Senior Cybersecurity Specialist

Responsibilities

1. Develop, implement, and maintain cybersecurity risk management frameworks aligned with ISO standards (e.g., ISO 27001).
2. Conduct enterprise-wide risk assessments, vulnerability assessments, and security audits.
3. Identify, analyze, and mitigate cybersecurity risks across systems, networks, and applications.
4. Ensure compliance with regulatory requirements, industry standards, and internal security policies.
5. Lead incident response activities, including investigation, containment, and post-incident analysis.
6. Collaborate with IT and business stakeholders to design and enforce security controls and best practices.
7. Perform third-party/vendor risk assessments and manage associated cybersecurity risks.
8. Develop and maintain security documentation, policies, procedures, and risk registers.
9. Provide security awareness training and guidance to internal teams to strengthen cybersecurity posture.
10. Monitor emerging threats, vulnerabilities, and cybersecurity trends to proactively enhance defenses.

Requirements

1. Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field.
2. Minimum 5 years of experience in cybersecurity, risk management, or information security roles.
3. ISO certification (e.g., ISO 27001 Lead Implementer/Auditor) is mandatory.
4. Strong knowledge of cybersecurity frameworks, risk assessment methodologies, and compliance standards.
5. Proven analytical, problem-solving, and stakeholder management skills with ability to work independently.

Clarence Khoh
R1552376