49 Security Assessment jobs in Singapore

Compliance Officer

• Roles & Responsibilities
• Identify and document instances of non-compliance, procedural gaps, or vulnerabilities in security systems.
• Prepare detailed reports for senior management, outlining audit findings, corrective actions, and overall compliance status.
• Ensure all security operations are in accordance with relevant laws, regulations, and industry standards.

• Personnel Management and Hiring
• Develop comprehensive onboarding and training programs for new and existing staff, focusing on procedural compliance and professional conduct.
• Implement a system to monitor and evaluate security personnel performance to ensure high standards.

• Operational Performance and Improvement
• Propose and lead improvements to enhance effectiveness and efficiency of security operations.
• Stay informed about new security technologies and recommend solutions that improve compliance and capabilities.

• Policy and Procedure Development
• Create, write, and update security policies, standard operating procedures, and training materials to reflect current best practices and evolving threats.
• Serve as primary point of contact for security compliance inquiries, providing clear guidance to the team and other departments.

• Stakeholder and Customer Management
• Provide assistance related to security protocols to customers and employees, ensuring all interactions are professional and service-oriented.

• Bonus

• What We Offer

eToro has created an intuitive Social Trading platform that gives traders and investors access to global stock markets, commodity trading, cryptocurrency trading, and more. We strive to make money management available and accessible to everyone (even to users with no prior experience or knowledge). We have over 33 million users worldwide, and our platform is available in over 140 countries around the world.

With over 1500 employees worldwide, We have locations in the US, Cyprus, UK, Australia, Germany, and Israel, and we are constantly growing and expanding into new markets.

We are constantly growing and are excited to share that we are looking for a Information Security Compliance Officer to join our team!

What will you be doing?

• Act as the primary local security contact / adviser for both Singapore and Australia offices.
• Work with Group IS and assist on the implementation and translation of information security policies and procedures for local offices.
• Provide an escalation path for security issues, incidents and inquiries to local offices.
• Provide regular and timely reporting on the status of cyber security to local management.
• Provide Cyber Security guidance to the local offices.
• Monitor IT/IS outsourcing arrangements and check that the KPIs/SLAs are met, else to find out the root cause and report it to local management.
• Proactively identify non compliance and areas of potential improvement to Group IS; and facilitate development and deployment of standard solutions.
• Collaborate with the Group Cyber Defense Operations and Cyber Security Engineering teams to develop a technical roadmap for local offices to meet local regulatory requirements.
• Work with Group Security Incident Response and Crisis Management teams to assist in driving incidents to acceptable resolution; and assist with investigations as needed.
• Participate in region/business unit related conferences, client facing engagement, industry forums to represent eToro’s Cyber Security program.
• Responsible for tasks assigned to you.
• Responsible to self track (including mandatory in-house Compliance/AML training/ABC) all training hours and keep training records and with the HR;
• Any other tasks as allocated by your direct line manager.

Direct message the job poster from Eames Consulting

We are seeking a Cyber Security Compliance Manager to join our client’s team and lead the development, implementation, and oversight of cyber security compliance and governance programs. The ideal candidate has a deep understanding of information security frameworks and regulations, with a proven track record of ensuring organisational compliance in fast-paced environments.

Key Responsibilities

• Develop, implement, and manage cyber security compliance programs and policies aligned with global standards and regulatory requirements.
• Lead regular risk assessments, security audits, and compliance checks across IT infrastructure and business units.
• Maintain up-to-date knowledge of relevant laws, standards, and best practices (e.g., ISO27001, NIST, GDPR, PCI-DSS, MAS TRM).
• Collaborate with technical and business teams to ensure consistent interpretation and application of security policies and controls.
• Manage internal and external audits, including preparing documentation and responding to audit findings.
• Conduct awareness and training programs for staff on security policies, data protection, and regulatory requirements.
• Advise management and stakeholders on cyber security risks, compliance gaps, and recommended mitigation strategies.
• Track and report on compliance status, risk metrics, and remediation efforts to senior leadership.

Requirements

• Bachelor’s degree in Information Security, Computer Science, IT, or related field.
• Minimum 5 years’ experience in cyber security compliance, audit, or risk management roles.
• Sound knowledge of international cybersecurity standards and regulatory frameworks (ISO27001, NIST, GDPR, PCI-DSS, MAS, etc.).
• Strong analytical, organisational, and communication skills.
• Experience interfacing with auditors and regulatory authorities.
• Professional certifications such as CISM, CISA, CISSP, or CRISC are a strong advantage.

If you are looking to join a fast-paced environment with a great culture, look no further and apply now!

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries Information Services and Technology, Information and Media

Referrals increase your chances of interviewing at Eames Consulting by 2x

Get notified about new Cyber Security Specialist jobs in Singapore, Singapore .

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

We are seeking a seasoned professional to lead and oversee Security Trade Control operations across the company. As an Assistant Manager, you will be responsible for managing notifications and verifications for the end-user list, including follow-ups as necessary.

">">
• Administer export control processes in SAP, such as material creation, classification, extension, and manufacturer confirmations; release export licenses after background checks and HQ approval.
">">
• Work with the HQ Legal Export Control team to approve transactions involving specific countries or military-related organizations.
">">
• Provide training and distribute relevant security trade control information to employees, particularly sales teams, to ensure compliance.
">">

You will also lead, manage, and coordinate legal matters, including contract management, dispute resolution, and compliance with anti-trust, anti-bribery regulations.

">">
• Oversee contract management, including reviewing NDAs, agreements, and other contracts.
">">
• Handle legal disputes and resolution processes.
">">
• Ensure compliance with Personal Data Protection regulations (PDPA) by conducting regular impact assessments to identify and mitigate risks.
">">
• Conduct legal audits and manage internal legal policies.
">">

This is an exciting opportunity to work in a fast-paced environment and make a significant impact on the company's success. If you have a strong background in security trade control and legal affairs, we encourage you to apply.

eToro has created an intuitive Social Trading platform that gives traders and investors access to global stock markets, commodity trading, cryptocurrency trading, and more. We strive to make money management available and accessible to everyone (even to users with no prior experience or knowledge). We have over 33 million users worldwide, and our platform is available in over 140 countries around the world.

With over 1500 employees worldwide, We have locations in the US, Cyprus, UK, Australia, Germany, and Israel, and we are constantly growing and expanding into new markets.

We are constantly growing and are excited to share that we are looking for a Information Security Compliance Officer to join our team!

What will you be doing?

• Act as the primary local security contact / adviser for both Singapore and Australia offices.
• Work with Group IS and assist on the implementation and translation of information security policies and procedures for local offices.
• Provide an escalation path for security issues, incidents and inquiries to local offices.
• Provide regular and timely reporting on the status of cyber security to local management.
• Provide Cyber Security guidance to the local offices.
• Monitor IT/IS outsourcing arrangements and check that the KPIs/SLAs are met, else to find out the root cause and report it to local management.
• Proactively identify non compliance and areas of potential improvement to Group IS; and facilitate development and deployment of standard solutions.
• Collaborate with the Group Cyber Defense Operations and Cyber Security Engineering teams to develop a technical roadmap for local offices to meet local regulatory requirements.
• Work with Group Security Incident Response and Crisis Management teams to assist in driving incidents to acceptable resolution; and assist with investigations as needed.
• Participate in region/business unit related conferences, client facing engagement, industry forums to represent eToro’s Cyber Security program.
• Responsible for tasks assigned to you.
• Responsible to self track (including mandatory in-house Compliance/AML training/ABC) all training hours and keep training records and with the HR;
• Any other tasks as allocated by your direct line manager.

Direct message the job poster from Eames Consulting

I help organisations attract Cyber Security, Technology Risk & Audit talents to improve their risk & security posture

We are seeking a Cyber Security Compliance Manager to join our client’s team and lead the development, implementation, and oversight of cyber security compliance and governance programs. The ideal candidate has a deep understanding of information security frameworks and regulations, with a proven track record of ensuring organisational compliance in fast-paced environments.

Key Responsibilities

• Develop, implement, and manage cyber security compliance programs and policies aligned with global standards and regulatory requirements.
• Lead regular risk assessments, security audits, and compliance checks across IT infrastructure and business units.
• Maintain up-to-date knowledge of relevant laws, standards, and best practices (e.g., ISO27001, NIST, GDPR, PCI-DSS, MAS TRM).
• Collaborate with technical and business teams to ensure consistent interpretation and application of security policies and controls.
• Manage internal and external audits, including preparing documentation and responding to audit findings.
• Conduct awareness and training programs for staff on security policies, data protection, and regulatory requirements.
• Advise management and stakeholders on cyber security risks, compliance gaps, and recommended mitigation strategies.
• Track and report on compliance status, risk metrics, and remediation efforts to senior leadership.

Requirements

• Bachelor’s degree in Information Security, Computer Science, IT, or related field.
• Minimum 5 years’ experience in cyber security compliance, audit, or risk management roles.
• Sound knowledge of international cybersecurity standards and regulatory frameworks (ISO27001, NIST, GDPR, PCI-DSS, MAS, etc.).
• Strong analytical, organisational, and communication skills.
• Experience interfacing with auditors and regulatory authorities.
• Professional certifications such as CISM, CISA, CISSP, or CRISC are a strong advantage.

If you are looking to join a fast-paced environment with a great culture, look no further and apply now!

Seniority level

• Seniority level

  Mid-Senior level

Employment type

• Employment type

  Full-time

Job function

• Job function

  Information Technology

• Industries

  Information Services and Technology, Information and Media

Referrals increase your chances of interviewing at Eames Consulting by 2x

Get notified about new Cyber Security Specialist jobs in Singapore, Singapore .

Assistant Director/Senior Manager (Cybersecurity Oversight)

Chief Information Security Officer - Fintech

VP, Cyber Security Program Manager, COO's Office

Regional Manager, Business Security & Governance

Deputy Manager (IT Cyber Security) - Contract

Manager Roles in Cyber Security Fusion Center (Express of Interest)

Cyber Security Operations (CSO) - Asia Cluster Governance Lead

VP, AI Security Risk Manager, COO's Office

IT Risk, Compliance and Security Manager

Cybersecurity Manager (Network Infrastructure)

AVP/VP (12 months contract), Cybersecurity (Governance Oversight)

Deputy Director (Security Engineering), Cybersecurity Engineering Centre

Assistant Manager / Manager, Cybersecurity Resilience Governance Preparedness

Global Information Security, Risk and Governance Manager

Director, APAC Solutions Consulting (Cybersecurity)

(Senior/Executive) Manager, Resilience and Cybersecurity Planning

Vice President, Global Cybersecurity Awareness and Training

Manager/Senior Manager (Sector Lead Office), Regulations Division

Client Information Security Lead/Senior Manager (Infra Enterprise)

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Job Title: IT Security Compliance Specialist

We are seeking an experienced IT security compliance specialist to join our team. As a key member of our organization, you will be responsible for ensuring the security and integrity of our systems and data.

• Overall system administration with a focus on security and compliance.
• Ability to administer M365, domains, GPOs, file permission hierarchies, events, PowerShell, and achieve secured setup. MSSQL knowledge is commendable.
• Open to lead or carry out security implementations, investigations, incidents, documentations.
• Conduct periodical assessments of cybersecurity risks for onshore and offshore, ensuring compliance checks.
• Prepare cybersecurity information and awareness training topics.
• Opportunity to administer networks in a non-Cisco environment.
• Foster team collaboration with L1 teams on day-to-day requirements.
• Assist with other related administrative duties.

Requirements:

• At least 3+ years of system administration experience with foresight in cybersecurity areas.
• Preferrable with MCSA/MCSE, Windows Server Hybrid Administrator Associate, CCNA, or equivalent certifications.
• Good to have CISSP, Security+, or past relevant security implementation work or documentation.
• Familiarity with IMO guidelines, ISO27001, ISO9000 is commendable.
• Full independence and ability to respond effectively on security incidents and escalations.
• A hands-on person with excellent problem-solving, analytical abilities.
• Excellent tech savviness, always motivated, and continuous forward-learning mentality.

• Microsoft 365
• MSSQL
• Network Administration
• CCNA
• Cybersecurity
• Powershell
• Security Policy
• ISO 27001
• Microsoft SQL
• MCSA Security
• User Management
• Windows Server
• System Administration
• Windows PowerShell
• MSSQL Server
• ISO 9000
• Able To Work Independently
• CISSP

Who are we?

Established in 2004, AGES is a comprehensive solutions provider for various cyber and IT applications. The company has garnered substantial market recognition and is accredited as a Qualified Security Assessor (QSA) organization. AGES offers independent security audits, assessments, and compliance validation services.

AGES acknowledges the heightened potential security threats stemming from business dependencies on technologies, particularly in payment and mobile security controls, where market conditions and requirements vary significantly. AGES endeavours to play a pivotal role in the market by addressing such security threats, particularly in establishing a more secure platform for these industries.

As a pioneer in cryptography, cyber security, and related payment environments, AGES has garnered substantial market recognition and is recognized by numerous prominent organizations. AGES brings together industry experts in cyber and IT, including specialists in cyber technologies, cryptography, payment systems security, IT security, systems development, project management, and business development.

AGES has also garnered relevant in-depth experience with significant organizations such as Payment Card Industry (PCI) Security Standards Council (SSC), MasterCard International (MCI), VISA, American Express (AMEX), JCB, Diners/Discover, NPCI – RuPAY, and UnionPay International (China UnionPay – UPI), enable AGES to effectively reach out to diverse clientele across global markets.

Organizations engaged in physical and logical security activities related to the production and provisioning of payment cards for various brands must adhere to the PCI Card Production and Provisioning (CP) requirements. AGES is a market leader in PCI CP security assessments that encompass physical and logical security, cybersecurity, information security, network and data security, and cryptographic key management. AGES has developed into a critical source of security and certification support for numerous card plants.

AGES is committed to integrating sustainability and scaling its ESG initiatives into its core business operations to facilitate the transition towards a cleaner and more sustainable future for society. We envision significant growth in its security audit programs to position itself among the global top audit providers for these programs.

Job Description:

• We are looking for competent individuals to join our team, to conduct security assessments and vulnerability testing relating to the payment and IT security industry. Weekly traveling is required during peak season.
• To evaluate technologies against cybersecurity standards and stay current on IT security regulations and standards (eg: PCI CPSA, PCI DSS, PCI 3DS)
• Undergo company bond-sponsorship for industrial professional certifications, courses, examinations and overseas on-the-job trainings.
• This is an ideal role for a highly organised individual who has a good command of language, possess excellent interpersonal skill, good writing skills and holds a keen interest in IT to join our expert IT auditing and security

Your Key Responsibilities:

1. Support in cyber security / audit team in compliance assessment, assessment reporting, vulnerabilities scans and network penetration tests for local and overseas customers (if required), enhancement of in-house penetration test system - PAYGE, system security testing and quality assurance activities.
2. Network penetration testing follows the NIST Special Publication 800-115 using tools not limiting to Metasploit, Wireshark, Nessus, Nikto, Nicat, John the Ripper, AppScan, Greenbone, and Netcraft.
3. Configuration of VM image for VM Box used for vulnerability scans and network penetration tests. VM image may deploy Kali Linux.
4. Clients in scope cover but not limited to organisations certified under the Payment Card Industry (PCI) Card Production (CP), and PCI Data Security Scheme (DSS) programs.
5. Document work papers, report preparation and quality assurance, and attend in house training sessions (if any).
6. Any other ad-hoc tasks and job rotation as assigned by your reporting officer.

Requirements:

• Degree in Computing or equivalent with minimum 1 to 10 years of IT working experience;
• Able to travel weekly for short trips;
• Ability to speak and write to our Taiwanese speaking clients.
• Certified CISA and CISM/CISSP preferred.

Why join our team?

AGES has a friendly working environment with a highly motivated and hard-working team. This role should appeal if you enjoy verifying information, has an inquisitive mind, is an effective communicator and enjoy challenging yourselves to make a positive impact to our clients and our peoples.

The IT security and audit industry is fast-paced and busy, so we are looking for colleagues who have a positive and results focused attitude. You should also like traveling worldwide for work related projects too.

This breadth and depth of experience, combined with technical and communication skills in the payment security assessment domain, makes you a valuable asset to any organisation , opening up opportunities in areas such as IT Risk Management, IT Compliance, Technology Operations, and Cyber Information Security.

To find out more about us

• Evaluate the design and effectiveness of internal controls through thorough walkthroughs and testing.
• Lead remediation efforts for deficiencies identified in control design and operating effectiveness.
• Develop strategies to validate high-priority IT systems for business processes/sub-processes.
• Create detailed documentation for control designs, process narratives, and flowcharts.
• Establish strong relationships with stakeholders, facilitate discussions, and monitor progress.
• Identify potential risks and ensure insights are captured and managed.
• Supervise third-party audit resources where applicable.
• Report activity status and results to Management.

• Bachelor's Degree in Computer Engineering/Computer Science or related studies
• Minimum 4 consecutive years of IT audit working experience
• Knowledge of COBIT or ISO27001 or ITIL or MAS Technology Risk Management Guidelines or similar standards
• Experience in performing IT applications and general controls review, and cybersecurity review
• Able to work independently, possess good communication skills, and demonstrate good work ethics
• Experience in data analytics and usage of related technology tools in financial and insurance sectors has added advantage
• Professional qualifications (e.g. CISA, CISSP) are highly preferred

This role offers opportunities for professional growth and development. The successful candidate will be part of a dynamic team that values collaboration and expertise sharing.

The organization operates with a commitment to integrity and transparency. We promote a culture that fosters innovation, creativity, and continuous learning.