Current jobs related to Manager, Information Security - Singapore - Marriott International, Inc


  • Singapore Volt Full time

    **Information Security Manager** - Looking for an Information Security Manager, ideally with background experience either in insurance or financial services. This is a non-technical Information Security role, where you will be responsible for developing security plans and policies in accordance with necessary compliances._ - In addition, you’ll be...


  • Singapore SPARROW RESEARCH PTE. LTD. Full time

    **Job Summary** Implement and oversee Sparrow's IT security operations framework, including security operations role definitions, monitoring, incident and event management, privileged access management, and overall security architecture. Ensure compliance with industry standards and regulatory requirements. **Responsibilities**: - Define and implement IT...


  • Singapore SINGAPORE AEROSPACE MANUFACTURING PTE LTD Full time

    SAM is looking to fill the position of **Information Security Manager **. This is a regional role and is overall in-charge of all the entities under SAM. He/She will report to the CEO. **Responsibilites** - To develop and implement a long-term Information Security & Cyber Security strategies and roadmap to protect corporate information and IT assets. - Set...


  • Singapore SMART INFORMATION MANAGEMENT SYSTEMS PRIVATE LIMITED Full time

    **Key Responsibilities**: **Cybersecurity Risk Assessment & Mitigation**: - **Cyber Risk Assessment**:Conduct comprehensive cyber risk assessments in support of technology initiatives, identifying IT-related risks and recommending appropriate security controls to mitigate those risks. - **Risk Monitoring & Management**:Continuously track and manage risk...


  • Singapore BIPO Service Shanghai Limited Full time

    **Information Security Manager** **Company Overview**: Established in 2010 and headquartered in Singapore, BIPO is a trusted provider of payroll and people solutions in **over 160 global markets.** Our comprehensive HR offerings include **Human Capital Management solutions**, **Global Payroll** **Outsourcing**, and **Employer of Record services**, powered...


  • Singapore GO-JEK Full time

    **About the Role** The Information Security Manager will play a crucial role in the implementation of the Information Security programs. You will work closely with the Information Security Chief of Staff and collaborate with leadership and technical teams on the continued evolution of Information Security programs across the cybersecurity, and company...


  • Singapore Ambition Singapore Full time

    Posted 29 July 2025 Salary S$ - S$ per annum + Variable Bonus Location Singapore Job type Permanent Discipline Technology Reference _ Our client is seeking an experienced Information Security Manager to lead and strengthen their security operations. This role will focus on monitoring, detecting, and responding to cyber threats, managing security...


  • Singapore Ambition Singapore Full time

    Posted 29 July 2025 Salary S$120000 - S$130000 per annum + Variable Bonus Location Singapore Job type Permanent Discipline Technology Reference 283869_1753768672 Our client is seeking an experienced Information Security Manager to lead and strengthen their security operations. This role will focus on monitoring, detecting, and responding to cyber threats,...


  • Singapore D L RESOURCES PTE LTD Full time

    Roles & ResponsibilitiesJob ObjectivesThe Security Governance Specialist role will support the Head of Security Governance in enhancing and maintaining the Security Governance within the Group Information Security(GIS) function in the Bank.Key ResponsibilitiesThis position will support senior Security Governance team members and work closely with various...


  • Singapore SB TELECOM SINGAPORE PTE. LTD. Full time

    **A. Qualification** - University Degree **B. Skill and Experience Requirement** - Relevant experience working in a network security or information security roles. - Technical skills and knowledge to manage and maintain corporate information security. - Experience with network security technologies such as firewalls, VPNs, IDS/IPS, etc. - Experience in...

Manager, Information Security

2 weeks ago


Singapore Marriott International, Inc Full time

**Job Number** 24076260

**Job Category** Information Technology

**Location** Singapore Regional Office, 2 Harbourfront Place #06-08, Singapore, Singapore, Singapore VIEW ON MAP

**Schedule** Full-Time

**Located Remotely?** N

**Relocation?** N

**Position Type** Management
**JOB SUMMARY**

Excellent communication skills are required to effectively communicate (verbally and written) across all levels within the organization.

**CANDIDATE PROFILE**

**Education and Experience**

**Required**:

- Bachelor’s degree in information systems or related field or equivalent experience/certification
- 5+ years security governance, risk management and compliance related experience with 2+ years direct work experience in third-party security Risk Management
- Fluent in English
- One or more current information security certifications such as Certified in Risk and Information Systems Controls (CRISC), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or Certified Information Systems Security Professional (CISSP)
- Possession of good communication skills (including soft skills, structured thinking, effective report writing and presentations, and stakeholder engagement)
- A team player, with positive attitude and enthusiasm in the performance of responsibilities
- Strong innovative thinking, able to continuously enrich and improve the security policy, procedure and standards.

**Preferred**:

- A security certification such as GWAPT, GPEN, AWS Associate Architect, AWS Professional Architect, PCI experience.
- Technical knowledge in one or more of the following areas is required: Application Security, Operating System security (UNIX, Windows, Mainframe, etc.) and network security (routers, switches, firewalls)
- Technical leadership experience in an outsourced environment
- Excellent communication skills and problem-solving ability
- Experience conducting and maintaining vendor risk assessments
- Experience with reviewing and assessing security controls of Cloud service providers
- Proficient with assessing a multi-tiered system architecture (Web Server, App Server & Database)
- Knowledge of OWASP Top 10 and SANS 25.
- Manual Web Application Testing experience.
- Familiarity with ISO27001 and PCI DSS Standards

**CORE WORK ACTIVITIES**

**Vender Risk Management & Cyber Risk Management**
- Oversee, evaluate, and support the documentation, and validation processes necessary to assure that associates, information technology systems and business processes meet the organization’s information assurance, security, and privacy requirements. Ensures appropriate treatment of risk, compliance, and assurance of internal policies and external regulations.
- Develop strategy for the vendor information security risk compliance program
- Document controls gap analysis and risk assessment of the third-party providers
- Review controls exception requests and make risk-based approval decision
- Lead, participate or perform various infrastructure compliance initiatives and projects
- Perform Application Security Testing using (Nessus, IBM App Scan, HP Web Inspect, Fortified on Demand, Qualys, Burp, or Retina)
- Conduct and validate finding discovered during the scans
- Monitor compliance to applicable security policies and standards and report related risk issues
- Manage and administer processes and tools that enable the organization to identify, document, and track third party risks and compliance exceptions
- Conduct assessments of threats and vulnerabilities, determine deviations from acceptable configurations or enterprise or local policy, assess the level of risk, and develop and/or recommend and operationalize appropriate mitigation countermeasures.

**Managing Projects and Priorities**
- Champions leaders’ vision for product and service delivery.
- Thinks creatively and practically to develop, execute, and implement new project plans.
- Generates and provides accurate and timely results in the form of reports, presentations, etc.
- Plans, develops, implements, and evaluates the quality of operations.
- Supports regulator inspections, coordinates submission preparation, and tracks remediations.
- Supports cyber regulation awareness program catering to various roles in the entity.

**Delivering on the Needs of Key Stakeholders**
- Understands and meets the needs of key stakeholders.
- Communicates concepts in a clear and persuasive manner that is easy to understand.
- Demonstrates an understanding of business priorities.
- Supports achievement of performance goals, budget goals, team goals, etc.
- Generates and provides accurate and timely results in the form of reports, presentations, etc.

**Providing Technical Support and Consultation**
- Provides recommendations to improve the effectiveness of processes and programs.
- Demonstrates advanced knowledge of job-relevant issues, products, systems, and processes.
- Demonstrates advanced knowledge of function-specific procedures.
- Applies