IT & Cybersecurity Executive

Job Summary

We are seeking a skilled and experienced IT & Cybersecurity Professional to join our team in Singapore. The successful candidate will be responsible for managing and securing our organization's IT infrastructure, including networks, systems, and applications. This role involves ensuring the overall security and efficiency of our IT operations while protecting against cyber threats.

Key Responsibilities:

• IT Infrastructure Management: Assist in the design, implementation, and maintenance of the organization's IT infrastructure, including servers, networks, and cloud services.
• Cybersecurity Operations: Assist in implementation and management of security measures to protect IT systems and data from cyber threats, including firewalls, intrusion detection systems, and antivirus solutions.
• Vulnerability Assessment & Penetration Testing: Perform regular vulnerability assessments using automated tools and manual techniques to evaluate the security posture of the organization. Conduct penetration testing on networks, systems, and applications to identify security weaknesses and vulnerabilities.
• Network Security: Ensure the security and integrity of the organization's network by monitoring traffic, identifying vulnerabilities, and implementing necessary updates and patches.
• Incident Response and Management: Understand the use of MDR, respond to security incidents, conduct investigations, and implement remediation measures to minimize impact and prevent future occurrences.
• User Access Management: Manage user access controls and permissions to ensure data confidentiality and compliance with security policies.
• Security Policy Development: Develop, implement, and enforce IT security policies, procedures, and guidelines to ensure compliance with industry standards and regulatory requirements.
• Compliance and Audits: Ensure compliance with relevant laws, regulations, and standards (e.g., PDPA, ISO 27001) and prepare for internal and external audits.
• System and Application Security: Perform regular security assessments of systems and applications, identifying and mitigating risks.

Qualifications and Experience:

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field.
• Relevant certifications such as CEH, OSCP, or equivalent.
• Proven experience in IT and cybersecurity roles, with a good understanding of IT infrastructure, security principles, protocols, and technologies.
• Basic understanding of penetration testing methodologies and tools (e.g. Metasploit, Burp Suite, Nmap).
• Familiarity with common security vulnerabilities and attack vectors (e.g., OWASP Top Ten).
• Proficiency in security tools and technologies such as firewalls, IDS/IPS, SIEM, and endpoint protection.
• Knowledge of regulatory requirements and standards such as PDPA, ISO 27001, and NIST.
• Strong analytical, problem-solving, and decision-making skills.
• Excellent communication and interpersonal skills.
• Ability to work independently and as part of a team in a fast-paced environment.

Preferred Skills:

• Knowledge of network protocols and services (e.g. TCP/IP, DNS, HTTP).
• Knowledge of scripting languages (e.g., Python, PowerShell).
• Experience with cloud platforms (e.g., AWS, Azure, GCP).
• Experience with virtualization technologies (e.g., VMware, Hyper-V).