Position Description

Information Security Specialist
Job Code 19656
Division GMP TECHNOLOGIES (S) PTE LTD (EA Licence:11C3793)
Job Placement Location Singapore
Apply Now

On behalf of our Client who is a leading global manufacturer of semiconductor, FPD and PV production equipment, we are sourcing for an Information Security Specialist.

 

The Security Specialist will be the process owner of all assurance activities related to the confidentiality, integrity, availability and agility of the company’s information assets, systems, services, and facilities in compliance with the organisation's information security policies.



Job Scope:

  • Develop, implement, and monitor a strategic and comprehensive enterprise information security program for the company, which also aligns with the goals and objectives of the global Information Security Department
  • Liaising with management, business users and the Information Systems Department to understand business goals, priorities, and information needs, and recommending information security practices and solutions in line with local and global business requirements
  • Providing consultancy across the business to ensure relevant and appropriate information security controls are applied to ensure both the departmental and business objectives are met
  • Provide leadership to the company’s information security organisation
  • Managing the development and delivery of information security standards, best practices, architecture, and systems to ensure information system security across the enterprise
  • Partner with business stakeholders across the company to raise awareness of security risk management concerns
  • Keep abreast of the current security threat landscape and provide relevant and up to date guidance on proposed information security risks to the business, including guiding and training colleagues to increase skill sets and knowledge
  • Assist in the management of all projects in the company’s global information security programme, provide input and analysis at appropriate stage-gates of projects including planning and implementation of the Information Security Committee and Information Security Management Cycle (PDCA) Promotion
  • Responsible for consulting with senior management, and the global information security response team in times of a cyber or information security crisis to ensure that the crisis is managed properly, both internally and externally
  • Analytical and problem-solving abilities that lead to recommending, designing, testing and delivering security solutions based on analysis and business requirements
  • Provide senior management and the global Information Security Department with regular reports regarding information security issues
  • Advise senior management of changes in the technical, legal and regulatory arenas affecting information security and cybercrime
  • Conduct regular security reviews to ensure that risk controls are functioning correctly and that use of the company’s systems and processes is conforming with security standards (e.g., NIST)

 

Job Requirements

  • Degree in Computer Science/Information Technology, Computer Engineering or its equivalent
  • A proven track record of 5 years or more implementing information security practices within a large, multi-national and diverse organization, including experience of implementing information security within cloud-based environments
  • Significant and demonstrable experience of building control/compliance frameworks from the ground-up
  • Recognised Information Security qualifications (eg. CISA, CISM, CISSP, CRISC, GCCC or CGEIT)
  • Substantial knowledge of application, data storage, platform, network and physical security, including the following: access management, security testing and operations as well as secure software development
  • Detailed understanding of NIST essential. In addition, an understanding of other security standards e.g., ISO27001, Cyber Essentials, CIS20, FFIEC is beneficial
  • Strong working knowledge of privacy frameworks and regulations (eg. GDPR)
  • Good knowledge and usage experience of technical measures for information security (FW / IPS / AV / EDR, etc.)
  • A solid background in designing and implementing information security solutions
  • Working knowledge of Microsoft operating environments
  • Strong information system operations skills (eg. servers, PCs, network, applications, databases)
  • Knowledge of Governance, Risk and Compliance are required
  • Internal audit qualifications and/or experience will be an added advantage

 

If you are keen in this role, you may also send us your updated CV in MS Words format to Christopher Wong (R1104673) at  christopher.wong@gmprecruit.com for review and we will arrange for a convenient time to speak more.


We regret that only shortlisted candidates will be notified.


GMP Technologies (S) Pte Ltd | EA Licence: 11C3793 | EA Personnel: Christopher Wong | Registration No: R1104673

Back Apply Now