Information Security Auditor

21 hours ago

Singapore ISOCERT PTE. LTD. Full time

**Job Nature**:
The Information Security Auditor will be responsible for assessing, monitoring, and ensuring the organization’s compliance with international security standards (ISO 27001), cybersecurity frameworks, and data protection regulations. The role involves planning and conducting internal/external audits, identifying risks and vulnerabilities, and recommending corrective actions. The auditor will work closely with IT, compliance, and business teams to strengthen the organization’s security posture and support certification/recertification processes.

**Key Responsibilities**:

- **Audit & Compliance**
Plan, conduct, and report on internal information security audits aligned with ISO 27001 and other frameworks.
Support external audits and certification processes by liaising with auditors and regulatory bodies.
Ensure compliance with data protection laws (e.g., GDPR, PDPA where applicable).
- **Risk & Controls Assessment**
Evaluate existing security controls, policies, and procedures for effectiveness.
Identify risks, vulnerabilities, and gaps in cybersecurity and data protection practices.
Recommend improvements and track corrective/preventive actions (CAPA).
- **Documentation & Reporting**
Develop and maintain audit checklists, reports, and compliance documentation.
Provide management with clear audit findings and risk assessments.
Maintain evidence logs for ISO 27001 controls and compliance purposes.
- **Stakeholder Engagement**
Collaborate with IT, HR, Legal, and Business units to ensure alignment with security policies.
Conduct awareness sessions to promote compliance culture.
Advise leadership on security risks, trends, and mitigation strategies.
- **Continuous Improvement**
Monitor changes in international standards and regulatory requirements.
Drive continuous improvement of Information Security Management Systems (ISMS).
Benchmark practices against industry best standards (e.g., NIST, CIS Controls).

**Qualifications & Skills**:
**Education & Certifications**
- Diploma or Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or related field.
- ISO/IEC 27001 Lead Auditor / Lead Implementer certification (preferred).
- Additional certifications are an advantage: CISA, CISM, CISSP, GDPR Practitioner, CEH.

**Experience**
- 3-7 years of experience in information security, IT audit, or compliance. Personnel with no expereince are welcome to apply.
- Proven track record in conducting ISO 27001 audits (internal or external will be an advantage).
- Experience with data protection regulations (PDPA, GDPR etc.)
- Hands-on knowledge of cybersecurity practices, risk assessment, and incident response.

**Skills**
- Strong understanding of ISMS principles, risk management, and compliance frameworks.
- Excellent report writing and presentation skills.
- Strong communication, stakeholder management, and problem-solving skills.
- Ability to work independently and manage multiple audits/projects simultaneously.

  • Information Security Auditor

    2 weeks ago

    Singapore ISOCERT PTE. LTD. Full time $80,000 - $120,000 per year

    Job NatureThe Information Security Auditor will be responsible for assessing, monitoring, and ensuring the organization's compliance with international security standards (ISO 27001), cybersecurity frameworks, and data protection regulations. The role involves planning and conducting internal/external audits, identifying risks and vulnerabilities, and...

  • Security Auditor

    21 hours ago

    Singapore SEDHA CONSULTING PTE. LTD. Full time

    **Security Auditor** **Job Scope**: - Audit IT and network systems to ensure they comply with security policies and standards. - Evaluate the effectiveness of security controls and procedures in protecting assets from cyber threats. - Provide audit findings and recommendations to improve the organization’s security practices. **Qualifications**: - Deep...

  • Auditor (IT and Security)

    1 week ago

    Singapore Housing and Development Board Full time

    **What the role is** - Auditor (IT and Security) **What you will be working on** - Conduct independent risk-based audits to assess the adequacy of internal controls, and reliability and integrity of the IT operations, systems and processes - Develop audit programmes, recommend improvements and prepare audit reports - Engage and communicate with relevant...

  • Information Security

    4 hours ago

    Singapore Lexagle Full time $80,000 - $120,000 per year

    Company IntroductionLexagle is a Singapore-headquartered legal tech company dedicated totransforming how businesses manage their contracts and legal workflows.We value innovation, security, and collaboration, ensuring our technologyand operations meet the highest standards of compliance and trust.Position OverviewWe are seeking an experienced and highly...

  • Cybersecurity Security Auditor

    1 day ago

    Singapore TANGSPAC CONSULTING PTE LTD Full time

    Roles & Responsibilities We are seeking a seasoned Cyber Security Auditor to execute audits across our cybersecurity landscape within Group Audit. The ideal candidate will bring deep expertise in Identity and Access Management (IAM) or Vulnerability Management or Security Operations Center (SOC) processes. This role ensures our security controls are robust,...

  • Cybersecurity Security Auditor

    7 days ago

    Singapore TANGSPAC CONSULTING PTE LTD Full time

    We are seeking a seasoned Cyber Security Auditor to execute audits across our cybersecurity landscape within Group Audit. The ideal candidate will bring deep expertise in Identity and Access Management (IAM) or Vulnerability Management or Security Operations Center (SOC) processes. This role ensures our security controls are robust, compliant, and aligned...

  • Cyber Security Auditor

    3 days ago

    Singapore Helius Technologies Full time

    Department & Location Department: Group Audit Experience Level: Senior (10+ years)Location: Singapore, MBFC Tower 3Reports To: IT Audit Job Summary We are seeking a seasoned Cyber Security Auditor to execute audits across our cybersecurity landscape within Group Audit. The ideal candidate will bring deep expertise in Identity and Access Management (IAM) or...

  • Cyber Security Auditor

    1 week ago

    Singapore PERSOL SINGAPORE PTE. LTD. Full time

    Job Summary We are seeking a seasoned Cyber Security Auditor to execute audits across our cybersecurity landscape within Group Audit. The ideal candidate will bring deep expertise in Identity and Access Management (IAM) or Vulnerability Management or Security Operations Center (SOC) processes. This role ensures our security controls are robust, compliant,...

  • Cyber Security Auditor

    1 week ago

    Singapore PERSOL SINGAPORE PTE. LTD. Full time

    Overview Job Summary We are seeking a seasoned Cyber Security Auditor to execute audits across our cybersecurity landscape within Group Audit. The ideal candidate will bring deep expertise in Identity and Access Management (IAM) or Vulnerability Management or Security Operations Center (SOC) processes. This role ensures our security controls are robust,...

  • Information Security Manager

    1 week ago

    North-East Singapore Flintex Consulting Pte Ltd Full time

    **Information Security Manager**: - Minimum yearss' experience in IT Governance and Cyber Security as HOD (mandatory) - Vendor industry experience (mandatory) - Hands on and ability to implement security technical solutions (mandatory) - Manage communication with MAS auditor, incident reporting, engagement - Leading tasks and multiple teams of information...