GRC, Governance, Risk and Compliance, Technical Governance

GRC, Governance, Risk and Compliance, Technical Governance (Associate Analyst/Analyst)
Budget for this role SGD
The Role (Associate Analyst/Analyst)
Our team is made up of Information Security professionals coming from all types of professional and personal backgrounds - we have a unique, international environment to grow in.
We offer benefits to help you in your career progression such as training and certification opportunities, flexible hours, a great workplace environment, and a culture focused on helping you become a T-shaped consultant while working in a technically strong, diverse team.
Our Strategy, Governance, Risk and Compliance Consultants work with key stakeholders to drive the design, development and implementation of strategies, policies and standards around cybersecurity. They help to ensure cybersecurity is aligned and supports the business objectives of the organisation.
Job Responsibilities:
Perform technical evaluation on IT systems across both cloud and traditional environments;
Assist in reviewing network architecture diagrams and designs, helping to identify basic security principles, potential misconfigurations, or areas for improvement;
Support the assessment of network device configurations (e.g., routers, switches, basic security devices) against documented security standards and best practices by collecting information from clients and performing analysis;
Assist in reviewing firewall rule sets and configurations, identifying policy inconsistencies or basic security concerns;
Present and report on cybersecurity items to key organisational stakeholders;
Work closely with stakeholders to managing cybersecurity for the organisation;
Work on specific verticals such as Technical Governance, and GRC Strategy;
Qualifications and attributes:
Working experience involving network configuration, firewall rulesets, or OS hardening would be a significant advantage.
Understanding of network concepts (TCP/IP, routing, switching), operating systems (Windows, Linux), and fundamental cybersecurity principles.
Experience in implementing/operating security products (e.g., Firewalls, PIAM, SIEM) is advantageous.
Understand how network and system configurations impact security.
Clear and concise written and verbal communication skills, crucial for documentation and asking clarifying questions.
Team player and ability to work independently when the need arise.
Professional Industry / Cloud Certifications (e.g. AWS, Azure, GCP, certifications).
Proficiency with Chinese (Native) to work with Chinese speaking clients is advantageous.
What\'s in it for you?
Work in a dynamic and modern company with a great culture and great people;
Increased responsibilities in a client-facing role to boost your career. We will support you but not hide you behind a Managing or Principal Consultant;
Get exposure to a wide range of businesses across all industries;
Grow your skillset across the entire engagement lifecycle;
Flexible work arrangements when practical;
Training and certification opportunities;
Support for your charitable or technical causes you may lead outside or work;
Opportunities to travel
The Team
Our team is made up of Information Security professionals coming from all types of professional and personal backgrounds - we have a unique, international environment to grow in and believe in having fun at work. We offer benefits to help you in your career progression and in addition, we have training and certification opportunities, flexible hours, a great workplace environment, a culture focused on helping you become a balanced consultant while working in a technically strong and diverse team.
We have a fresh and direct approach to working with our clients, breaking away from the status quo - and we are well respected for that.
About Sekuro
Sekuro is an independent cybersecurity consulting firm and we have been operating for more than 7 years. We have offices located in 6 different cities in Australia, with 3 offices in South East Asia.
We offer Cybersecurity services ranging from Offensive Security to Strategy, Governance, Risk and Compliance services, including ISO27001 implementation and adoption of other International Standards for our clients. We are ISO27001 certified, CREST Accredited and a PCI QSA company. We are a registered Services supplier for both the Singapore Government as well as the Australian Government.
Seniority level
Associate
Employment type
Full-time
Job function
Information Technology
Industries
Computer and Network Security
#J-18808-Ljbffr