Senior Manager, Client-facing Information Security Officer

Singtel
Singapore
SGD 80,000 - 100,000
Job description

Senior Manager, Client-facing Information Security Officer

Singtel

The Singtel Group, Asia's leading communications group provides a diverse range of services including fixed, mobile, data, internet, TV, infocomms technology (ICT) and digital solutions.

NCS is a leading technology services firm that operates across the Asia Pacific region in over 20 cities, providing consulting, digital services, technology solutions, and more. We believe in harnessing the power of technology to achieve extraordinary things, creating lasting value and impact for our communities, partners, and people. Our diverse workforce of 13,000 has delivered large-scale, mission-critical, and multi-platform projects for governments and enterprises in Singapore and the APAC region.

Security, privacy, and operational resilience are critical issues facing all organizations today. We are currently looking for qualified and capable security-minded individuals to be the driving force managing security governance throughout the lifecycle of client projects. As a Senior Manager, Client-facing Information Security Officer, you will work as the interface between NCS Application and NCS Corporate HQ-wide cybersecurity leadership and the practice, driving organization-wide cyber security strategy, implementation, and ensuring client and practice requirements are fed back into the continual improvement of relevant strategy, policies, and standards.

What will you do?

  • Drive the implementation of NCS cybersecurity, data protection, and privacy policies, standards, and processes within the practice. You will work to continually improve the security posture of projects through proactive risk management and the establishment of a broad range of cybersecurity controls.
  • Provide direct support to colleagues to ensure cybersecurity is addressed throughout the project delivery lifecycle, from application design, application architecture patterns, testing, vulnerability, and security review.
  • Act as a single point of contact and escalation for LOB application cybersecurity incidents, ensuring timely identification, remediation, and lessons learned.
  • Manage the security SLA governance and provide practice-level cybersecurity reporting, metrics, and forecasting to leadership.
  • Responsible for information security, data protection, privacy, GRC, and audit requests for the practice, acting as a single point of contact on relevant client security assessment and audits execution.
  • Contribute to the definition of the client-specific security baseline. Consult and advise internal and external clients about security topics and support the opportunity management process by providing subject matter expertise and support.
  • Help win client business by providing cybersecurity assurance to RFIs, RFPs, proposals, contract drafting, security questionnaires, workshops, and other client due diligence processes.

The ideal candidate should possess:

  • At least one industry-recognized security certification such as Certified Information Security Management (CISM), Certified Information Systems Security Professional (CISSP), CEH, or CASP.
  • 5+ years of experience in information security management specifically in application secured design and patterns (Cloud, Serverless, Containers), application and API security testing methodologies.
  • Degree/Diploma or higher in Computer Science, Information Systems or equivalent.

Technical / Professional Skills

  • Good working knowledge of security risk management, security governance framework, and compliance.
  • Understanding of information security principles, IM8, PDPA, ISO 27001 controls, Center for Internet Security (CIS) controls, Cloud Controls Matrix (CCM) controls.
  • Experience with application security, security technologies, and automation tools.
  • Experience carrying out application penetration testing, vulnerabilities scanning, and security assessment, and security incident management with stakeholders.

Non-Technical / Soft Skills

  • Senior stakeholder management and working across various parts of the organization.
  • Team player with good interpersonal and influencing skills.
  • Strong communication skills, both written and verbal.

We are driven by our AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity—and we seek individuals who embody these values in both their professional and personal lives. We are committed to our Impact: Valuing our clients, Growing our people, and Creating our future.

Together, we make the extraordinary happen.

Learn more about us at ncs.co and visit our LinkedIn career site.

Get a free, confidential resume review.
Select file or drag and drop it
Avatar
Free online coaching
Improve your chances of getting that interview invitation!
Be the first to explore new Senior Manager, Client-facing Information Security Officer jobs in Singapore