383 Security Compliance jobs in Singapore

The IT Internal Auditor role plays a pivotal part in ensuring the integrity, confidentiality, and availability of an organization's data by evaluating its IT systems, controls, and processes.

• Lead and execute comprehensive IT audit engagements across various domains including network infrastructure, cloud computing, data governance, cybersecurity, and application systems.
• Identify potential risks and provide actionable recommendations to enhance control environments.
• Perform advanced data analytics to support audit objectives, interpreting complex data structures and business processes.
• Independently manage audit assignments with minimal supervision.
• Collaborate effectively with stakeholders to ensure clear communication of audit results.

• A minimum of 5 years of experience in IT audit, IT risk, or cybersecurity is essential.
• Proficiency in IT general control (ITGC) and IT application control (ITAC) is required.
• Knowledge of IT standards, frameworks, and regulations such as NIST, ISO 27001, Data Privacy, and COBIT is necessary.
• A degree in computer science, computer engineering, or information security is mandatory.
• Experience working with large internet companies or online business models is advantageous.
• Excellent communication skills, both written and verbal, are necessary for effective collaboration and stakeholder engagement.
• Experience with data analytics and relevant technology tools is desirable.
• Certifications in CISA or CISSP are compulsory.
• Familiarity with Mandarin language is beneficial for communication with Chinese partners.

Direct message the job poster from Eames Consulting

We are seeking a Cyber Security Compliance Manager to join our client’s team and lead the development, implementation, and oversight of cyber security compliance and governance programs. The ideal candidate has a deep understanding of information security frameworks and regulations, with a proven track record of ensuring organisational compliance in fast-paced environments.

Key Responsibilities

• Develop, implement, and manage cyber security compliance programs and policies aligned with global standards and regulatory requirements.
• Lead regular risk assessments, security audits, and compliance checks across IT infrastructure and business units.
• Maintain up-to-date knowledge of relevant laws, standards, and best practices (e.g., ISO27001, NIST, GDPR, PCI-DSS, MAS TRM).
• Collaborate with technical and business teams to ensure consistent interpretation and application of security policies and controls.
• Manage internal and external audits, including preparing documentation and responding to audit findings.
• Conduct awareness and training programs for staff on security policies, data protection, and regulatory requirements.
• Advise management and stakeholders on cyber security risks, compliance gaps, and recommended mitigation strategies.
• Track and report on compliance status, risk metrics, and remediation efforts to senior leadership.

Requirements

• Bachelor’s degree in Information Security, Computer Science, IT, or related field.
• Minimum 5 years’ experience in cyber security compliance, audit, or risk management roles.
• Sound knowledge of international cybersecurity standards and regulatory frameworks (ISO27001, NIST, GDPR, PCI-DSS, MAS, etc.).
• Strong analytical, organisational, and communication skills.
• Experience interfacing with auditors and regulatory authorities.
• Professional certifications such as CISM, CISA, CISSP, or CRISC are a strong advantage.

If you are looking to join a fast-paced environment with a great culture, look no further and apply now!

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries Information Services and Technology, Information and Media

Referrals increase your chances of interviewing at Eames Consulting by 2x

Get notified about new Cyber Security Specialist jobs in Singapore, Singapore .

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

We are seeking a seasoned professional to lead and oversee Security Trade Control operations across the company. As an Assistant Manager, you will be responsible for managing notifications and verifications for the end-user list, including follow-ups as necessary.

">">
• Administer export control processes in SAP, such as material creation, classification, extension, and manufacturer confirmations; release export licenses after background checks and HQ approval.
">">
• Work with the HQ Legal Export Control team to approve transactions involving specific countries or military-related organizations.
">">
• Provide training and distribute relevant security trade control information to employees, particularly sales teams, to ensure compliance.
">">

You will also lead, manage, and coordinate legal matters, including contract management, dispute resolution, and compliance with anti-trust, anti-bribery regulations.

">">
• Oversee contract management, including reviewing NDAs, agreements, and other contracts.
">">
• Handle legal disputes and resolution processes.
">">
• Ensure compliance with Personal Data Protection regulations (PDPA) by conducting regular impact assessments to identify and mitigate risks.
">">
• Conduct legal audits and manage internal legal policies.
">">

This is an exciting opportunity to work in a fast-paced environment and make a significant impact on the company's success. If you have a strong background in security trade control and legal affairs, we encourage you to apply.

• 1 Grange Rd, Singapore 239693
• Full-time
• Department: H&M Group

H&M Brand is on an exciting journey to again become a truly customer focused company. In line with our Omni transformation, we want to achieve clear ownership, fuel our salesmanship, enable speed and build on our passion for the customer throughout the organisation.

You ensure business continuity by management of risks. Providing peace of mind, you manage and support your team to ensure the H&M Group is a place where employees and customers can feel safe. You drive the 5 security areas by influencing behavior through effective leadership in your local organization.

Key responsibilities

• Risk Management: Regular assessment, analysis, identification and evaluation of potential risk to minimize threat exposure. Implement and ensure compliance strategies are accordance to global brand policies, standards and local legislation.
• Health & Safety: Contribute and sustain a healthy and safe work environment throughout the business by ensuring company’s crisis management process are followed and taught; take preventive measures, recognize safety hazards and initiate actions to prevent incidents to our employee and customers.
• Asset Protection: You work proactively with H&M group technology and people, continuously looking for better ways of protection, planning and purchasing security services and product according to global project management and sourcing process. You have a good technical knowledge on all global and local security systems and manages inventory preparation with relevant departments.
• Loss Prevention: Follow up and analyze shrinkage results, main KPIs and initiate actions preventing loss and increasing profit. Implement and maintain Loss Prevention Strategy and investigate on frauds as needed. Ensure LP tools are used to their full potential.
• Information Security: Being advisor to your management on cyber security risk, ensuring compliance with Data Privacy, PCI DSS and information security.

• High performing manager with 2-3 years security and track leadership.
• Formal education with Business Admin Certification, and other security related certification (CPP, PSP, APP, PMP, etc).
• Great command of English both spoken and written, strong communication and presentation skills with ability to present to stakeholders and wider audience.
• Analytical, numbers and fact driven with strong knowledge on policies implementation and compliance.
• Strong organizational and prioritizing skills and competency with office 365 tools.

If you feel that your experience, skills and ambitions are a match, apply latest by 11th JULY 2021. We’re more about personality and competence than qualifications, so don’t worry if your skills aren’t a perfect match. This position is based in Singapore Support Office and is a Maternity Cover for 6 months.

The successful candidate will be a part of the Airport Operations (Safety, Security & Compliance) (AOSCC) team, under the Customer Services & Operations Division.

Key Responsibilities include:

• Administration for AOSSC (Load Control)
  • Assist with email queries from stations and Centralised Load Control Centres (CLCs) on Load Control matters.
  • Maintain and update changes to Loading Instructions and Trim Chart as and when required.
  • Other duties as assigned.
• AOSSC (Load Control) Procedures and monitoring of Centralised Load Control Centres
  • Assist to review current CLC process to address gaps, reduce errors and improve efficiency.
  • Assist with Load Control related delays and incidents.
  • Perform annual audits on the CLCs based on SIA CLC Audit Checklist.
  • Conduct Load Controller Certifications for CLCs Load Controllers.
  • Updating of CLCs Load Controllers Loadsheet Certification in FM Altea.
• FM Altea (Load Control)
  • Assist with FM projects and initiatives.
  • Perform FM Altea UAT for Load Control projects and initiatives.
• Support Services
  • Provide Load Control Support for new stations.
• Initiate and/or conduct investigations for Aircraft Ground Incident Reports (AGIRs) and Hazard Reports (HZR) raised in ISMS (SIA Incident Management System)
  • Liaise with stations and CLCs to investigate aircraft ground incidents and hazards to determine their occurrence and to come up with preventive/mitigation measures.
  • Review HIRA annually for HO and guide stations on their annual HIRA review.

Requirements

• Diploma in any discipline.
• Experience in load control, airport and/or flight operations is preferred.

Job Title: IT Security & Compliance Engineer ( Public Sector | AWS | Bonuses)
Location: Singapore
Salary: $5,000 – $6,500/month
Contract: 24 months (Renewable)

Only Singaporeans

Company Overview :
We are seeking a talented and experienced Guidance & Control Project Engineer to join our team at the Public Sector. You will play a pivotal role in ensuring the seamless integration of IT compliance and security across various enterprise platforms.

Key Responsibilities :

• Lead and manage the onboarding of project teams to enterprise compliance platforms.
• Validate and troubleshoot security compliance solutions for enterprise applications and databases.
• Provide hands-on guidance in configuring, testing, and troubleshooting IT compliance systems.
• Assist in vulnerability assessments, logs management, and risk mitigation efforts for applications in data centers and cloud environments.
• Collaborate with internal stakeholders to ensure all security protocols and standards are met.

Requirements :

• Degree in Computer Science, Engineering, Information Technology, or a related field.
• Minimum 5 years of experience in IT governance, security compliance , or related roles.
• Strong knowledge of compliance standards such as CIS, DISA, and IM8 , along with hands-on experience in vulnerability assessments .
• Familiarity with cloud technologies, database management, and troubleshooting methodologies.
• IT security certifications (e.g., CISSP, CISA , or equivalent) are highly advantageous.

Why Join Us?

• Opportunity to work on impactful projects with the Public Sector
• Competitive salary and benefits package.
• Exposure to advanced IT compliance technologies and career growth opportunities in the public sector.

How to Apply :

Apply via MyCareersFuture . Only shortlisted applicants will be contacted.

By submitting your resume or personal data, you consent to BGC Group Pte Ltd collecting, using, and disclosing your personal data to our clients and partners for the purpose of evaluating your suitability for job opportunities and related recruitment services. You acknowledge that you have read, understood, and agree to our Privacy Policy for Job Applicants, available at .

Internal Ref: JJ – JO 26814A

BGC Group Pte Ltd (Outsourcing)

EA 05C3053

We are looking for an Information and Cyber Security Engineer. You will be part of the founding key team member, reporting to the Head of Information and Cyber Security and working closely with team leads in the transformation of the business. If you are passionate about technology and digital transformation for business and want to be in a team where your views matter, learning and collaboration is part of the culture, please reach out and we would love to talk to you!

• Design, implement, and manage security solutions across on-premise and cloud environments (AWS, GCP, Azure) using cloud-native security tools and services.
• Configure and maintain secure cloud architectures, identity and access management (IAM), security monitoring, and incident response automation.
• Perform continuous security monitoring, log analysis, and threat detection using SIEM tools, endpoint security, and cloud security monitoring solutions.
• Conduct security assessments, vulnerability scanning, penetration testing, and remediation activities to mitigate security risks.
• Perform risk assessments for applications, infrastructure, and third-party services, ensuring compliance with frameworks such as CIS, NIST, PCI DSS, and SOC 2.
• Investigate security incidents, analyze attack patterns, and lead response efforts to mitigate threats in real time.
• Support compliance initiatives by ensuring security controls meet regulatory and internal requirements, including MAS guidelines.
• Develop automation scripts and tools for security monitoring, threat intelligence integration, and policy enforcement.
• Assist in delivering security training programs and promoting a security-first mindset across the organization.
• Continuously research and implement security best practices, emerging threats, and new cybersecurity technologies.

• Excellent relationship-building, stakeholder management, communication, and influencing skills.
• Experience managing senior business stakeholders.
• Strong motivation and capability to drive initiatives and changes.
• Proactive leadership and teamwork skills.
• Relevant industry certifications (e.g., CISSP, CISM, CISA, CCSP).
• Excellent analytical and problem-solving abilities.
• Experience in team leadership, coaching, and mentoring.
• Knowledge of industry standards such as ISO 27001, MAS TRM, NIST, CIS, PCI/DSS, and SOC 2.
• Familiarity with security technologies such as firewalls, intrusion detection systems, and endpoint protection.
• Experience with security operations centers (SOC) and setting up SOC models.
• Strong program management background.
• Product-specific certifications such as MCSE, CCNA Security.
• Good knowledge of TCP/IP protocol.
• Ability to handle sensitive information with confidentiality and integrity.
• Experience in driving enterprise initiatives for E2E security posture analysis.
• Ability to work with subsidiaries and understand regional security requirements.

Data Security and Compliance Analyst

This is a full-time on-site position for a Data Security and Compliance Analyst located in Singapore. The role requires monitoring and analyzing security events, identifying potential threats, conducting investigations, and responding to security incidents.

The successful candidate will work closely with the end client SOC team to ensure timely and effective detection, containment, and mitigation of security incidents.

In addition, the candidate will be responsible for strengthening Customer's cyber security posture against cyber threats through vulnerability management, incident response and analysis, threat hunting and security operations.

The analyst will manage Customer's Cyber security operation and manage the reporting and handling of cyber security incidents.

Daily checks will be performed on the Endpoint Detection Response/Database Activity Monitoring dashboard for any abnormalities.

The candidate will also be responsible for on boarding of subscribed servers and infrastructure devices to MVMS.

Providing supporting documents for audits will also be a key responsibility of the analyst.

Lastly, the analyst will perform Monthly Vulnerability Assessment, Quarterly Vulnerability Assessment for servers and network equipment.

• Diploma/degree in computer studies or related field.
• 2 years of experience working in a security operation, incident response, vulnerability management or related field.
• Demonstrated experience in network security, server security, endpoint security, web security etc.
• Strong knowledge of security principles, technologies, and industry best practices.
• Experience with log analysis, malware analysis, and network traffic analysis.
• Excellent analytical and problem-solving skills, with the ability to quickly identify and respond to security incidents, analyze complex security issues and develop effective solutions.
• Hands-on experience in security appliances such as IBM Guardium, MMVS, Carbon Black, Cyber Ark is a definite advantage.

Candidates with experience in IT security/support operations and willingness to learn above mentioned tools are encouraged to apply. Experienced candidates will be considered for team lead role.

Independent and capable of working in a high-pressure environment.

Willing to work in rotational shift environment (including weekends and night shift).

Where Data Does More. Join the Snowflake team.

SKILLS AND EXPERIENCE:

• Minimum of 6 years of experience in an equivalent technology risk and compliance related role.

• Ability to organize, prioritize and project manage work in a fast-paced and ambiguous environment.

• Experience and knowledge of cloud infrastructures (AWS, Azure, or GCP)

• Experience with compliance reports, certifications and standards as they relate to Software as a Service, Infrastructure as a Service and Cloud Computing, such as SOC1 (SSAE18), SOC2, ISO, FedRAMP, IRAP, PCI-DSS, HITRUST, NIST CyberSecurity Framework, and other related frameworks.

• Experience with common control framework and GRC software and tools maintenance.

• Experience coordinating, facilitating and managing security and compliance audits; industry-specific regulatory compliance knowledge, a plus.

• Drive program efficiency and high customer satisfaction and cultivate support and consensus across multiple stakeholder groups.

• Excellent oral, written and presentation skills with the capability to articulate technical and operational processes.

• Bachelor’s Degree in computer science, information systems, analytics or related field and CISA, CISSP or other relevant certifications.

• Experience with regulations and compliance requirements in China as it relates to technology and cybersecurity.

• Fluent in mandarin and / or cantonese.

RESPONSIBILITIES:

• Own and mature end to end process of compliance audits. Communicate compliance requirements to cross functional teams and own audit evidence validation, documentation, standardization with the goal of driving automation in this end to end process.

• Perform gap analysis/readiness assessments relevant net new certifications

• Interact with the auditors (walkthroughs, explaining controls and evidence, review final report)

• Supply and interpret Snowflake’s reports and certifications. This includes Mandarin translation, verbal or written comments/explanations.

• Develop/Support/Consult on whitepapers, blogpost and other artifacts

• Customer audit support (evidence, interaction with customers/auditors), questions/questionnaires, report requests, pentest requests, quarterly security reviews etc.

• Regularly validate control implementation to support product compliance.

• Collaborate regularly with cross functional teams to address requirements.

• Manage compliance projects across multiple teams, including cloud engineering, security and development etc.

• Reporting and communication of project status to service teams, control owners, and senior leadership.

Snowflake is growing fast, and we’re scaling our team to help enable and accelerate our growth. We are looking for people who share our values, challenge ordinary thinking, and push the pace of innovation while building a future for themselves and Snowflake.

How do you want to make your impact?

For jobs located in the United States, please visit the job posting on the Snowflake Careers Site for salary and benefits information: careers.snowflake.com