522 Information Security jobs in Singapore

We are looking for an Information and Cyber Security Engineer. You will be part of the founding key team member, reporting to the Head of Information and Cyber Security and working closely with team leads in the transformation of the business. If you are passionate about technology and digital transformation for business and want to be in a team where your views matter, learning and collaboration is part of the culture, please reach out and we would love to talk to you!

• Design, implement, and manage security solutions across on-premise and cloud environments (AWS, GCP, Azure) using cloud-native security tools and services.
• Configure and maintain secure cloud architectures, identity and access management (IAM), security monitoring, and incident response automation.
• Perform continuous security monitoring, log analysis, and threat detection using SIEM tools, endpoint security, and cloud security monitoring solutions.
• Conduct security assessments, vulnerability scanning, penetration testing, and remediation activities to mitigate security risks.
• Perform risk assessments for applications, infrastructure, and third-party services, ensuring compliance with frameworks such as CIS, NIST, PCI DSS, and SOC 2.
• Investigate security incidents, analyze attack patterns, and lead response efforts to mitigate threats in real time.
• Support compliance initiatives by ensuring security controls meet regulatory and internal requirements, including MAS guidelines.
• Develop automation scripts and tools for security monitoring, threat intelligence integration, and policy enforcement.
• Assist in delivering security training programs and promoting a security-first mindset across the organization.
• Continuously research and implement security best practices, emerging threats, and new cybersecurity technologies.

• Excellent relationship-building, stakeholder management, communication, and influencing skills.
• Experience managing senior business stakeholders.
• Strong motivation and capability to drive initiatives and changes.
• Proactive leadership and teamwork skills.
• Relevant industry certifications (e.g., CISSP, CISM, CISA, CCSP).
• Excellent analytical and problem-solving abilities.
• Experience in team leadership, coaching, and mentoring.
• Knowledge of industry standards such as ISO 27001, MAS TRM, NIST, CIS, PCI/DSS, and SOC 2.
• Familiarity with security technologies such as firewalls, intrusion detection systems, and endpoint protection.
• Experience with security operations centers (SOC) and setting up SOC models.
• Strong program management background.
• Product-specific certifications such as MCSE, CCNA Security.
• Good knowledge of TCP/IP protocol.
• Ability to handle sensitive information with confidentiality and integrity.
• Experience in driving enterprise initiatives for E2E security posture analysis.
• Ability to work with subsidiaries and understand regional security requirements.

Job description

Manage information security operation to ensure the safe use of information systems and assets as well as protect information assets against cybersecurity threats.

Manage various stages of projects in conception and initiation, planning, execution, performance/ monitoring, and project closure.

Job Responsibilities

• Maintain and enhance information security framework to address evolving cybersecurity threats.
• Lead management review and lesson learned meetings to improve security posture.
• Conduct security awareness workshops and publish advisories to promote a security-first culture.
• Provide regular reporting to management on security performance, compliance status, and risk exposure.
• Perform risk assessments on IT systems, networks, and applications, and implement controls to mitigate identified risks.
• Monitor security alerts and threat intelligence to detect and respond to potential cyber threats.
• Perform information security audits and recommend effective measures to address gaps and inefficiencies.
• Manage incident containment, eradication, and recovery to minimize impact and restore operations swiftly.
• Coordinate with stakeholders to implement security initiatives.
• Provide input into information security spending and budgeting.

Job Requirements

Minimum Education / Qualifications

• Degree in Information systems or equivalent.

Minimum Years of Relevant Experience

• 2 years’ experiences in setting up and managing information security operations.

Knowledge/Skills

• Experiences in ISO27001 ISMS, CIS, and/ or NIST frameworks.
• Experiences in managing threat, vulnerability and incident, and understanding in digital forensic investigation, tools, and processes.
• Knowledge in security protections, practices, or solutions like Firewall, IDS/ IPS, network segmentation, DLP, WAF, NAC, WiFi security, cryptography, endpoint protection, OWASP, etc.
• Certifications in CISA, CISM, CISSP and/ or PMP will be an advantage.
• Knowledgeable in Microsoft Office and other Windows and web applications.

Attributes (functional or leadership competencies)

• Meticulous and hands on.
• Excellent communication and written skills.
• Strong analytical and problem-solving skills.
• Team player with excellent interpersonal skills and multi-tasker.
• Customer-centric and proactive.

WHO WE ARE:
As Singapore's longest established bank, we have been dedicated to enabling individuals and businesses to achieve their aspirations since 1932. How? By taking the time to truly understand people. From there, we provide support, services, solutions, and career paths that meet their individual needs and desires.

Today, we're on a journey of transformation. Leveraging technology and creativity to become a future-ready learning organisation. But for all that change, our strategic ambition is consistently clear and bold, which is to be Asia's leading financial services partner for a sustainable future.

We invite you to build the bank of the future. Innovate the way we deliver financial services. Work in friendly, supportive teams. Build lasting value in your community. Help people grow their assets, business, and investments. Take your learning as far as you can. Or simply enjoy a vibrant, future-ready career.

Your Opportunity Starts Here.

Why Join Protecting our customers' assets and information is at the heart of what we do at OCBC. As a Manager in the Information Security and Digital Risk Management function, you'll play a critical role in safeguarding our digital landscape and ensuring the integrity of our systems. You'll be part of a team that's passionate about staying ahead of emerging threats and risks.

How you succeed To succeed in this role, you'll need to stay up to date with the latest security threats and trends. You'll work closely with our technology teams to identify and mitigate risks and develop strategies to protect our digital assets. You'll also need to collaborate with stakeholders across the bank to ensure that our security policies and procedures are effective and aligned with our business goals.

What you do

• Assist in the governance and oversight of technology, information, and cyber risk management practices.
  
• Support the execution of risk management initiatives and contribute to the development of risk frameworks and policies.
  
• Help coordinate Group-wide awareness, training, and social engineering testing programs.
  
• Provide risk advisory support for new services, digital initiatives, third-party engagements, and regulatory compliance.
  
• Participate in regular risk monitoring and reporting activities.
  
• Monitor and respond to security incidents and breaches.
  

• A degree in Computer Science, Information Security, or a related field, preferably in the financial services sector.
  
• At least 5 years of experience in information security and digital risk management
  
• Strong knowledge of security frameworks, regulations, and industry standards
  
• Excellent analytical and problem-solving skills
  
• Effective communication and collaboration skills
  
• Ability to stay up to date with emerging security threats and trends
  
• Work independently and collaboratively in a fast-paced environment.
  
• Proactive, with a willingness to learn and take initiative.
  

We would like to remind you that eFinancialCareers is a job board and does not conduct hiring or ask for payment or any financial details as part of the job application process.

If you receive any suspicious messages claiming to be from us or a hiring company, we urge you not to click on any links and not to reply to the message itself.

Instead, please report the message to our support team at .

It is advisable to always verify job offers directly with the hiring company.

The longest-established Singapore bank, we’ve been helping people and businesses get what they want from life since 1932. How? By taking the time to t.

Boost your career Find thousands of job opportunities by signing up to eFinancialCareers today.

Job Title: Security Operations Center (SOC) Analyst - Financial Services

About: A leading financial services organisation is seeking a skilled Security Operations Center (SOC) Analyst to join our team in Singapore.

Role Overview: As a SOC Analyst, you will be an integral part of our cybersecurity team, responsible for monitoring, detecting, and responding to security incidents to ensure the protection of our financial systems and sensitive data. The ideal candidate will have a strong foundation in cybersecurity, a keen eye for detail, and the ability to thrive in a dynamic and evolving threat landscape.

Responsibilities:

• Security Monitoring:
  • Monitor security alerts and events to identify potential security incidents.
  • Conduct analysis of security logs and network traffic to detect and respond to unauthorized activities.
• Incident Detection and Response:
  • Investigate and analyze security incidents, determining the root cause and recommending remediation actions.
  • Execute incident response procedures to contain and eradicate security threats.
• Vulnerability Management:
  • Assist in vulnerability assessments and penetration testing to identify and mitigate potential weaknesses in our systems.
  • Collaborate with IT teams to ensure timely patching and resolution of identified vulnerabilities.
• Security Documentation:
  • Maintain accurate documentation of security incidents, investigations, and response activities.
  • Contribute to the development and enhancement of SOC documentation and playbooks.
• Stay informed about the latest cybersecurity threats and trends, and incorporate threat intelligence into security monitoring and incident response activities.
• Collaboration and Reporting:
  • Collaborate with cross-functional teams to share insights and improve overall security posture.
  • Prepare and present reports on security incidents, trends, and the effectiveness of security controls.

Requirements:

• Education: Bachelors degree in Cybersecurity, Information Technology, or a related field.
• Experience:
  • 2-4 years of experience in a SOC analyst or similar cybersecurity role, preferably in the financial services sector.
• Technical Skills:
  • Proficient in security information and event management (SIEM) tools.
  • Hands-on experience with intrusion detection and prevention systems (IDS/IPS).
  • Familiarity with network and system security technologies.
• Certifications:
  • Relevant certifications such as CompTIA Security+, Certified Information Systems Security Professional (CISSP), or equivalent.
• Analytical Skills:
  • Strong analytical and problem-solving skills, with an ability to analyze and interpret security-related data.
• Communication Skills:
  • Effective communication skills to convey complex security concepts to both technical and non-technical stakeholders.
  • Ability to produce clear and concise incident reports.
#J-18808-Ljbffr

VP - Information Security Ops Sr Manager (Cyber Incident Exercise) - Hybrid

The Cyber Security Fusion Centre Response & Readiness Analyst is responsible for driving firm-wide effort to prepare, respond and recover from potential cyber threats and attacks. This role ensures the firm is globally prepared to respond to cyber incidents (resulting from a cyber or technology nexus). This is accomplished through proactive monitoring of emerging incidents, development and execution of cyber incident exercises, and review and maintenance of procedures and runbooks necessary to ensure an orderly response and recovery from cyber events. Incident Analyst operates a virtual war room and incident management function during events to ensure coordination, mitigation, and recovery from events in a timely manner. This role also provides a single source of consolidated information, and subsequent incident communication/notifications, including notifications to our external stakeholders and prudential regulators.

We are primarily looking for proactive and curious individuals to join our team to run exercises and activities to put our most senior leaders to the test, with the mission to keep Citi and Citi's customers safe! In addition, the candidate will perform an active role in supporting the response to major incidents impacting the organization as and when required.

Responsibilities:

• Leads design, planning, coordination and execution of global cyber incident exercises.
• Engages country leadership, global business leaders and internal functional teams to assess requirements and identify opportunities to incorporate innovation and improve exercise scope.
• Analyzes and presents team outcomes to senior leadership, regulatory bodies and internal business stakeholders.
• Supports external exercising activities and client exercise/simulation engagement.
• Facilitate the coordination, communication and escalation response of major cyber incidents impacting our businesses, 3rd parties, vendors and clients.
• Serve as a liaison between the CISO, Business and 3rd Party oversight teams, promoting rapid escalation of cyber events and translating cyber technical details into laymen's terms.
• Executes under crisis conditions regardless of the seniority of the audience, with a sense of urgency and mission.
• Monitor information sources, including, but not limited to - SIRTS, intelligence updates, major incident channels (ServiceNow), and external news sources - to triage and assess events that may impact Citi, our clients or 3rd parties.

• Extensive of relevant experience with a focus on senior stakeholder engagement experience and Team leadership experience in leading exercise.
• Proven leadership Experience in Financial Services a positive
• Incident/Crisis management experience including Ownership, Assessment and initial support, Escalation/Notification, Business Impact Analysis, Resolution Tracking, Senior escalations
• Experience in exercise design, planning and execution.
• Excellent written and verbal communication skills required to influence and negotiate with senior leaders across functions (including experience in communications with external parties)
• Understanding of Project Management Standards and Stakeholder Management
• Desired professional qualifications: ISC2 Certified in Cybersecurity, Comptia Security+

• Bachelor's degree/University degree or equivalent experience

• This position allows you to work in an international environment with senior management, giving you the opportunity to develop cooperation skills and communication with management and virtual teams from different regions, countries and cultures
• Competitive salary & social benefits (e.g. private healthcare care, Benefit System, life insurance)
• Work in a friendly and diversified environment, appreciating differences in style and perspective and using them to add value to decisions leading to organizational success
• A great environment for learning new technology and tools, online and instructor led training opportunities
• Working in a friendly, dynamic and multinational environment
• Opportunity to have an influence on the way you perform your tasks - our teams are constantly looking for new and better ways and we encourage all improvement ideas
• A chance to make a difference with various affinity networks and charity initiative

We would like to remind you that eFinancialCareers is a job board and does not conduct hiring or ask for payment or any financial details as part of the job application process.

If you receive any suspicious messages claiming to be from us or a hiring company, we urge you not to click on any links and not to reply to the message itself.

Instead, please report the message to our support team at .

It is advisable to always verify job offers directly with the hiring company.

At Citi, we get to connect millions of people across hundreds of cities and countries every day. And we’ve been doing it for more than 200 years.Our.

Boost your career Find thousands of job opportunities by signing up to eFinancialCareers today.

Responsibilities:

• Provide technical support to customers via Phone, Chat, Email and onsite support
• Support handling will be 7x24 and rotating shift is required
• Diagnose faults and troubleshoot technical issues
• Communicate complex technical concepts in layperson’s terms
• Managing and interpreting customer requirements - listening to clients and using astute questioning to understand, anticipate and exceed their needs
• Coordinate with other Technical Support team members to escalate cases with unresolved issues to respective product vendor
• Maintain a close-loop with the product vendor to identify and support new product solutions based on direct and indirect prospect feedback as well as security industry trends.
• Any other ad-hoc duties as required or assigned
• Continuous Learning in IT industry, particularly new security products and solutions.
• Any other ad hoc duties as assigned by the supervisors.

Interested applicants, please email your resume to Surin Su Sandar Win

Email:

CEI Reg No: R23117721

EA Licence No: 99C4599

Recruit Express Pte Ltd

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities, and shareholders every day.

We are committed to being a diverse and inclusive workplace, hiring individuals from a broad range of backgrounds and experiences. We invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.

Bank of America values collaboration and flexibility, adopting a multi-faceted approach depending on the role.

Working here offers a great career with opportunities to learn, grow, and make an impact. Join us!

We are seeking to expand and diversify our Digital Forensics and Incident Response (DFIR) team with adaptable individuals from various backgrounds and experiences.

This role is open to individuals with 3 to 5 years of Digital Forensics experience .

Required Background and Experience:

• Identify, analyze, and present evidential data from workstation-oriented systems, including but not limited to systems with Microsoft Windows;
• Experience investigating specific facets or workstreams of incident scenarios as part of a broader DFIR team;
• Broad knowledge in computing and networking, with a general understanding of information security technologies, techniques, and processes;
• Ability to participate independently in incidents or investigations from start to finish.

Knowledge in one or more of the following areas is advantageous:

• Operating system artifacts, file systems, and inner workings of Microsoft Windows, Apple MacOS, or Linux/Unix distributions (especially RedHat);
• Cloud and containerization technologies (e.g., Docker, Kubernetes) in an enterprise environment.

Desirable Qualifications and Skills:

• Bachelor’s degree in a relevant field (Computer Science, Engineering, Cybersecurity, etc.);
• Digital Forensics and Incident Response certification (e.g., EnCE, GCFA);
• Cloud certifications (e.g., CompTIA Cloud+, AWS, Azure);
• Linux certifications (e.g., RHCSA);
• Scripting experience in Windows or Linux environments.

What you will do:

In the Digital Forensics team, your responsibilities include:

• Participating in incident responses and investigations using your DFIR skills;
• Discovering and assessing unfamiliar technology or data relevance during investigations;
• Communicating clearly and effectively with technical and non-technical audiences;
• Evaluating new technologies for potential application in incident response;
• Collaborating with a global team across different regions;
• Participating in an on-call schedule to share responsibilities.

The Cyber Security Fusion Centre Response & Readiness Analyst is responsible for driving firm-wide effort to prepare, respond and recover from potential cyber threats and attacks. This role ensures the firm is globally prepared to respond to cyber incidents (resulting from a cyber or technology nexus). This is accomplished through proactive monitoring of emerging incidents, development and execution of cyber incident exercises, and review and maintenance of procedures and runbooks necessary to ensure an orderly response and recovery from cyber events. Incident Analyst operates a virtual war room and incident management function during events to ensure coordination, mitigation, and recovery from events in a timely manner. This role also provides a single source of consolidated information, and subsequent incident communication/notifications, including notifications to our external stakeholders and prudential regulators.

We are primarily looking for proactive and curious individuals to join our team to run exercises and activities to put our most senior leaders to the test, with the mission to keep Citi and Citi’s customers safe! In addition, the candidate will perform an active role in supporting the response to major incidents impacting the organization as and when required.

Responsibilities:

• Leads design, planning, coordination and execution of global cyber incident exercises.

• Engages country leadership, global business leaders and internal functional teams to assess requirements and identify opportunities to incorporate innovation and improve exercise scope.

• Analyzes and presents team outcomes to senior leadership, regulatory bodies and internal business stakeholders.

• Supports external exercising activities and client exercise/simulation engagement.

• Facilitate the coordination, communication and escalation response of major cyber incidents impacting our businesses, 3rd parties, vendors and clients.

• Serve as a liaison between the CISO, Business and 3rd Party oversight teams, promoting rapid escalation of cyber events and translating cyber technical details into laymen’s terms.

• Executes under crisis conditions regardless of the seniority of the audience, with a sense of urgency and mission.

• Monitor information sources, including, but not limited to – SIRTS, intelligence updates, major incident channels (ServiceNow), and external news sources – to triage and assess events that may impact Citi, our clients or 3rd parties.

Qualifications:

• Extensive of relevant experience with a focus on senior stakeholder engagement experience and Team leadership experience in leading exercise.

• Proven leadership Experience in Financial Services a positive

• Incident/Crisis management experience including Ownership, Assessment and initial support, Escalation/Notification, Business Impact Analysis, Resolution Tracking, Senior escalations

• Experience in exercise design, planning and execution.

• Excellent written and verbal communication skills required to influence and negotiate with senior leaders across functions (including experience in communications with external parties)

• Understanding of Project Management Standards and Stakeholder Management

• Desired professional qualifications: ISC2 Certified in Cybersecurity, Comptia Security+

Education:

• Bachelor’s degree/University degree or equivalent experience

In return, we offer:

• This position allows you to work in an international environment with senior management, giving you the opportunity to develop cooperation skills and communication with management and virtual teams from different regions, countries and cultures

• Competitive salary & social benefits (e.g. private healthcare care, Benefit System, life insurance)

• Work in a friendly and diversified environment, appreciating differences in style and perspective and using them to add value to decisions leading to organizational success

• A great environment for learning new technology and tools, online and instructor led training opportunities

• Working in a friendly, dynamic and multinational environment

• Opportunity to have an influence on the way you perform your tasks - our teams are constantly looking for new and better ways and we encourage all improvement ideas

• A chance to make a difference with various affinity networks and charity initiative

By joining Citi Singapore, you will not only be part of a business casual workplace with a hybrid working model (up to 2 days working at home per week), but also receive a competitive base salary (which is annually reviewed) and enjoy a whole host of additional benefits that support you (and your family) to be well, live well and save well.

Alongside these benefits Citi is committed to ensuring our workplace is where everyone feels comfortable coming to work as their whole self every day. We want the best talent around the world to be energized to join us, motivated to stay, and empowered to thrive.

Sounds like Citi has everything you need? Then apply to discover the true extent of your capabilities.

---

Job Family Group:

---

Job Family:

---

Time Type:

---

Most Relevant Skills

---

Other Relevant Skills

---

Citi is an equal opportunity employer, and qualified candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other characteristic protected by law.

If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi .

View Citi’s EEO Policy Statement and the Know Your Rights poster.

Join to apply for the Information Security GRC Senior Analyst | APAC role at Randstad Singapore .

This is a full-time, mid-senior level position within the Information Technology industry, focusing on cybersecurity, governance, risk management, and compliance (GRC).

• Develop, implement, and maintain the ISMS based on ISO 27001, NIST CSF, and other leading frameworks.
• Manage the GRC lifecycle: risk identification, assessment, control design, treatment, monitoring, and reporting.
• Manage internal and external audits; oversee remediation plans and validate efficacy.
• Define and refine security policies, standards, and procedures; lead ongoing compliance efforts with regulations such as PDPA, PCI DSS, HIPAA, GDPR, SOC 2.
• Deliver security training and awareness communication to enhance security culture.
• Monitor industry changes, emerging threats, and regulatory updates; translate into policy and proactive risk management.

Minimum of 8 years of experience in Information Security, with regional/global coverage preferred. Exposure to SOX is advantageous. Skills in information security, governance, risk management, compliance (GRC), ISO 27001, GDPR, and certifications like CISA or CISSP are desirable.

An excellent opportunity to join an established company with strong stakeholder support and investment in information security.

Apply online using the 'apply' button or contact via LinkedIn: . (EA: 94C3609/ R1219669)

Senior level, full-time role in the technology sector, with potential for regional/global impact.