Information Technology Security Analyst

Our client, a rapidly growing player in the fintech industry, is currently hiring an IT Security Analyst to support their cybersecurity and risk management efforts. This is an exciting opportunity for someone with a strong foundation in IT security who’s looking to grow within a fast-paced and regulated environment.

Key Responsibilities

Cyber Risk & Compliance

• Assess new and existing technologies against internal security standards.
• Identify, evaluate, and prioritize cybersecurity risks and propose mitigation strategies.
• Provide guidance on secure cloud architecture, particularly across AWS or Azure platforms.
• Maintain and update the IT risk register, and ensure risk treatment plans are followed through.

Security Governance

• Support the development and enforcement of security policies, controls, and best practices.
• Ensure compliance with relevant standards and frameworks such as MAS TRM, PCI-DSS, IM8, etc.
• Conduct internal audits and prepare reports for external auditors or regulatory bodies.
• Track ongoing compliance initiatives and drive continuous improvement.

Security Operations

• Monitor potential data loss events and perform initial investigation of alerts and incidents.
• Support incident response efforts, including containment and post-mortem analysis.
• Use tools such as SIEM, DLP, IDS/IPS to detect and respond to threats in real time.

Business Continuity & Resilience

• Assist in developing and reviewing crisis management and business continuity plans.
• Support simulation exercises to test readiness for potential disruptions.
• Drive awareness and training sessions across the company to strengthen security culture.

Cross-Functional Collaboration

• Work closely with IT, Engineering, and other business units to ensure secure operations.
• Provide training and guidance to employees on security practices.
• Prepare regular reports on IT security posture and risk levels for management.

Ideal Candidate

• Bachelor’s degree in Information Security, IT, or related field (or equivalent experience).
• 3–5 years of experience in IT security, risk management, or compliance.
• Strong understanding of security frameworks (e.g., ISO 27001, NIST).
• Familiarity with cloud environments (AWS, Azure) and related security practices.
• Hands-on experience with security tools like DLP, SIEM, IDS/IPS.
• Excellent communication skills and a collaborative mindset.