Your Browser is Not Supported
To ensure jobstore run smoothly, please use the latest version of the following supported browsers:
My client is a multinational fintech company with offices in overseas. Due to business expansion, they are looking for Senior Expert who is specialise in security on web and mobile app. You will join the crucial team and be one of key teammates to drive the Security Development Lifecycle (SDL) strategy. You are expected to focus on client threat detection products. This is a prime opportunity to join the innovative company, shaping the future landscape.
Responsibilities:
Qualifications:
It’s an excellent opportunity to join the expanding team in its rapid growth stage, please don’t hesitate to apply if it sounds like your next move. Please note that only shortlisted candidates will be contacted. Appreciate your understanding. Data provided is for recruitment purposes only.
About Us
Dada Consultants was established in 2017, with the commitment of providing the best recruitment services in Singapore. We are comprised of a dynamic head-hunting team dedicated to sourcing for highly competent professionals in the IT industry. We provide enterprises with customized talent solutions, and bring talents to career advancement.
www.dadaconsultants.com
EA Registration Number: R2197058
Business Registration Number: 201735941W. Licence Number: 18S9037
Official account of Jobstore.
JOB SUMMARY
· The Cyber Security Assessment (CSA) is an integral part of Cyber Security with an aligned goal to ensure secure by design as relates to any software we build or buy or connect to in the Bank. To that end the CSA needs to ensure all security controls related to security threats are being adhered to by projects and application development teams. As part of CSS, we work effortlessly in ensuring the Bank soundly meets its commitments to internal and external stakeholders and maintains an appropriate cyber security defence posture through as part of our 'Secure by Design' initiatives.
· The role is expected to be a chapter lead for Cloud and Container policy and control governance and implementation in the tools and services that we own and embed as part of the build pipeline and platform. The incumbent will provide direction to Security champions in ICS as well as federated security champions on which controls are most appropriate for Cloud and containers as well as define how best to initiate the control checks in the pipeline and platform. The role requires the ability to communicate and build relationships with technology product owners and support teams across geographies mainly ADO, AWS, Azure, SKE, CIO domains and other ICS control leads related to secure by design.
· The Lead, Principal Cyber Security Consultant needs to be a DevOps, Cloud and Container SME with institutional and industry knowledge. Ability to drive product development, security as policy coding requirements as well as influence security champions to #doTheRghtThing in their reviews. Coding capability is essential
RESPONSIBILITIES
Strategy
· Develop and implement a comprehensive strategy for security as code and policy as code practices, aligning with the overall ICS objectives
· Lead the adoption of automated security and compliance solutions across the development lifecycle
· Drive innovation in integrating security into CI/CD pipelines, facilitating a shift-left approach to security
Business
· Collaborate with key business stakeholders to understand business objectives, providing insights on how security as code can support these goals
· Translate business requirements into secure, scalable, and reliable security practices
· Foster a culture of security awareness and ensure security best practices are incorporated into business operations
Processes
· Establish and refine processes for integrating security tools and practices into the software development and deployment processes
· Develop and maintain policy-as-code frameworks to enforce security policies automatically within the infrastructure
· Ensure continuous improvement of security processes through regular review and incorporation of feedback mechanisms
People & Talent
· Conduct comprehensive risk assessments and enforce risk management policies to identify and mitigate potential security threats
· Develop metrics and reporting frameworks to monitor the effectiveness of security measures
· Liaise with the risk management team to integrate cybersecurity risk into the organizations overall risk profile
Risk Management
· Conduct comprehensive risk assessments and enforce risk management policies to identify and mitigate potential security threats
· Develop metrics and reporting frameworks to monitor the effectiveness of security measures
· Liaise with the risk management team to integrate cybersecurity risk into the organizations overall risk profile
Governance
· Ensure compliance with relevant ICS policies and, regulations and standards related to cyber security and data protection
· Establish governance frameworks for policy as code to ensure consistent application and enforcement of security policies across all assets being built on the central devops pipeline
Regulatory & Business Conduct
· Display exemplary conduct and live by the Group’s Values and Code of Conduct.
· Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
· Lead the DevSecOps Automation Cloud and Container Policy checks to achieve the outcomes set out in the Bank’s Conduct Principles
· Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.
Key Stakeholders
· ICS Control owners
· Cloud Platform
· ADO Engineering
· Security Architecture
· CIO Domains
Other Responsibilities
· Embed Here for good and Group’s brand and values in ICS-CS; Perform other responsibilities assigned under Group, Country, Business or Functional policies and procedures; Multiple functions (double hats);
Our Ideal Candidate
· 5+ years of experience in Information security, preferably in Banking and Financial services sector.
· 5+ years of hands-on experience on application/ infrastructure risk assessments, Along with 3 years of experience in implementation or management of security tools/ projects.
· Proven experience in leading security initiatives
· Subject matter expert in DevOps, AWS, Azure and Kubernetes especially EKS and AKS
· Familiar with policy as code
· Self-starter, capable of working without direction and able to deliver projects from scratch
· Full Software Development Lifecycle experience in a mature Continuous Integration and Continuous Delivery environment, probably as a developer
· Strong DevOps toolchain experience: ADO, Artifactory, Sonaqube, Nexus, Aqua
· Configuration and deployment tools experience – Ansible or Puppet
· Strong scripting skills – Python, Ruby, or similar; Perl .
· Breadth of knowledge – operating systems, networking, distributed computing
· Cloud deployment and systems management experience – AWS, Azure
· Container orchestration expertise – EKS, AKS
· Strong knowledge of UNIX and TCP/IP – understand strace and tcpdump output
· Bachelor’s Degree in engineering, Computer Science/Information Technology or its equivalent.
· CSPM, CISSP, nice to have
Role Specific Technical Competencies
· DevOps
· Cloud
· Containers
· Security
· Policy as Code
About Standard Chartered
We're an international bank, nimble enough to act, big enough for impact. For more than 160 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents. And we can't wait to see the talents you can bring us.
Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion. Together we:
· Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
· Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
· Be better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term
In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.
· Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations
· Time-off including annual, parental/maternity (20 weeks), sabbatical (12 weeks maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum
· Flexible working options based around home and office locations, with flexible working patterns
· Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
· A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning
· Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.
· Recruitment assessments - some of our roles use assessments to help us understand how suitable you are for the role you've applied to. If you are invited to take an assessment, this is great news. It means your application has progressed to an important stage of our recruitment process.
Visit our careers website www.sc.com/careers
Official account of Jobstore.
Introduction to the role:
Our mission is to give people the power to build community and bring the world closer together. Through our family of apps and services, we're building a different kind of company that connects billions of people around the world, gives them ways to share what matters most to them, and helps bring people closer together. Our global teams are constantly iterating, solving problems, and working together to empower people around the world to build community and connect in meaningful ways. Together, we can help people build stronger communities - we're just getting started.
Responsibilities
· Bring operational excellence to a team that handles a large volume of requests from law enforcement, and ensure that all requests are scrutinized and handled in strict accordance with applicable law, our terms of service, and our law enforcement guidelines.
· Review, analyze and process high volumes of incoming requests from law enforcement authorities and governments in the Region, as business need arises, with high quality, speed, and accuracy.
· Record and clearly articulate operational decisions ensuring compliance in line with policies and procedures.
· Implement high-quality and efficient processes and practices for maintaining and exceeding productivity and quality service level agreements.
· Willing and able to maturely work with sensitive issues that may include graphic content which may be considered offensive or disturbing.
Minimum Qualification
· Fluency in English is required. Additional language is a plus.
· Excellent verbal and written communication skills
· Strong attention to detail to ensure quality of work.
· Self-starter requiring minimal direction.
· Proven ability to analyze information to assess threat and risk.
· Proven ability to make effective decisions independently using good judgement and rationale.
· BA/BS degree and 2+ years of relevant operational experience.
· Experience prioritizing multiple functions and tasks while managing work time without compromising quality.
· General knowledge of the intersection of legal guidance, policy and free speech on the Internet (note that this is not a practicing attorney role).
· Knowledge of social media suite of products.
· Experience working independently and using good judgment.
· Experience with various computer systems, Internet technology and software.
· Focus on the APAC region.
We regret to inform that only shortlisted candidates will be notified / contacted.
For more information you can email Kenneth Kwok in our Singapore office on kenneth.kwok@teksystems.com quoting Job Reference Kenneth Kwok 541095
Job Reference: Kenneth Kwok 541095
EA Registration No: Kwok Yi Zhi Kenneth, R22109533
Allegis Group Singapore Pte Ltd, Company Reg No. 200909448N, EA License No. 10C4544
Official account of Jobstore.
We are a leading executive search firm representing a prestigious global banking institution. Currently, we are seeking a seasoned and dynamic professional to lead the Consumer Wealth Banking team, focusing on the Non-Resident Indian (NRI) Wealth Management segment. This leadership role, based in Singapore, is an excellent opportunity for an individual with a deep understanding of wealth management and a proven track record in team leadership within a multinational banking environment.
Requirements
Official account of Jobstore.
Responsibilities
• Understand the current system security measures and implement security enhancements in line with organizations goals and objectives
• Conduct regular system tests and audits by validating and verifying technical controls in minimizing the risk
• Good understanding of business requirements, identify key security requirements and articulate it to business effectively and efficiently in terms of actual risk and safeguards, risk management
• Good understanding of guidelines such as MAS TRM, ISO and NIST standards or equivalent
• Good knowledge on Security Incident Response and run book preparation for emerging and new threats, applying safeguards where possible to minimize the threat.
• Sound understanding on Ransomware, XSS, Injection and other similar attacks
• Participate in various business meetings to understand the entire data flow and recommend security solutions to mitigate the concerns/risks
• Good knowledge and understanding of encryption technologies (both symmetric and asymmetric algorithms) and its applications
• Participates in various compliance programs, audits the report and recommend to reflect the accurate security posture to make business decisions
• Establish and oversee a formal vulnerability and testing program.
• Oversee the patch cycle and ensure that patches are performed at regular intervals
• Participate in Account Recertification programs and be a key player to take ownership and sign appropriate forms necessary as security exceptions
• Liaise with Internal Audit, Corporate Compliance, Office of General Counsel and Risk.
• Conduct security campaigns to organization such as Phishing, Data Leakage, etc.
• Management to remediate new and outstanding issues; track security-related issues in the GRC system.
• Participate in design activities and provide various solutions to ensure security is not compromised at various phases of the program lifecycle
• Recommend and provide templates where possible for end users to assist in minimizing the security risks
• Train other staff and external clients as necessary.
• Manage, coach, lead and develop a small/mid staff of GRC personnel.
• Directly responsible for procedures and controls to assure compliance with applicable regulatory and legal requirements as well as good business practices.
• Establish and oversee formal risk analysis and self-assessments program for various Information Services systems and processes.
Requirements
• Degree/Degree in IT / Computer Science / related discipline with 12-15+ years of relevant experience in Cyber Security.
• Should have played Security Lead Role in Transformation and Operate program.
• Experience in industry frameworks such as ABS, SSAE, SOC2 etc.
• Good understanding of the following :
• Infrastructure and Network security, Cloud Security, Identity and Access Management, Privileged Management (CyberArk), Compliance with Banking Regularity compliance (BFSI), HIPAA, PCI and the NC Identity Theft law., Firewall security, IDS/IPS placement, SIEM tools, Wireless Security, End point security, Data Loss Prevention, Web Application Security, Threat Hunting/Threat Intel
• Familiarity with industry compliance and security standards including MAS TRM, HKMA, PCI DSS, ISO 27001 and NIST
• Working experience in Cyber Security SecOps
• Customer focused with strong communication, Strong written and verbal communication skills
• Able to multi-task and prioritize incidents & requests accordingly.
• Strong analytically with a natural ability to solve complex issues.
• Industry and Technology certifications such as CRISC, CISA, CISSP, CISM, CEH
• Excellent customer interfacing skills.
Licence No: 12C6060
Official account of Jobstore.
Job Title: Legal Associate
Location: Close to Chinatown
Job Type: Full-time, hybrid with flexibility for some remote work
Salary: $5,000 - $8,000
Responsibilities:
Qualifications:
Interested applicants, please email your resume to lilian@juhlerprofessionals.com.sg
Tan Li Lian
EA 01C3135
Reg R1100465
Official account of Jobstore.
Lead Associate, Cyber Security Engineer with a prominent financial company. This role will focus on cybersecurity operations in the AWS environment.
Requirements:
Business Reg No : 200611680D | Licence No : 10C5117 | EA Reg No : R2199023
Official account of Jobstore.
EPAM is a leading global provider of digital platform enginering and development services. EPAM has been expanding in Singapore since 2013 and delivering the best solutions to our customers. As a recognized leader, EPAM Singapore achieved Great Place to Work® Certification in 2023 and is committed to providing our team with inspiring careers.
You will have the opportunity to work with fellow talented technologists and accelerate your career by participating in our numerous upskilling, training, and certification programs. That is why EPAM Singapore was awarded Gold for Best In-House Certification Programmes in the Employee Experience Awards 2023 and Silver in the SkillsFuture Employers Awards 2022 for our efforts in championing employees' skills development and building a lifelong learning culture at the workplace. You can also look forward to developing holistically with the multiracial festivals and various wellness and cultural activities organized by our passionate colleagues here.
Here, we summarize the typical journey to finding a job within EPAM:
Not sure if you meet all the requirements? No problem. Let’s talk anyway and find out more.
It takes 1 min of application to start the journey with us. Apply now!
Official account of Jobstore.
As a Lead IT Consultant, you will play a pivotal role in ensuring the security and governance of our organization's IT landscape. Reporting to the Deputy Director, you will lead the IT Security team in developing and executing comprehensive security strategies. Key responsibilities include:
Requirements:
Interested candidate who wish to apply for the advertised position, please click on “Apply Now”. We regret that only shortlisted candidates will be notified.
Job Code: PEIF
EA License No. 01C4394
By sending us your personal data and curriculum vitae (CV), you are deemed to consent to PERSOLKELLY Singapore Pte Ltd and it’s overseas subsidiaries and affiliates collecting, using and disclosing your personal data to prospective employers/companies based in any country for purposes of evaluating suitability for employment, conducting reference checks, administering employment related services and such other purposes stated in our privacy policy. Our full privacy policy is available at www.persolkelly.com.sg. If you wish to withdraw your consent, please drop us an email to let us know. Please feel free to contact us if you have any queries.
Official account of Jobstore.
Take on a crucial role where you'll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the future of software security at one of the world's largest and most influential companies.
As a Lead Security Engineer at JPMorgan Chase within the Cyber Security and Technology Controls you are an integral part of team that works to deliver solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. As a core technical contributor, you are responsible for carrying out critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions.
Job responsibilities
• Executes creative security solutions, design, development, and technical troubleshooting with the ability to think beyond routine or conventional approaches to build solutions and break down technical problems
• Develop, configure, test and deploy a multitude of components of the firm’s SIEM platforms, leading with a site reliability engineering mindset
• Collaborate closely with multiple stakeholders to ensure timely and accurate ingestion of critical security operations data into the platform
• Work closely with SaaS vendor products to monitor and manage feature enhancements, system stability and performance.
• Provide technical guidance to the security operations team and/or lines of businesses if and when required
• Adds to team culture of diversity, equity, inclusion, and respect
Required qualifications, capabilities, and skills
• Bachelor’s Degree in Computer Science / Information Systems / Engineering or related disciplines
• Minimum 5 years of experience in the cyber security engineering field
• Skilled in planning, designing, and implementing a security analytics platform )
• Expert understanding of data management concepts in the context of a security analytics platform, including; ingestion, parsing and normalization
• Strong analytical and problem solving mindset with the ability to solve complex challenges
• Advanced in one or more programming languages or scripting languages
• Advanced understanding of agile methodologies such as Software Development Life Cycle, CI/CD, applicant resiliency, and security
Preferred qualifications, capabilities, and skills
• Experience effectively communicating with senior business leaders
• Experience leading an agile team of developer and skill in coaching developer on Agile methodology
• In-depth knowledge of the financial services industry and their IT systems
• Experience working within a large-scale or global enterprise
• Experience with both on-prem or cloud based SIEM solution
To apply for this position, please use the following URL:
https://ars2.equest.com/?response_id=0699a95f820224fc754ead3156961024
Official account of Jobstore.
Cyber Security Lead
Job Descriptions
You will lead to design, architect, review and implement customized cyber security assessments for client-based asset risk. Be involved with corporate policy compliance, conducting vulnerability assessment and mitigating risks which can help provide projects/organizations with more confidence about system stability and security.
Responsibilities:
Requirements:
We respect your privacy and all communication will be treated with confidentiality.
If you have meet the job requirements that we are looking for or wish to find out more on this role, please contact us or apply in-confidence to us with your updated resume in MS Words format to : kelvin@starcareerconsulting.com
*Only shortlisted candidate will be notified.
Lee Soo Hong (Reg. No. R1872625)
STAR CAREER CONSULTING PTE. LTD (EA License: 20C0353)
Official account of Jobstore.
A rapidly expanding system integrator with eight years of operations in Singapore, emerged as a spin-off from a seasoned management team with over 50 years of collective experience in managed services deployment. Originating from a well-established telco player, this dynamic entity has successfully served end-user customers ranging from government agencies to significant private tenders. Specializing in deploying comprehensive solutions, they cover a broad spectrum, including infrastructure, network security, cloud storage, SD-WAN, MPLS, and mobile satellite solutions.
Highlights:
As a Junior HSM Engineer, you will play a vital role in maintaining, administering, and supporting our Cryptography Key Management and Hardware Security Module (HSM) operations. You will also assist in Windows, Unix, and AS400 operating system security tasks. This position offers an excellent opportunity for those who are passionate about security and have some prior experience or relevant education in the field.
Key Responsibilities
Requirements
Interested applicants please write to shc@juhlerprofessionals.com.sg along with your current remuneration details, notice period and expected salary. Only Singaporean welcome to apply.
Reg R1325699
EA 01C3135
Official account of Jobstore.
Cyber Security Lead
Job Descriptions
You will lead to design, architect, review and implement customized cyber security assessments for client-based asset risk. Be involved with corporate policy compliance, conducting vulnerability assessment and mitigating risks which can help provide projects/organizations with more confidence about system stability and security.
Responsibilities:
Requirements:
We respect your privacy and all communication will be treated with confidentiality.
If you have meet the job requirements that we are looking for or wish to find out more on this role, please contact us or apply in-confidence to us with your updated resume in MS Words format to : kelvin@starcareerconsulting.com
*Only shortlisted candidate will be notified.
Lee Soo Hong (Reg. No. R1872625)
STAR CAREER CONSULTING PTE. LTD (EA License: 20C0353)
Official account of Jobstore.
Relevant Work Experience: Minimum 5+ years of experience as a Enterprise Cloud Security Architect
Primary Skills
Official account of Jobstore.
Recruiting for seasoned Lead the IT Security talent to manage and all IT security-related matters. You will act as Subject Matter Expert (SME) in security technologies, and provide knowledge sharing and technical assistance to other team members.
· Actively involved in developing and carrying out IT security policies and plans.
· Conduct security review of existing systems on their ability to provide adequate defence against the latest security threats.
· Conduct vulnerability assessments and penetration tests for all critical IT systems.
· Drive and conduct IT Security awareness and training like security talks, phishing simulation and incident response exercises.
· Manage and investigate all cyber security alerts and notifications from cyber surveillance and threat intelligence to identify root cause and impact for effective containment, mitigation and future improvements.
· Manage and investigate all IT Security incidents to identify root cause and impact for effective containment, mitigation and future improvements.
· Engage IT project teams throughout the SDLC to identify and prioritize applicable security controls and provide guidance on how to implement these controls.
· Perform, monitor, track and review with IT Governance team and other IT teams on all information systems and infrastructure and security.
· Maintain and enhance the Information Security risk assessment methodology.
· Develop appropriate risk treatment and mitigation options to address security risks identified during security review or audit.
· Define security configuration standards for platforms and technologies.
· Detailed reporting on IT security initiatives, scans, incidents to SIT management and statutory reporting to one of the ministry of government.
Preferred skills and key Requirements
· Bachelor's degree in Computer Science, of Information Technology or equivalent, with minimum 8-10 years' experience in Information and Cyber Security.
· Good knowledge and experience with cloud security of Amazon Web Services (AWS), Microsoft Azure and SaaS solutions, security standards and frameworks like NIST, ISO27001, MTCS, CSA Security-by-Design (SBD) and Personal Data Protection Act (PDPA) is essential; familiarity with Government IM and PCI-DSS is desirable.
· Other relevant certifications such as CISSP/CISA/CISM, CREST, CEH, CHFI would be advantageous.
Interested candidate, please send your most updated resume to jyoti.kumari@persolkelly.com
We regret that only shortlisted candidates will be notified.
EA License No.: 01C4394
EA Registration No. R1873450
By sending us your personal data and curriculum vitae (CV), you are deemed to consent to PERSOLKELLY Singapore Pte Ltd and its affiliates to collect, use and disclose your personal data for the purposes set out in the Privacy Policy available at https://www.persolkelly.com.sg/policies. You acknowledge that you have read, understood, and agree with the Privacy Policy.
Official account of Jobstore.