Security Assessor (Information Security & Data Analytics)

The candidate will be responsible for assessing the security performance of sites and facilities, tracking security programs and operations, and executing tactical initiatives set forth by the Regional Security Manager. The position will reside in Singapore.

The ideal candidate has a proven record of:

• Conducting Security Architecture Review and Testing on Cloud and Emerging Technologies.
• Assessing physical and logical security implementations in large-scale, globalized, multi-lingual business environments.
• Providing clear and detailed Risk Assessment and Remediation guidelines for business owners.
• Manipulating and presenting large datasets to derive security insights and drive decision-making.
• Researching security best practices, trends, and vulnerabilities, and driving remediation associated with third-party vendors.
• Collaborating with cross-functional teams to improve overall security posture.

• Exceptional communication and relationship-building skills.
• Ability to evaluate firewalls, VPNs, encryption protocols, MDM, and other security measures.
• Experience in security risk assessments, security audits, and compliance reviews.
• Expertise in data analytics and visualization to support security assessments.
• Ability to design sustainable risk mitigation strategies and define associated performance metrics.
• Active participation in security awareness programs.
• Excellent, practical understanding of enterprise risk management frameworks and international security standards.
• Proven project management and collaboration skills.
• Experience implementing physical and logical security technologies, industry-recommended practices, and security and risk frameworks.

• B.S. in Information Technology, Computer Science, or Engineering with an emphasis in Information Security or equivalent experience.
• 5-8 years of experience in Information Security assessment, audit, or remediation.
• Proficiency in working with large datasets, security analytics, and visualization tools (e.g., SQL, Python, Power BI, Tableau).
• Relevant certifications such as CISSP, CISA, CISM, GSEC, CRISC, CSPM, or PMP.
• Understanding of system, network, storage, and device technologies.
• Hands-on experience with security and risk frameworks (ISO27001, NIST, IETF, PCI DSS).
• Personal leadership traits such as self-accountability, priority management, and ownership of tasks.
• Ability to work within various cultural settings and independently meet fast-moving deliverables.