Cyber Security Consultant

Thales is a global technology leader trusted by governments, institutions, and enterprises to tackle their most demanding challenges. From quantum applications and artificial intelligence to cybersecurity and 6G innovation, our solutions empower critical decisions rooted in human intelligence. Operating at the forefront of aerospace and space, cybersecurity and digital identity, we're driven by a mission to build a future we can all trust.

In Singapore, Thales has been a trusted partner since 1973, originally focused on aerospace activities in the Asia-Pacific region. With 2,000 employees across three local sites, we deliver cutting-edge solutions across aerospace (including air traffic management), defence and security, and digital identity and cybersecurity sectors. Together, we're shaping the future by enabling customers to make pivotal decisions that safeguard communities and power progress.

JOB OBJECTIVE

CPS Asia provides a range of cybersecurity services and solutions to our regional clients with a strong focus for national critical infrastructure. We are seeking a Cybersecurity Consultant to join our team and work with our clients in the region.

The ideal candidate should have good experience in IT systems and architecture. The candidate must be able to identify and mitigate potential cyber risks and threats.

The role will require someone that this is a problem solver, determined and enthusiastic. They will bring experience of implementing a wide variety of cybersecurity products and solutions within large complex system development. They will have the ability to apply cybersecurity and principles to organisational requirements and be able to identify and remediate critical infrastructure systems that were designed without system security considerations.

The successful candidate will enjoy a rewarding role full of new challenges and be part of a company that provides highly complex solutions in the most critical operational environments where robust safety and resilience standards are applied.

ROLES & RESPONSIBILITIES

• Conduct security assessments of clients IT environment to identify vulnerabilities and risks.

• Independently conduct requirement gathering sessions

• Independently conduct host configuration reviews, vulnerability assessments, penetration tests, threat and risk assessments and its corresponding threat models

• Develop and implement strategies to protect systems from cyber threats, including malware, ransomware, and unauthorised access.

• Work with clients to implement security controls and measures to reduce the risk of cyber-attacks.

• Provide technical guidance and support to clients IT teams on cybersecurity best practices.

• Work with the clients IT teams to integrate systems with enterprise-level cybersecurity measures and solutions.

• Keep up to date with emerging cyber threats and trends in the cybersecurity industry.

• Provide recommendations on cybersecurity policies and procedures for clients.

REQUIREMENTS

• At least 8 years of experience in cybersecurity, with a focus on audit and consulting activities

• At least 8 years of experience in infrastructure, application, network pentesting

• At least 8 years of experience in using assessment tools such as Nessus, Burp Suite, NMap etc

• Knowledge of cybersecurity standards and frameworks, such as IM(ICT&SS), CCoP and NIST.

• Strong analytical and problem-solving skills.

• Excellent written and verbal communication skills.

• Ability to work independently and as part of a team.

• Willingness to travel to client sites as required.

• Preferred experience working in the Aviation, Transportation, Manufacturing, and/or Energy sectors.

QUALIFICATION, CERTIFICATION & EDUCATIONAL REQUIREMENTS

• Bachelor's or Master's degree in Computer Science, Cybersecurity, or a related field.

• CREST Registered Tester (CRT)

• CREST Simulated Targeted Attack and Response (STAR)

• CREST Certified Web Application Tester (CCT APP)

• CREST Certified Infrastructure Tester (CCT INF)

• Offensive Security Certified Professional (OSCP)

• Offensive Security Certified Expert (OSCE³)

The below certifications will be advantageous

• Certified Information Systems Security Professional (CISSP), or

• Certified Information Security Auditor (CISA)

At Thales, we're committed to fostering a workplace where respect, trust, collaboration, and passion drive everything we do. Here, you'll feel empowered to bring your best self, thrive in a supportive culture, and love the work you do. Join us, and be part of a team reimagining technology to create solutions that truly make a difference - for a safer, greener, and more inclusive world.