IT Security Consultant
ELLIOTT MOSS CONSULTING PTE. LTD.
· We are looking for a detail-oriented Consultant, IT Security to support the organization's cybersecurity, governance, risk, and compliance initiatives.
· The ideal candidate will have hands-on experience in IT security operations, vulnerability management, security compliance, and access control, ensuring the organization's IT environment remains secure and compliant with industry standards.
Key Responsibilities
· Risk Management & Compliance Conduct IT risk and vulnerability assessments.
· Ensure compliance with security frameworks such as ISO 27001, NIST, and applicable regulations.
· Develop, review, and enforce IT security policies, standards, and procedures.
· Perform regular security audits and compliance assessments.
· Vulnerability Management Coordinate vulnerability assessments and third-party penetration testing.
· Manage security patching and remediation activities.
· Track and report vulnerability remediation progress.
· Access Control & Data Protection Implement and maintain Identity & Access Management (IAM) controls.
· Conduct periodic user access reviews and privileged access management.
· Ensure encryption, data protection, and information security controls are implemented.
· Security Operations Support incident response activities and security investigations.
· Monitor security risks and recommend mitigation strategies.
· Collaborate with cross-functional teams to strengthen the organization's security posture.
Required Skills & Experience
· 2–4 years of experience in IT Security, Governance, Risk & Compliance (GRC), or Cybersecurity.
· Strong knowledge of network security, firewall management, and networking protocols.
· Experience with vulnerability assessments, patch management, and security remediation.
· Good understanding of security frameworks such as ISO 27001 and NIST.
· Knowledge of Identity & Access Management (IAM) and privileged access controls.
· Familiarity with incident response processes and security best practices.
· Strong analytical and problem-solving skills with the ability to identify security risks and anomalies.
· Excellent communication, stakeholder management, and presentation skills.
· Strong organizational, project management, and time management abilities.
· Ability to work effectively with cross-functional teams.