Title:  Cybersecurity Auditor

Responsibilities:

Provide professional services in the following in customer environments:

• Cybersecurity Audit: Support the planning and implementation of cybersecurity audit engagements by coordinating with clients, gathering audit evidence, and delivering clear reports with actionable recommendations. Cybersecurity Security-by-Design
• Cybersecurity governance and risk assessment
• IT/OT critical systems controls analysis
• Cyber maturity of IT security programmes
• Data security management

As part of professional services

• Perform gap analysis and cyber governance assessment against policies/standards such as CCOP, CP8, IM8, NIST, ISO, IEC62443 etc
• Provide advisory and recommendation with mitigation measures
• Assist in measuring the effectiveness of cybersecurity and privacy programmes
• Review cybersecurity frameworks, information/cyber security policies, processes or procedures.
• Prepare and present reports to customer
• Engage in Pre-Sales consultancy, including delivering business proposals and presentations
• Lead and manage projects when required

Requirements:

• Minimum of 5 years of cybersecurity audit and/or IT/OT audit experience is mandatory.
• Possession of the Certified Information Systems Auditor (CISA) certification, or successful completion of the CISA exam, is mandatory.
• Proven experience in external cybersecurity compliance audits against national/industry codes of practice (e.g., CCoP, CP8, IM8, ISO, IEC), beyond internal IT audit.
• Holding additional certifications such as CRISC, CISM, CISSP, or equivalent, to demonstrate broader cybersecurity experience beyond audit, is preferred.

Work location: Jurong East