186 IT Compliance Auditor jobs in Singapore

We are seeking a meticulous and proactive Compliance Administrator to ensure our data centre operations consistently meet and exceed rigorous industry compliance standards. This role is critical in supporting audit activities, maintaining certifications, and managing the documentation that proves our commitment to security and reliability.

Responsibilities

Audit & Certification Management:

• ack-end support coordinator for all internal, external, and client-led audits (e.g., SOC 2, ISO 27001, ISO 9001, PCI DSS, OSPAR).

• P epare audit-ready evidence, including policies, procedures, logs, and reports from the engineers.

• T ack audit findings and non-conformities, working with relevant teams to develop corrective action plans and ensure timely remediation.

Policy & Documentation Management:

• M intain the central repository for all compliance-related documentation, including certificates, policies, procedures, and audit reports.

• A sist the Compliance Manger in the development, review, and periodic updating of Standard Operating Procedures (SOPs) and other control documentation

• M nage the compliance calendar, tracking all critical deadlines for audit cycles, management reviews, and certification renewals.

Client & Vendor Assurance:

• S pport the vendor risk management process by reviewing vendor compliance certifications.

Skills/Requirement

• D ploma or Bachelor’s Degree in IT/Business Administration/Mechanical or Electrical Engineering/Environmental Sustainability.

• 6 m nths experience as Compliance Auditor/Admin.

• K owledgeable in all applications Adobe, MS Office, etc.

We regret to inform you that only shortlisted candidates will be contacted.

By sending us your personal data and curriculum vitae (CV), you are deemed to consent to EVO Outsourcing Solutions Pte Ltd and its affiliates to collect, use and disclose your personal data for the purposes set out in the Privacy Policy available at evo-sg.com/privacy-policy. You acknowledge that you have read, understood, and agree with the Privacy Policy.

We are seeking a skilled Audit Associate to join our team. The ideal candidate will have strong analytical and problem-solving skills, with the ability to work independently and as part of a team.

The successful candidate will be responsible for conducting thorough reviews of management accounts, identifying key risk areas, and ensuring compliance with relevant laws and regulations.

The role will involve performing fieldwork for audits, including tests of controls, substantive analytical procedures, and detailed testing. The candidate will also be responsible for preparing tax computations for submission to relevant authorities.

In addition, the Audit Associate will review and modify financial statements prepared by clients to ensure adherence to Financial Reporting Standards.

• Management Skills
• Microsoft Office
• Financial Reporting
• Auditing
• Accounting
• Compliance
• Taxation
• Assurance
• ACCA Certification

This is an excellent opportunity for a motivated individual to develop their skills and expertise in audit and assurance. The successful candidate will receive comprehensive training and support to enable them to perform at their best.

We are a reputable organization that values integrity, professionalism, and excellence. We offer a dynamic and supportive work environment, with opportunities for career growth and development.

We are seeking a meticulous and self-driven Internal Audit Officer to support our internal audit team in delivering quality financial, compliance, and operational audits. This individual contributor role is ideal for a professional with a background in auditing who thrives on conducting independent reviews and working collaboratively within a team.

This role involves evaluating internal controls, verifying compliance with policies and regulations, and ensuring the accuracy and reliability of financial records in alignment with our annual audit work plan.

• Key Responsibilities:
• Execute financial, compliance, and process audits based on the annual audit plan.
• Assess and test the effectiveness of internal controls and business processes.
• Review compliance with internal policies, government regulations, and procedures.
• Analyse financial data and support audit reporting with well-documented findings.
• Liaise with stakeholders across departments to gather information and present audit outcomes clearly.
• Provide recommendations to strengthen controls and enhance operational efficiency.

• A degree in Accountancy, Finance, or a related field.
• Professional certifications (e.g., CA, CIA) are an advantage.

• At least 2 years of relevant experience in audit (internal audit preferred).
• Proficiency in data analytics tools (e.g., Excel, Power BI, ACL) would be beneficial.

• Strong analytical and critical thinking skills.
• Excellent verbal and written communication skills.
• Highly meticulous, resourceful, and able to work independently and in teams.
• Strong interpersonal skills with the ability to interact and influence at all levels.

Who are we?

Established in 2004, AGES is a comprehensive solutions provider for various cyber and IT applications. The company has garnered substantial market recognition and is accredited as a Qualified Security Assessor (QSA) organization. AGES offers independent security audits, assessments, and compliance validation services.

AGES acknowledges the heightened potential security threats stemming from business dependencies on technologies, particularly in payment and mobile security controls, where market conditions and requirements vary significantly. AGES endeavours to play a pivotal role in the market by addressing such security threats, particularly in establishing a more secure platform for these industries.

As a pioneer in cryptography, cyber security, and related payment environments, AGES has garnered substantial market recognition and is recognized by numerous prominent organizations. AGES brings together industry experts in cyber and IT, including specialists in cyber technologies, cryptography, payment systems security, IT security, systems development, project management, and business development.

AGES has also garnered relevant in-depth experience with significant organizations such as Payment Card Industry (PCI) Security Standards Council (SSC), MasterCard International (MCI), VISA, American Express (AMEX), JCB, Diners/Discover, NPCI – RuPAY, and UnionPay International (China UnionPay – UPI), enable AGES to effectively reach out to diverse clientele across global markets.

Organizations engaged in physical and logical security activities related to the production and provisioning of payment cards for various brands must adhere to the PCI Card Production and Provisioning (CP) requirements. AGES is a market leader in PCI CP security assessments that encompass physical and logical security, cybersecurity, information security, network and data security, and cryptographic key management. AGES has developed into a critical source of security and certification support for numerous card plants.

AGES is committed to integrating sustainability and scaling its ESG initiatives into its core business operations to facilitate the transition towards a cleaner and more sustainable future for society. We envision significant growth in its security audit programs to position itself among the global top audit providers for these programs.

Job Description:

• We are looking for competent individuals to join our team, to conduct security assessments and vulnerability testing relating to the payment and IT security industry. Weekly traveling is required during peak season.
• To evaluate technologies against cybersecurity standards and stay current on IT security regulations and standards (eg: PCI CPSA, PCI DSS, PCI 3DS)
• Undergo company bond-sponsorship for industrial professional certifications, courses, examinations and overseas on-the-job trainings.
• This is an ideal role for a highly organised individual who has a good command of language, possess excellent interpersonal skill, good writing skills and holds a keen interest in IT to join our expert IT auditing and security

Your Key Responsibilities:

1. Support in cyber security / audit team in compliance assessment, assessment reporting, vulnerabilities scans and network penetration tests for local and overseas customers (if required), enhancement of in-house penetration test system - PAYGE, system security testing and quality assurance activities.
2. Network penetration testing follows the NIST Special Publication 800-115 using tools not limiting to Metasploit, Wireshark, Nessus, Nikto, Nicat, John the Ripper, AppScan, Greenbone, and Netcraft.
3. Configuration of VM image for VM Box used for vulnerability scans and network penetration tests. VM image may deploy Kali Linux.
4. Clients in scope cover but not limited to organisations certified under the Payment Card Industry (PCI) Card Production (CP), and PCI Data Security Scheme (DSS) programs.
5. Document work papers, report preparation and quality assurance, and attend in house training sessions (if any).
6. Any other ad-hoc tasks and job rotation as assigned by your reporting officer.

Requirements:

• Degree in Computing or equivalent with minimum 1 to 10 years of IT working experience;
• Able to travel weekly for short trips;
• Ability to speak and write to our Taiwanese speaking clients.
• Certified CISA and CISM/CISSP preferred.

Why join our team?

AGES has a friendly working environment with a highly motivated and hard-working team. This role should appeal if you enjoy verifying information, has an inquisitive mind, is an effective communicator and enjoy challenging yourselves to make a positive impact to our clients and our peoples.

The IT security and audit industry is fast-paced and busy, so we are looking for colleagues who have a positive and results focused attitude. You should also like traveling worldwide for work related projects too.

This breadth and depth of experience, combined with technical and communication skills in the payment security assessment domain, makes you a valuable asset to any organisation , opening up opportunities in areas such as IT Risk Management, IT Compliance, Technology Operations, and Cyber Information Security.

To find out more about us

eToro has created an intuitive Social Trading platform that gives traders and investors access to global stock markets, commodity trading, cryptocurrency trading, and more. We strive to make money management available and accessible to everyone (even to users with no prior experience or knowledge). We have over 33 million users worldwide, and our platform is available in over 140 countries around the world.

With over 1500 employees worldwide, We have locations in the US, Cyprus, UK, Australia, Germany, and Israel, and we are constantly growing and expanding into new markets.

We are constantly growing and are excited to share that we are looking for a Information Security Compliance Officer to join our team!

What will you be doing?

• Act as the primary local security contact / adviser for both Singapore and Australia offices.
• Work with Group IS and assist on the implementation and translation of information security policies and procedures for local offices.
• Provide an escalation path for security issues, incidents and inquiries to local offices.
• Provide regular and timely reporting on the status of cyber security to local management.
• Provide Cyber Security guidance to the local offices.
• Monitor IT/IS outsourcing arrangements and check that the KPIs/SLAs are met, else to find out the root cause and report it to local management.
• Proactively identify non compliance and areas of potential improvement to Group IS; and facilitate development and deployment of standard solutions.
• Collaborate with the Group Cyber Defense Operations and Cyber Security Engineering teams to develop a technical roadmap for local offices to meet local regulatory requirements.
• Work with Group Security Incident Response and Crisis Management teams to assist in driving incidents to acceptable resolution; and assist with investigations as needed.
• Participate in region/business unit related conferences, client facing engagement, industry forums to represent eToro’s Cyber Security program.
• Responsible for tasks assigned to you.
• Responsible to self track (including mandatory in-house Compliance/AML training/ABC) all training hours and keep training records and with the HR;
• Any other tasks as allocated by your direct line manager.

eToro has created an intuitive Social Trading platform that gives traders and investors access to global stock markets, commodity trading, cryptocurrency trading, and more. We strive to make money management available and accessible to everyone (even to users with no prior experience or knowledge). We have over 33 million users worldwide, and our platform is available in over 140 countries around the world.

With over 1500 employees worldwide, We have locations in the US, Cyprus, UK, Australia, Germany, and Israel, and we are constantly growing and expanding into new markets.

We are constantly growing and are excited to share that we are looking for a Information Security Compliance Officer to join our team!

What will you be doing?

• Act as the primary local security contact / adviser for both Singapore and Australia offices.
• Work with Group IS and assist on the implementation and translation of information security policies and procedures for local offices.
• Provide an escalation path for security issues, incidents and inquiries to local offices.
• Provide regular and timely reporting on the status of cyber security to local management.
• Provide Cyber Security guidance to the local offices.
• Monitor IT/IS outsourcing arrangements and check that the KPIs/SLAs are met, else to find out the root cause and report it to local management.
• Proactively identify non compliance and areas of potential improvement to Group IS; and facilitate development and deployment of standard solutions.
• Collaborate with the Group Cyber Defense Operations and Cyber Security Engineering teams to develop a technical roadmap for local offices to meet local regulatory requirements.
• Work with Group Security Incident Response and Crisis Management teams to assist in driving incidents to acceptable resolution; and assist with investigations as needed.
• Participate in region/business unit related conferences, client facing engagement, industry forums to represent eToro’s Cyber Security program.
• Responsible for tasks assigned to you.
• Responsible to self track (including mandatory in-house Compliance/AML training/ABC) all training hours and keep training records and with the HR;
• Any other tasks as allocated by your direct line manager.

• Plan and conduct audits to ensure compliance with statutory and special audit requirements.
• Oversee the preparation of statutory accounts and cash flow statements.
• Analyze and resolve various audit issues.
• Lead and manage engagement teams to ensure quality and timely delivery.
• Develop and maintain good client relationships.

• A degree in Accounting or other professional qualifications recognized by the Accounting Body.
• Minimum 4-5 years' relevant experience in an audit environment.
• Sound knowledge of auditing standards.
• Proficient in MS Office.
• Good interpersonal and communication skills.
• Time management and organizational skills.

Get to know our Team :

-The information security team at Grab is passionate about solving every security challenge to build the team’s capabilities to enhance Grab’s growth. These security challenges lie in areas from internal and external cybersecurity to data privacy, we work to ensure quality, bug free code. We design programs to catch threats and remove them - to help Grab build for scale. We are here to help every single driver and passenger stay safe.

Get to know the Role :

• Provide cyber risk and compliance advisory support
• Develop and enhance cyber risk and compliance methodology and program
• Support and advise stakeholders on the identification, assessment, treatment and monitoring of cybersecurity risk
• Assist in driving ISO 27001, PCI DSS Compliance Program across the Organization
• Assist in driving cyber risk compliance in line with various technology risk management guidelines across SEA such as MAS TRM, BNM RMiT.
• Perform compliance assessment to ascertain the effectiveness of information security controls baselined against cyber regulatory and information security policies requirements
• Report and track cyber risk and compliance assessments, remediation activities and Key Risk Indicator (KRI) and Key Control Indicator (KCI) which are meaningful and actionable for individuals and executive management audiences
• Take a hands-on approach and partner with team leads and managers to implement and adopt procedures and controls in accordance with information security policies

Get to know our Team :

-The information security team at Grab is passionate about solving every security challenge to build the team’s capabilities to enhance Grab’s growth. These security challenges lie in areas from internal and external cybersecurity to data privacy, we work to ensure quality, bug free code. We design programs to catch threats and remove them - to help Grab build for scale. We are here to help every single driver and passenger stay safe.

Get to know the Role :

• Provide cyber risk and compliance advisory support
• Develop and enhance cyber risk and compliance methodology and program
• Support and advise stakeholders on the identification, assessment, treatment and monitoring of cybersecurity risk
• Assist in driving ISO 27001, PCI DSS Compliance Program across the Organization
• Assist in driving cyber risk compliance in line with various technology risk management guidelines across SEA such as MAS TRM, BNM RMiT.
• Perform compliance assessment to ascertain the effectiveness of information security controls baselined against cyber regulatory and information security policies requirements
• Report and track cyber risk and compliance assessments, remediation activities and Key Risk Indicator (KRI) and Key Control Indicator (KCI) which are meaningful and actionable for individuals and executive management audiences
• Take a hands-on approach and partner with team leads and managers to implement and adopt procedures and controls in accordance with information security policies