Cybersecurity Engineer (GRC)

Job Description

Working Hours: Monday - Thursday (8.30am - 6pm), Friday (8.30am - 5.30pm) (Hybrid)

Location: One North

Salary: Up to $7,500 + AWS

We are seeking a dedicated and skilled Cybersecurity Engineer to join our team. The ideal candidate will play a critical role in enhancing our organization's cybersecurity posture through the creation of phishing content, conducting workshops, refining security documentation, and more. This position requires a proactive individual who can collaborate across teams, and drive initiatives to improve our security awareness and compliance efforts.

Key Responsibilities:

• Assess the probability of occurrence and the potential impact on business objectives.
• Ensure risk assessments are up-to-date, clearly documented, and aligned with organizational standards
• Recommend enhancements to controls based on risk trends, audit findings, and technological advancements.
• Develop and design phishing simulation campaigns to assess and educate employees.
• Analyse and report on the effectiveness of phishing simulations and identify areas for improvement.
• Assist in organizing and conducting cybersecurity workshops and roadshows to raise awareness across the organization.
• Develop engaging and informative presentations and materials for these events.
• Refine and update security-related documents, transforming complex information into clear and visually appealing infographics.
• Ensure all materials are up-to-date and aligned with current cybersecurity best practices.
• Review and update the Security Awareness Module to keep it relevant and comprehensive.
• Incorporate feedback and new threats into training materials.
• Conduct polls to measure compliance with cybersecurity policies and procedures.
• Prepare quarterly scorecards and polls to assess the status of risk assessments, account reviews, and log reviews.
• Follow up with relevant stakeholders to ensure timely submission of reports and compliance documentation.
• Tally and document the technology used for each system, including Active Directory (AD) synchronization, ingress and egress points, and interface types.
• Classify data for each ingress/egress interface, ensuring proper categorization and protection measures

Requirements:

• Diploma/Degree in Cybersecurity, Information Technology, or a related field.
• Minimum 5 years of relevant working experience in cybersecurity GRC team.
• Good knowledge of phishing techniques, cybersecurity principles, and compliance standards.

By submitting your resume, you consent to the collection, use, and disclosure of your personal information per ScienTec's Privacy Policy (scientecconsulting.com/privacy-policy).

This authorizes us to:

• Contact you about potential opportunities.
• Delete personal data as it is not required at this application stage.
• All applications will be processed with strict confidence. Only shortlisted candidates will be contacted.

Wong Siew Ting (Maeve) - R25127375

ScienTec Consulting Pte Ltd - 11C5781