responsibilities

1. Security Operations & Incident Management

• Lead the Security Operations Center (SOC) to monitor, detect, and respond to cybersecurity threats and incidents.

• anage security solutions such as SIEM, EDR, and IDS/IPS to enhance visibility and response capabilities.

• O ersee and coordinate incident response activities including investigation, containment, recovery, and post-incident review.

2. Vulnerability & Threat Management

• C nduct and manage regular vulnerability assessments and penetration testing.

• C llaborate with internal teams to ensure timely remediation of security gaps.

• T ack and assess evolving threats and proactively implement preventive measures.

3. Security Compliance & Risk Governance

• E sure compliance with relevant standards and frameworks such as PCI DSS, MAS TRM, and GDPR.

• S pport internal/external audits and regulatory reviews.

• M intain and update cybersecurity policies, standards, and documentation.

4. Training & Cross-Functional Collaboration

• D ive security awareness training across the organization.

• P rtner with DevOps/engineering teams to embed security practices into CI/CD pipelines.

• L aise with vendors, regulators, and external partners on security-related matters.

Key Requirements

• B chelor's degree in Cybersecurity, Computer Science, or a related discipline.

• A least 5 years of experience in cybersecurity, with 2+ years in a leadership or SOC management role.

• H nds-on experience with modern security tools including SIEM (Splunk, Sentinel), EDR, firewalls, and cloud security platforms (AWS, Azure, GCP).

• S lid knowledge of incident handling, threat intelligence, malware analysis, and digital forensics.

• F miliarity with financial sector regulations such as PCI DSS and MAS TRM is highly preferred.

• S rong leadership, stakeholder engagement, and communication skills.

Our client is seeking an experienced Information Security Manager to lead and strengthen their cybersecurity operations across the region. This is a critical role where you will be responsible for managing the overall security operations framework — covering threat detection, incident response, vulnerability management, and compliance while working closely with IT, engineering, and risk stakeholders.

Key Responsibilities

1. Security Operations & Incident Management

• Lead the Security Operations Center (SOC) to monitor, detect, and respond to cybersecurity threats and incidents.

• anage security solutions such as SIEM, EDR, and IDS/IPS to enhance visibility and response capabilities.

• O ersee and coordinate incident response activities including investigation, containment, recovery, and post-incident review.

2. Vulnerability & Threat Management

• C nduct and manage regular vulnerability assessments and penetration testing.

• C llaborate with internal teams to ensure timely remediation of security gaps.

• T ack and assess evolving threats and proactively implement preventive measures.

3. Security Compliance & Risk Governance

• E sure compliance with relevant standards and frameworks such as PCI DSS, MAS TRM, and GDPR.

• S pport internal/external audits and regulatory reviews.

• M intain and update cybersecurity policies, standards, and documentation.

4. Training & Cross-Functional Collaboration

• D ive security awareness training across the organization.

• P rtner with DevOps/engineering teams to embed security practices into CI/CD pipelines.

• L aise with vendors, regulators, and external partners on security-related matters.

Key Requirements

• B chelor's degree in Cybersecurity, Computer Science, or a related discipline.

• A least 5 years of experience in cybersecurity, with 2+ years in a leadership or SOC management role.

• H nds-on experience with modern security tools including SIEM (Splunk, Sentinel), EDR, firewalls, and cloud security platforms (AWS, Azure, GCP).

• S lid knowledge of incident handling, threat intelligence, malware analysis, and digital forensics.

• F miliarity with financial sector regulations such as PCI DSS and MAS TRM is highly preferred.

• S rong leadership, stakeholder engagement, and communication skills.

• Collaborate with various teams to ensure information security tools and monitoring systems comply with internal security policies and external regulatory requirements.
• Review and analyze periodic vulnerability scan reports; coordinate with relevant stakeholders to ensure timely remediation of identified risks. Monitor the deployment status of security patches, updates, document and manage exceptions across systems.
• Assess system hardening configurations and work with stakeholders to address gaps. Track compliance, document and manage exceptions.
• Collaborate with various teams to review user access for IT systems.
• Interpret data from information security tools and follow up with responsible teams to ensure appropriate remediation actions are taken.
• Ensure the accuracy and completeness of security metrics by collaborating with internal teams and stakeholders.
• Support and coordinate with the Group Information Security Team on strategic initiatives and ongoing security projects, new tool implementation, security assessments, and audits.
• Partner with business functions to promote cybersecurity awareness and deliver training programs to enhance employee understanding of security best practices.
• Perform other Information Security-related tasks and responsibilities as assigned.

• Diploma or Degree in IT, Computer Science, Cybersecurity or equivalent
• At least 5 years experience in information security or related fields.
• Relevant certifications (e.g. CISSP, CISM, CEH) or strong desire to obtain those certifications are advantageous.

• Strong analytical skills, attention to detail, and problem-solving abilities.
• Good understanding and hands-on exposure with different information security domains, especially governance, risk and compliance.
• Experience and knowledge of risk management process, identity and access management, gap assessment and audit, security vulnerabilities, system hardening, and cloud security.
• Sound knowledge of Information Security management frameworks and guidelines such as ISO 27001, NIST, PCI-DSS, CIS baselines & best practices.

Job Overview

We are seeking a highly experienced SOC Lead with active threat hunting, incident response, and team leadership expertise to manage our 24/7 Security Operations Centre (SOC). The successful candidate will perform advanced triage, conduct forensic investigations, front client engagements, and maintain active cyber community involvement for real-time threat intelligence.

Duties and Responsibilities

• Lead daily shift operations with accountability for incident SLA adherence (MTTR <15 mins for P1 cases).
• Mentor L1 analysts in alert validation, triage techniques, and playbook execution.
• Conduct purple team exercises quarterly to validate detection capabilities.

Advanced Security Operations

• Perform deep-dive investigations (memory/disk forensics, malware analysis) using tools: EDR, SIEM, network analysis.
• Lead proactive threat hunts using MITRE ATT&CK frameworks and threat intelligence.
• Develop custom detection rules for APT groups targeting SEA.

Client Governance

• Front incident response briefings for customers and stakeholders.
• Present monthly SOC reports to clients (threat trends, gap analysis, KPIs).
• Ensure compliance with relevant regulations.

Requirements

• Technical Competencies
• Must-Have Tools Expertise:
• Incident Response - Velociraptor, Autopsy, SIFT Workstation.
• Threat Hunting - Atomic Red Team, Kestrel analytics, ELK stack.
• Forensics - Volatility, Rekall, FTK Imager.
• CTI Management - MISP taxonomies, STIX/TAXII feeds, OpenCTI.
• Certifications :
• CISSP, GCIH/GCFA, SC Security Clearance.
• Leadership Experience :
• 5+ years in SOC roles with 2+ years leading teams in 24/7 environments.
• Proven track record in managing ≥200 critical incidents annually, reducing false positives by ≥40% through detection engineering, and uncovering ≥3 advanced persistent threats.

Founded by Changpeng Zhao (CZ) in 2017, Binance is currently the largest cryptocurrency exchange in terms of daily volume. Binance is the core global exchange. However, Binance operates separate exchanges in some countries such as the US, UK, Singapore, and Turkey due to regulatory reasons.

Since Binance has global operations, the exchange does a lot of hiring on a regular basis. Being a market leader, Binance Jobs also come with significant perks. Most of the jobs are remote, with flexible working hours. Binance also offers health insurance, the option to be paid in crypto, and programs to develop your skills.

Binance is the leading global blockchain ecosystem and cryptocurrency infrastructure provider whose suite of financial products includes the world’s largest digital-asset exchange. Our mission is to accelerate cryptocurrency adoption and increase the freedom of money. If you’re looking for a fast-paced, mission-driven organization where opportunities to learn and excel are endless, then Binance is the place for you. We are seeking an Information Security Governance Manager to be responsible for implementing a comprehensive and consistent security governance and compliance strategy across the organization to protect and manage its technology and data related information security risks. The candidate will be responsible for coordinating, identifying gaps, providing guidance and establishing end to end security governance to ensure effective internal controls are implemented to achieve data privacy, security, reliability and resilience that meets compliance and local regulatory requirements.

• Support the delivery of global security governance and compliance strategies.
• Manage and maintain a security compliance framework across global entities that can align to Binance’s compliance and internal audits requirements.
• Develop, manage and maintain effective information security policies, processes, standards and procedures.
• Lead and support ISO 27001, PCI-DSS, SOC 2 Type 1/2 and other security compliance projects.
• Develop maturity model and track information security controls.
• Internal first point of contact for general security enquiries. Proactively approach and support internal stakeholders across global entities.
• Establish and maintain global security governance and compliance process.
• Respond to security questionnaires from internal/external security audits and organize/document the common answers and approaches for future audits.
• Facilitate security risk management within the business units.
• Establish and maintain information risk metrics to highlight information assets that have the highest risk exposure.
• Conduct regular reviews of remediation actions and report to business and technology senior management.

• Bachelor's degree or higher in information technology, cyber security or related field.
• 5+ years of experience in a security governance role.
• Strong leadership and excellent communication skills.
• Understanding of information risk, security control, data privacy related regulations (e.g. CCPA, SG PDPA, EU GDPR, China Cybersecurity law) within the financial services and banking industry.
• Strong knowledge and practical working experiences in delivering global projects of international data privacy and information security frameworks including NIST Cybersecurity & Privacy Framework, ISO 27001, ISO 27701, CIS, SOC 2 Type 1/2 Report, PCI-DSS and ISAE 3000.
• Demonstrable work experience delivering effective business and technical security solutions, processes, tools, and high performing teams.
• A good working knowledge of the latest information technology security trends and emerging threats is essential.
• Experience of implementing risk management principles and methodologies within a security or technology function.
• Good project management experience and skills.
• Strong analytical and problem-solving skills are a must-have.
• Having one of the below security or privacy qualifications is a plus - CISSP, CISM, CISA, CEH, SANS, CCSP, ISO 27001 Lead Auditor, IAPP CIPP / CIPM.
• An understanding of cloud infrastructure technologies and associated risks would be beneficial.

Working at Binance

• Be a part of the world’s leading blockchain ecosystem that continues to grow and offers excellent career development opportunities.
• Work alongside diverse, world-class talent in an environment where learning and growth opportunities are endless.
• Tackle fast-paced, challenging and unique projects.
• Work in a truly global organization, with international teams and a flat organizational structure.
• Competitive salary and benefits.
• Flexible working hours, remote-first, and casual work attire.

Learn more about how Binancians embody the organization’s core values , creating a unified culture that enables collaboration, excellence, and growth. Apply today to be a part of the Web3 revolution! Binance is committed to being an equal opportunity employer. We believe that having a diverse workforce is fundamental to our success. By submitting a job application, you confirm that you have read and agree to our Candidate Privacy Notice .

Role & Responsibilities:

1. KRI Development: Develop and implement Key Risk Indicators to monitor and report on the organization's cyber risk exposure.
2. Policy Development: Create and maintain cyber risk management policies and procedures to ensure compliance with regulatory requirements and industry standards.
3. Monitoring and Reporting: Continuously monitor cyber risk metrics and KRI performance, providing regular reports to senior management and stakeholders.
4. Training and Awareness: Develop and deliver training programs to raise awareness of cyber risks and promote best practices among employees.
5. Collaboration: Work closely with IT, security, and compliance teams to ensure a cohesive approach to cyber risk management.
6. Regulatory Compliance: Stay updated on relevant laws and regulations related to cyber risk and ensure the organization's practices align with these requirements.
7. Risk Mitigation Strategies: Recommend and implement strategies to mitigate identified cyber risks, including technical controls and process improvements.
8. Continuous Improvement: Foster a culture of continuous improvement in cyber risk management practices, leveraging lessons learned from incidents and assessments.

Requirements:

• Bachelor's degree in computer science related field
• Minimum of 6 years of experience in Information Security
• Certifications: CISM, CRISC, CISSP, CCSP or equivaluent
• Working experience with frameworks such as IM8, NIST, ISO2700K

Role & Responsibilities:

1. KRI Development : Develop and implement Key Risk Indicators to monitor and report on the organization’s cyber risk exposure.
2. Policy Development : Create and maintain cyber risk management policies and procedures to ensure compliance with regulatory requirements and industry standards.
3. Monitoring and Reporting : Continuously monitor cyber risk metrics and KRI performance, providing regular reports to senior management and stakeholders.
4. Training and Awareness : Develop and deliver training programs to raise awareness of cyber risks and promote best practices among employees.
5. Collaboration : Work closely with IT, security, and compliance teams to ensure a cohesive approach to cyber risk management.
6. Regulatory Compliance : Stay updated on relevant laws and regulations related to cyber risk and ensure the organization’s practices align with these requirements.
7. Risk Mitigation Strategies : Recommend and implement strategies to mitigate identified cyber risks, including technical controls and process improvements.
8. Continuous Improvement : Foster a culture of continuous improvement in cyber risk management practices, leveraging lessons learned from incidents and assessments.

Requirements:

• Bachelor’s degree in computer science related field
• Minimum of 6 years of experience in Information Security
• Certifications: CISM, CRISC, CISSP, CCSP or equivaluent
• Working experience with frameworks such as IM8, NIST, ISO2700K