Cybersecurity Risk Manager
4 days ago
We're not just building brands at L’Oreal, we're shaping how the world experiences beauty (and it takes a lot of cool jobs to do it).
Intrigued? Keep reading, this might be the opportunity you've been searching for.
**A Day in the Life**:
As a Cybersecurity Risk Manager, reporting to the North Asia & SAPMENA GRC Lead, you will be crucial in safeguarding L'Oréal's information assets and ensuring compliance with cybersecurity regulations. This role offers a unique opportunity to contribute to a global organization committed to innovation and excellence.
Payment Card Industry Data Security Standard (PCI DSS) program implementation
- Drive the implementation and maintenance of PCI DSS compliance end-to-end.
- Develop and maintain documentation related to PCI DSS controls, policies and procedures.
- Collaborate cross-functions to ensure alignment on PCI DSS compliance efforts.
- Manage and track remediation efforts for any identified gaps or vulnerabilities.
- Develop and implement risk mitigation strategies to address identified risks.
- Provide training and awareness programs to employees on PCI DSS requirements and their responsibilities.
- Monitor and report on PCI DSS compliance status to the relevant stakeholders and management.
Security Awareness
- Drive and support the development, implementation, and continuous improvement of the security awareness program.
- Conceptualise and prepare for execution of security awareness program e.g. awareness events, seminars, webinars, etc
- Collaborate with cross-functional teams to promote cybersecurity awareness and best practices.
**Risk Assessment and Management**:
- Identify and assess cybersecurity risks across the organization.
- Develop and implement risk mitigation strategies and controls.
- Monitor and report on the effectiveness of risk management efforts including establishing key risk indicators (KRI) and key control indicators (KCI) for tracking.
- Maintain a risk register to reflect the organisation’s cybersecurity risk profile
- Track the progress of risk remediation and ensure timely completion.
- Incorporate threat intelligence and vulnerability scanning data into risk assessments
**Compliance and Governance**:
- Work with various stakeholders to ensure compliance with relevant cybersecurity regulations and standards.
- Maintain cybersecurity policies, procedures, and guidelines.
**Key Responsibilities**:
- Enhance Cybersecurity Risk Management: Develop, implement, and continuously improve cybersecurity risk management strategies and frameworks.
- Ensure Security Integration and Compliance: Integrate security considerations into projects, ensure compliance with regulations, and enhance cybersecurity controls.
- Drive Governance and Awareness: Develop and implement cybersecurity policies, awareness programs, and communication strategies, while identifying and controlling shadow IT.
- Provide guidance and support on cybersecurity matters to stakeholders across organization to facilitate and promote the understanding of cybersecurity requirements.
**We Are Looking For**:
- Bachelor's degree in Information Systems or a related field.
- Experience in working with PCI DSS program
- Experience in cybersecurity risk management.
- Knowledge of industry standards and regulatory requirements, especially PCI DSS (e.g. NIST, ISO 27001, GDPR)
- Strong communication and stakeholder management skills
- Excellent critical thinking and problem-solving skills.
- Strong understanding of cybersecurity threats, vulnerabilities, and risks.
- Good knowledge of cybersecurity techniques and technologies.
- Relevant certifications (e.g. CISSP, CISM, CRISC) are highly desirable.
What’s In It for You
- A place to leave your comfort zone and grow beyond your potential (here, you’ll be encouraged to try new things and take risks)
- Real responsibility from day 1; there’s no sitting on the sidelines at L’Oréal.
- A place where you can contribute to something bigger Many of our brands have societal /environmental causes to make a concrete difference.
Who We Are
L’Oréal is present in 150 markets on five continents. For more than a century, L’Oréal has devoted itself solely to ‘Creating beauty that moves the world’; it is now the industry leader with €42 billion in consolidated sales. Together, we solve complex challenges at scale while staying committed to making the world a more inclusive and better place for everyone and our planet.
Today, L’Oréal includes over 9k experts in beauty tech, digital, data and e-commerce and is constantly growing. Championing Beauty Tech, we invent the beauty of the future while becoming the company of the future.
To achieve this ambition, L’Oréal continues recruiting diverse, innovative, skilled, and passionate minds in tech domains such as Data, Digital, Cloud, Cyber Security, IT Architecture, DevOps, Applications, and Infrastructure.
-
Cybersecurity Risk Manager
5 days ago
Singapore SINGAPORE AIRLINES LIMITED Full timeJob Title: Cybersecurity Risk ManagerAbout the Role:We are seeking a highly experienced Cybersecurity Risk Manager to join our Internal Audit Division. The successful candidate will play a key role in identifying, assessing, and measuring cybersecurity risks associated with SIA's IT systems and processes.Main Responsibilities:Provide independent assurance on...
-
Risk Management and Audit Lead
1 week ago
Singapore STONE CYBERSECURITY PTE. LTD. Full timeAbout Stone Cybersecurity Pte LtdWe are a dynamic cybersecurity consulting firm in Singapore, committed to helping organizations enhance their cybersecurity posture and achieve compliance with industry best practices.The OpportunityWe are seeking an experienced Cybersecurity Consultant to lead our ISO 27001 and NIST audit and readiness services. As a key...
-
Cybersecurity Consultant
4 days ago
Singapore STONE CYBERSECURITY PTE. LTD. Full timeWe are looking for a strategic, detail-oriented individual to join our team as a security consultant. Your responsibilities will include developing and reviewing activities across the entire scope of our client's Security Governance, Risk and Compliance programs. (E.g. NIST, ISO27001, MAS-TRM etc.) To be successful as a security consultant, you should have...
-
Cybersecurity Risk Analyst
7 days ago
Singapore MANPOWER STAFFING SERVICES (SINGAPORE) PTE LTD Full timeRoles & ResponsibilitiesWe are seeking a diligent Cybersecurity Risk Analyst to identify, analyse, and mitigate cybersecurity risks in our systems and networks.This role involves the execution of risk assessments, vulnerability analyses and the development of risk management strategies.You should be well-versed in cybersecurity risk assessment methodologies...
-
Cybersecurity Risk Analyst
6 days ago
Singapore Manpower Singapore Full timeWe are seeking a diligent Cybersecurity Risk Analyst to identify, analyse, and mitigate cybersecurity risks in our systems and networks. This role involves the execution of risk assessments, vulnerability analyses and the development of risk management strategies. You should be well-versed in cybersecurity risk assessment methodologies and familiar with a...
-
Cybersecurity Risk Analyst
12 minutes ago
Singapore MANPOWER STAFFING SERVICES (SINGAPORE) PTE LTD Full timeRoles & ResponsibilitiesWe are seeking a diligent Cybersecurity Risk Analyst to identify, analyse, and mitigate cybersecurity risks in our systems and networks.This role involves the execution of risk assessments, vulnerability analyses and the development of risk management strategies.You should be well-versed in cybersecurity risk assessment methodologies...
-
Cybersecurity Governance and Risk Manager
2 weeks ago
Singapore Temasek International Pte Ltd Full timeAt Temasek International Pte Ltd, we are seeking a seasoned cybersecurity professional to join our team as a Cybersecurity Governance and Risk Manager. This role will be a key member of the Governance, Risk, and Compliance unit, reporting directly to the CISO.About UsTemasek International Pte Ltd is a global investment company headquartered in Singapore. Our...
-
Cybersecurity Risk Management Specialist
2 weeks ago
Singapore Temasek International Pte Ltd Full timeTemasek International Pte Ltd is a global investment company that operates on commercial principles, seeking to deliver sustainable returns over the long term. Our Purpose So Every Generation Prospers guides us to make a difference for today's and future generations.Our team is working in the Cybersecurity Department under the Governance, Risk, and...
-
Cybersecurity Risk Management Specialist
2 weeks ago
Singapore Temasek International Pte Ltd Full timeCompany OverviewTemasek International Pte Ltd is a global investment company headquartered in Singapore, with a significant presence in the Asian and international markets. With a strong commitment to sustainable returns over the long term, Temasek seeks to make a difference for today's and future generations.The company operates on commercial principles,...
-
Cybersecurity Risk Management Specialist
4 days ago
Singapore Manpower Singapore Full timeWe are seeking a diligent cybersecurity expert to identify, analyze, and mitigate potential threats in our systems and networks.Job DescriptionThis role involves performing risk assessments, vulnerability analyses, and developing risk management strategies. You should be well-versed in cybersecurity risk assessment methodologies and familiar with various...
-
Risk Management Specialist
7 days ago
Singapore Secur Solutions Group Pte Ltd Full timeRisk Management Specialist - Cybersecurity:As a Risk Management Specialist - Cybersecurity, you will play a critical role in identifying and mitigating cybersecurity risks within our organization. Your expertise will help us maintain a robust security posture and protect our clients' interests.Key responsibilities include conducting risk assessments,...
-
Cybersecurity Risk Manager
2 weeks ago
Singapore Willowglen Services Pte Ltd Full timeJob SummaryWe are seeking an experienced professional to spearhead our cybersecurity initiatives. The successful candidate will be responsible for developing and implementing robust security policies, conducting thorough risk assessments, and ensuring compliance with industry standards.Key Responsibilities:Security Policy Development: Establish comprehensive...
-
Cybersecurity Consultant
1 week ago
Singapore STONE CYBERSECURITY PTE. LTD. Full timeAbout Stone Cybersecurity Pte LtdWe are a leading cybersecurity consulting firm in Singapore, delivering expert advice to organizations across various industries.Our team is passionate about protecting businesses from cyber threats and fostering a collaborative work environment that values continuous learning and professional growth.The OpportunityWe are...
-
Cybersecurity Risk Analyst
5 days ago
Singapore RECRUIT EXPRESS PTE LTD Full timeRoles & ResponsibilitiesResponsibilities:Risk Assessment: Perform risk assessments to identify potential threats to the organization's information systems. Vulnerability Analysis: Analyse and assess vulnerabilities in the network and system infrastructure. Security Audits: Conduct security audits to ensure policies, processes, procedures and controls are...
-
Singapore STONE CYBERSECURITY PTE. LTD. Full timeRoles & ResponsibilitiesAbout Stone Cybersecurity Pte LtdStone Cybersecurity Pte Ltd is a leading cybersecurity consulting firm in Singapore and a CREST-accredited service provider. We help organizations across industries strengthen their security posture, achieve compliance, and mitigate cybersecurity risks. Our team is passionate about protecting...
-
Singapore STONE CYBERSECURITY PTE. LTD. Full timeRoles & ResponsibilitiesAbout Stone Cybersecurity Pte LtdStone Cybersecurity Pte Ltd is a leading cybersecurity consulting firm in Singapore and a CREST-accredited service provider. We help organizations across industries strengthen their security posture, achieve compliance, and mitigate cybersecurity risks. Our team is passionate about protecting...
-
Cybersecurity Risk Strategist
5 hours ago
Singapore Secur Full timeJob OverviewAbout Secur We're seeking a skilled Cybersecurity Governance and Risk Specialist to collaborate with our cross-functional teams in driving impactful improvements in cybersecurity governance and risk management.
-
Cybersecurity Risk Manager
7 days ago
Singapore SGB Full timeJob OverviewSGB is seeking a highly skilled Cybersecurity Risk Manager to support daily security operations, monitoring, and incident response. This role requires solid technical expertise and a strong understanding of information security principles, with hands-on experience in security tools and frameworks.
-
Vp, International Cybersecurity Risk
1 week ago
Central Singapore PayPal Full time**The Company** PayPal has been revolutionizing commerce globally for more than 25 years. Creating innovative experiences that make moving money, selling, and shopping simple, personalized, and secure, PayPal empowers consumers and businesses in approximately 200 markets to join and thrive in the global economy. We operate a global, two-sided network at...
-
Internship - Cybersecurity Risk Management
6 days ago
Singapore WS Audiology APAC Full time**About WSA** WS Audiology combines over 140 years of experience in pioneering better solutions to help people with hearing loss. With a passion for impact, our 12.000 employees are committed to achieving our purpose: wonderful sound for all. With brands like Signia, Widex, Audio Service, Rexton and Vibe, and with diverse assets across wholesale, retail,...
