IT Security Officer (ITSO) (Associate Consultant

Job Openings IT Security Officer (ITSO) (Associate Consultant

About the job IT Security Officer (ITSO) (Associate Consultant

Position: IT Security Officer (ITSO) - Cybersecurity Engineer / SOCaaS

Position Overview

Highly motivated and results-oriented Cybersecurity Engineer with 2 years of experience in ICT cybersecurity, risk management, and governance. Proven ability to conduct comprehensive security assessments, manage security systems, and ensure compliance with industry best practices and government standards. Expertise in TrendMicro solutions and GovTech cybersecurity frameworks, with a strong track record of enhancing threat detection, reducing vulnerabilities, and strengthening overall security posture. Adept at collaborating with internal teams and external vendors to achieve optimal security outcomes.

Key Responsibilities

Security Assessments & Risk Management

- Conducted regular security, risk, and audit assessments of ICT systems with cloud and application teams, ensuring alignment with industry best practices and frameworks (e.g., IM8).

- Provided expert security recommendations and advisory services for system implementations, proactively identifying and mitigating potential risks.

Security Operations & Incident Response

- Managed and optimized intrusion detection/prevention systems and security monitoring tools, significantly enhancing threat detection capabilities.

- Monitored and responded to security incidents, coordinating effective incident response activities and minimizing impact.

- Enforced security policies, standards, and best practices across the organization.

- Maintained comprehensive security documentation and generated detailed reports.

TrendMicro & GovTech Cybersecurity Specialization

- Collaborated with TrendMicro Managed Security Operations Centre (SOC) to resolve escalated security tickets.

- Coordinated onboarding and offboarding of TrendMicro SOCaaS.

- Monitored TrendMicro CloudOne suite including Conformity, Application Security, Network Security, Endpoint Protection, and TippingPoint IPS.

- Managed vendor performance, SLAs, acceptance testing, and project deliverables.

Assist ACISO in Daily Operations

- Supported GovTech Vulnerability Management System and GCSOC/SOAR platform.

- Utilized GovTech ABLR and CloudScape tools.

- Conducted security log reviews and firewall/EPP reviews.

- Reviewed VAPT, VA, and SCR reports.

- Provided security advisories for architecture design.

Outcomes

- Maintained compliance with government standards and policies.

- Enhanced threat detection and response capabilities.

- Reduced vulnerabilities and strengthened security posture.

- Improved vendor accountability.

- Increased security awareness.

Essential Competencies

- Analytical & Problem-Solving Skills

- Effective Communication & Collaboration

- Independent Work Ethic & Adaptability

- Process & Documentation Expertise

Preferred Technical Qualifications

- Relevant cybersecurity/IT qualifications and certifications (CISSP, CISM, CEH).

- Strong technical security expertise in network, endpoint, and monitoring tools.

- Experience with IM8, ISO 27001, and NIST Cybersecurity Framework.

Additional Skills

- Hands-on experience with SIEM, vulnerability scanners, firewalls, IDS/IPS.

- Risk management and compliance expertise.

- Incident response under pressure.

- Strong communication and confidentiality.