Job matched to your search
#EG Cyber Security Architect (Assurance & Risk)
NCS · Singapore
Free · Join 5,000+ job seekers using Qarera
How well do you match this role?
Tap the skills you already have — then see your real match score, what’s missing, and your resume fixed for this job.
Job description
Security Architecture & Design
-
Interpret and translate security requirements (e.g., IM8, client policies) into architecture designs
-
Design, review, and enhance security architecture, controls, and solutions
-
Perform threat modelling and technical risk assessments
-
Support security design reviews and clearance processes (e.g., ACISO)
Build & Implementation Assurance
-
Guide delivery teams on secure implementation of solutions
-
Validate implementation against approved architecture and security requirements
-
Identify and address security gaps, deviations, and non-compliances
-
Recommend appropriate security technologies and compensating controls
Security Testing & Assurance
-
Support and review security testing activities, including:
-
SSAT, VAPT, and related assessments
-
Validate findings, remediation plans, and retest results
-
Provide guidance to reduce vulnerabilities and improve security posture
Risk Management & Assurance
-
Lead development and review of:
-
Deviations
-
Risk Registers / Risk Assessments
-
Assess risks based on:
-
Discoverability, Exploitability, Reproducibility, Likelihood, and Impact
-
Define preventive, detective, and corrective controls
-
Evaluate residual risks and support risk acceptance processes with stakeholders
Data Security Considerations
-
Assess and advise on data-related risks, including:
-
Data classification and sensitivity
-
Data protection (data in transit / at rest)
-
Data access controls and governance
-
Ensure alignment with applicable data security frameworks and policies
-
Work with stakeholders to determine applicability of data security requirements within system scope
Stakeholder Engagement
-
Act as cybersecurity SME for project teams, customers, and vendors
-
Lead technical discussions and provide security advisory
-
Support audits, reviews, and clarification requests
Operations & Continuous Improvement
-
Validate security operational procedures
-
Provide advisory to operations and SOC teams
-
Periodically review and enhance security architecture and controls
-
8–15+ years in cybersecurity (architecture, engineering, or risk)
-
Experience in large-scale ICT or regulated/Government environments preferred
-
Security architecture across network, systems, applications, and cloud
-
IAM / PAM, security hardening, vulnerability management
-
Security testing (VAPT, SSAT)
-
Familiarity with modern domains (cloud, containers, AI/OT – advantageous)
-
Experience in risk assessment and deviation management (e.g., MDL)
-
Familiarity with IM8 / ISO 27001 / NIST / CIS frameworks
-
Working knowledge of data security principles and controls
-
CISSP / CISM / CISA
-
TOGAF / SABSA (advantageous)
-
Cloud security certifications
-
Strong stakeholder management and communication skills
-
Ability to translate technical risks into business impact
-
Structured, analytical, and delivery-oriented mindset
-
Due to government project sensitivity, we will only consider Singapore Citizen
We are driven by our AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity—and we seek individuals who embody these values in both their professional and personal lives. We are committed to our Impact: Valuing our clients, Growing our people, and Creating our future.
Together, we make the extraordinary happen.
Learn more about us at ncs.co and visit our LinkedIn career site.
We are driven by our AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity—and we seek individuals who embody these values in both their professional and personal lives. We are committed to our Impact: Valuing our clients, Growing our people, and Creating our future.
Together, we make the extraordinary happen.
Learn more about us at ncs.co and visit our LinkedIn career site.
Scam Alert
We are aware of fraudulent job offers and impersonations of NCS recruiters. Phishing emails using convincing-looking but fake addresses are also commonly used to trick you into thinking that they come from official NCS sources.
Please note that all official communications from NCS Group will only be sent from verified corporate email addresses. Always check that the sender’s email address ends with the genuine NCS domain, @ncs.com.sg and beware of extra letters, symbols or misspellings. When in doubt, verify the sender’s identity by contacting us at reachus@ncs.com.sg.
More jobs in Singapore
Browse related jobs
Don’t just read the job — see if you’ll get it.
Get your match score, a resume tailored to this exact role, and jobs like it — free.
Check my fit for this job