Careers PDF Print E-mail

Information Security is incomplete without you.

Test early, be aware and be secure.

Position:  Information Security Consultant (IT Audit)

 

Responsibilities:

Candidate shall provide the following IT Audit Services:

 

Audit of IT establishments or IT organisations – 

Examples of such audits include:

  • IT Governance/ COBIT/ ISO17799 audits,
  • IM8/SGNET audit;
  • IT Procurement and contract audit;
  • Disaster Recovery Management Audit;

 

Audit of IT Systems and Services –

Examples of such audits include:

  • Integrated Systems audits (includes, reviewing of the Business processes and the related System/Information security controls, IT General controls etc);
  • Network security audits, vulnerability scanning and penetration audits;
  • Pre-implementation/Post implementation audits;
  • Optional Data Analytics services – Computer Assisted Auditing Techniques, Business intelligence analytics, Continuous auditing, etc;

 

Audit of IT Systems Development –

  • IT Pre-implementation audits;
  • Audits of specific IT topics.

 

 

Requirements:

 

1.  Possess CISA and/or CIA and/or CISSP and/or PCI QSA

2.  Preferably have years of IT and/or Business auditing experience with

  •      an established public accounting firm and/or
  •      an Internal Audit department of a listed company/ MNC/ government agency and/or
  •      an established IT Security service provider and/or
  •      an established PCI QSA company

3.  Senior Position will be considered for more experienced candidates. 

4.  Strong verbal and written communication skills in English. 

5.  Degree and/or Diploma in Information Security, Information Systems, Computer Science, Computer/Electronics Engineering, Information Technology or its equivalent. 

6.  Able to travel overseas in the Asia Pacific region. 

7.  Provide good customer service and quality deliverables. 

8.  Perform Mainly IT Audit, IT Security consulting services. 

9.  Determine scope of project and presentation of pre-sales proposal. 

10.  Delivering of projects and thereafter presentation of report with findings and recommendations to customers. 

11.  Able to work independently and also a team player. 

12.  Work closely with sales and business development team. 

13.  Establish long term business relationship with customers and partners.

 

 

 

Experience of the Candidate:

 

Candidate shall possess the required experience in IT Risk assessment and/or IT audit/security review and track record. 

Candidate shall have the competency in and experience in the relevant areas of audit expertise such as but not limited to the following:  

 

  • OS Environment -  Windows, Linux, Unix, AS400, IBM zOS, HP-UX, Google Android and etc; 
  • Network Environment –  TCP/IP protocol stack and network services, Network OS, Network devices, Cloud computing architecture, Vulnerability management system;  
  • Application Environment –  Enterprise application frameworks, Web server and application systems, Mobile devices’ applications and services, Content management systems, Database systems etc;   
  • Configuration Environment –   Application Security, Electronic Payment Systems, Smart Card Security, Web Technology, Database, Anti-Virus, Firewall, Access Control/ Authentication, Cryptography, Wireless Security etc; 
  • Others:  IT audit frameworks and methodologies, and ISO17799, COBIT, etc;

 

 

To apply:

 

Please submit your resume to the HR at This e-mail address is being protected from spambots. You need JavaScript enabled to view it  

All information is classified as confidential.

Only selected candidate will be notified.