Information Security Analyst (AVP)

The Information Security Analyst will be responsible for supporting the execution of the Information Security strategy for a multinational investment bank and financial services company.

The ideal candidate:

• Experience in Third Party Management processes
• Solid understanding of Risk Management principles
• Experience in reporting including definition of metrics and data sources
• Experience with ISO27001 standard
• Additional general understanding of current agencies and industry standards, best practices, and/or frameworks i.e.: NIST, ENISA, ISO27001, SOC2, PCI, MITRE ATT&CK etc
• Experience with Shared Assessment Program (SIG), Cloud Security Alliance(CSA) Cloud Controls Matrix CCM/CSA Consensus Assessments Initiative Questionnaire (CAIQ), and methodologies or questionnaires

Key responsibilities:

• Conducting Information Security Third Party assessments as part of the overall Third-Party Management process
• Identification of security gaps against Company's information security control framework
• Performing Gap Analysis of Third Party Info Security implementations against the control standards
• Explanation of potential remediation steps for identified risks
• Constant communication with involved stakeholders (within in the Bank and outside)

Business Registration Number : 200611680D | Licence Number : 10C5117 | EA Registration Number : R1659662

If this job isn't quite right for you, but you know someone who would be great at this role, why not take advantage of our referral scheme? We offer SGD1,000 or SGD350 in shopping vouchers for every referred candidate who we place in a role. Terms & Conditions Apply. https://www.ambition.com.sg/refer-a-friend