IT Security Consultant

ELLIOTT MOSS CONSULTING PTE. LTD.

· We are looking for a detail-oriented Consultant, IT Security to support the organization's cybersecurity, governance, risk, and compliance initiatives.

· The ideal candidate will have hands-on experience in IT security operations, vulnerability management, security compliance, and access control, ensuring the organization's IT environment remains secure and compliant with industry standards.

Key Responsibilities

· Risk Management & Compliance Conduct IT risk and vulnerability assessments.

· Ensure compliance with security frameworks such as ISO 27001, NIST, and applicable regulations.

· Develop, review, and enforce IT security policies, standards, and procedures.

· Perform regular security audits and compliance assessments.

· Vulnerability Management Coordinate vulnerability assessments and third-party penetration testing.

· Manage security patching and remediation activities.

· Track and report vulnerability remediation progress.

· Access Control & Data Protection Implement and maintain Identity & Access Management (IAM) controls.

· Conduct periodic user access reviews and privileged access management.

· Ensure encryption, data protection, and information security controls are implemented.

· Security Operations Support incident response activities and security investigations.

· Monitor security risks and recommend mitigation strategies.

· Collaborate with cross-functional teams to strengthen the organization's security posture.

Required Skills & Experience

· 2–4 years of experience in IT Security, Governance, Risk & Compliance (GRC), or Cybersecurity.

· Strong knowledge of network security, firewall management, and networking protocols.

· Experience with vulnerability assessments, patch management, and security remediation.

· Good understanding of security frameworks such as ISO 27001 and NIST.

· Knowledge of Identity & Access Management (IAM) and privileged access controls.

· Familiarity with incident response processes and security best practices.

· Strong analytical and problem-solving skills with the ability to identify security risks and anomalies.

· Excellent communication, stakeholder management, and presentation skills.

· Strong organizational, project management, and time management abilities.

· Ability to work effectively with cross-functional teams.