APAC Information Security Analyst

Explore your next opportunity at a Fortune Global 500 organization. Envision innovative possibilities, experience our rewarding culture, and work with talented teams that help you become better every day. We know what it takes to lead UPS into tomorrow—people with a unique combination of skill + passion. If you have the qualities and drive to lead yourself or teams, there are roles ready to cultivate your skills and take you to the next level.

Job Description:

The Information Security Analyst will be reporting to the APAC Information Security Manager and will work as part of the UPS AsiaPac Information Security Assurance and Risk Management Team in our corporate office in Singapore playing major role in management risk and security vulnerabilities across the APAC region.

As the Lead Information Security Analyst, the individual is expected to.

• Conduct security risk assessments in strategic IT systems, third party vendors, and reviews and negotiates Information Security agreements with vendors and customers.
• Prepare and initiate assessments based on enterprise InfoSec Risk Management Frameworks, Policies and Standards and will provide executive reports on IT Risks, and risk reduction strategies.
• Determine a systems or vendor's Information Security compliance posture based on the contractual agreement and the regional data protection regulations.
• Called upon to provide Information Security recommendations on effective security controls and Processes, to innovate processes, streamline methodologies and to increase and improve vendor audit effectiveness and information security compliance.
• Coordinate and analysis regional cyber security regulation and formulae impact assessments and action plans
• Manage reporting and status tracking for all Information Security related taskings, and any tasks as required.
  
  
  

Requirements

• Possess a Degree in Information Technology or related fields
• Possess at least 3 years of similar Information Security Assurance, Compliance or Audit experience at a large organization, with at least 1 year of experience working with Third Party/Vendor Assurance.
• Demostrate experience in the Information Security and Data Protection field; using risk management and security control frameworks (ISO27001), auditing and GRC tools and technologies.
• Display good verbal and written communication skills.
• Able to work well independently as well as within teams
• Having any of these certifications (CISSP, CISA, CRISC, CISM, CCSP, CTPRP, GSNA) is preferred.
  
  
  

Employee Type:

Permanent

UPS is committed to providing a workplace free of discrimination, harassment, and retaliation.