Jobfoundry
Jobfoundry
SC

Senior Cyber Assurance Analyst

Sembcorp
Energy, Utilities & InfrastructureSingapore, Central, SingaporeOnsitePosted 4 weeks ago
Apply Now

About the role

AI summarised

The Senior Cyber Assurance Analyst will join Sembcorp's Governance and Compliance team to conduct global risk assessments and compliance reviews for digital solutions, systems, and third parties. Responsibilities include developing IT security policies, delivering security awareness training, providing advisory services for IT projects, and undertaking initiatives to mitigate IT risks. The role requires staying current with industry standards and regulatory requirements to ensure alignment with business needs and best practices.

UtilitiesOnsiteTech Risk Governance

Key Responsibilities

  • Be part of the Governance and Compliance team to conduct risk assessment and compliance review globally on new digital solutions, existing systems and third parties
  • Identify potential risks that will impact the organization and recommend action plans to reduce the risks
  • Conduct compliance check on control effectiveness to ensure compliance with established policies and applicable regulations
  • Develop policies, standards and guidelines to ensure safety of IT assets in adherence to business needs, industrial best practices and regulatory requirements
  • Conduct security awareness trainings globally
  • Provide security advisory and consultancy to IT projects
  • Undertake security projects and activities that address IT Risks
  • Be aware of latest industry standards, regulatory requirements and the potential impacts to IT policies, standards, and procedures

Requirements

  • Minimum 5 years’ experience in IT Security, Risk and Compliance
  • Knowledgeable in security standards or regulations such as NIST, ISO 27001, SOC2, CCOP (SG), PDPA (SG), GDPR(EU), MPLS(CN), Security by Design
  • Technical know-how and experienced in solutions such as GRC Tool such as RSA Archer
  • Security related experience such as hardening, control measures in Operation System like Windows, Unix, Linux environment
  • Vulnerability Assessment and Application Testing Tool such as Tenable
  • Cloud compliance such as Azure Defender for Cloud, CSPM
  • Certifications such as CISA, CISM, CISSP, CCSK, CRISC will be an added advantage
  • Independent worker with initiatives, positive attitude, and team player
  • Good analytical skills and attention to details
  • Good verbal and written communication
  • Planning and organizational skills
  • Presentation skills