Total 2 information analyst job vacancies in d03 queenstown tiong bahru

Job Summary:

We are seeking a highly skilled IT Security Officer to manage the security of our SaaS solutions, ensuring they meet industry standards for confidentiality, integrity, availability, and accountability. The ideal candidate will be responsible for developing security policies, conducting security assessments, coordinating incident response, and maintaining security documentation for our SaaS offerings. This role involves close collaboration with customers, SaaS providers, and external vendors to manage and mitigate security risks, ensuring a secure and compliant environment for all parties involved.

Key Responsibilities:

• Coordinate with external vendors and collaborate with customers and SaaS providers to conduct IT Security Risk Assessments. Identify security threats, assess risks, and propose mitigation strategies for approval by the customer.
• Coordinate the handling of security incidents, ensuring a timely response and resolution. Maintain a robust incident response process and documentation.
• Manage and coordinate regular security audits, vulnerability scans, and penetration tests. Consolidate findings, ensure proper remediation, and provide feedback to stakeholders on risk mitigation efforts.
• Maintain and update all security-related documentation, including policies, procedures, standards, and best practices. Ensure compliance with security frameworks such as ISO/IEC 27001, ISO/IEC 27018, SOC 2 Type 2, and CSA-STAR (Level 2).
• Continuously monitor the security posture of the SaaS solution and related ICT systems. Provide regular reports on security risks and mitigation actions to stakeholders and customers.
• Oversee the remediation of security vulnerabilities identified during security assessments, ensuring that appropriate actions are taken to address risks in a timely manner.
• Provide clear, concise security reports and recommendations to customers, ensuring they understand the security posture of the SaaS solution and any risks or issues that need attention.
• Take on ad-hoc security tasks as required to address emerging risks or assist with specific security projects or initiatives.

Qualifications:

• Minimum of 3 years of experience in IT security, particularly in enterprise systems, cloud infrastructure, or SaaS environments.
• A current professional information security certification (such as CISSP, CISM, CRISC, CGEIT, GSE) or equivalent is highly desirable.
• In-depth knowledge of IT security management and governance, risk assessment, incident response, vulnerability assessments, penetration testing, and security audits.
• Familiarity with international security standards and frameworks such as ISO/IEC 27001, ISO/IEC 27018, CSA-STAR, SOC 2 Type 2, NIST, and CIS.
• Strong interpersonal, written, and verbal communication skills, with the ability to explain complex security concepts to non-technical stakeholders.
• The position requires the candidate to be based locally.
• Strong problem-solving skills and the ability to make decisions under pressure.
• Proven ability to work effectively with cross-functional teams and external vendors.
• Attention to detail and a commitment to maintaining the highest standards of security.

Key Responsibilities

• Manages and supervises the MIS Engineers to handle the SOP of all End User Computing, Infrastructure Services (AD, DNS, DHCP Servers/Virtual Machines, Storage, Backup, Security, Network etc.) and Application systems (Navision, O365, and Cloud systems AWS, Azure, VMWare, BMC Remedy, which AsiaPac utilizes)
• Ensures development and training of staff on relevant best practices in service management and personal development.
• Monitors the achievement of performance objectives through leading and lagging metrics along with work assignments to ensure adherence to quality, end user satisfaction and timelines with continual improvement.
• Develop and maintain broad knowledge of company’s’ business and technology requirements and needs
• Develop and maintain system plan including operational requirements, budget requirements and schedules
• Develop and implement MIS policies, SOP to ensure stable, secured business operations inclusive of lifecycle of MIS i.e. software and hardware, operations
• Recommend and implement new technology solutions to improve productivity.
• Management of any services operational interactions with 3rd parties both internal and external
• Work closely with relevant teams to define roadmap, monitor and manage the performance as per the SLA's and performance indicators set
• Work closely with cross-functional teams and vendors to identify opportunity to improve services
• Work closely with all technical group to on-board the new governance for operations management, service management and performance management i.e. Systems, processes, improvements, aligned metrics, compliances

Qualifications/Experience/Knowledge

• Degree or equivalent
• At least 8 years of IT experience
• 5 in Infra management and operations
• 3 in people management
• Solid experience in ITIL and Service Management
• Preferably must have set up a service management function previously for multiple customer environments
• In-depth knowledge of escalation procedures, incident management, and other disciplines related to service delivery
• Technical hands on of IT lifecycle management (EUC, DC/Cloud Services)
• Technical hands-on with infra stacks i.e. desktops/laptops/devices, servers
• Technical hands-on with Windows OS, Servers, Storage, Network, Cloud i.e. AD domain management/modifications, Certificates management, DNS, VPN, LAN/Wifi configurations, Backup
• Technical knowledge and hands-on with Applications systems e.g. BMC Remedy, O365, VMware, Navision,
• Knowledge of IT lifecycle management
• Knowledge of ITSM - Incident Management, Problem Management, Change Management, Asset Management, Patch Management
• Strong problem-solving skills and able to prioritise and manage multiple tasks
• Strong interpersonal and stakeholder management skills with ability to coordinate between technical and business teams
• Ability to efficiently understand client organizations and their business model and to tailor relevant processes to privacy requirements.
• Readiness to demonstrate a proactive attitude
• Multi-customers support in a site or data center experience
• ITIL Certification