Job Description

We are looking for a Cybersecurity Consultant / Senior Consultant to join our team in supporting client-facing cybersecurity initiatives. This role sits within our CISO-as-a-Service (CISOaaS) and will involve working closely with clients to assess technologies and projects from a cybersecurity and risk perspective.


The ideal candidate is someone who is curious, adaptable, and comfortable working across a range of technologies and taskings.

Key Responsibilities:

Support the client's cybersecurity management function by identifying, analyzing, and advising on cyber security risks across existing and emerging technologies Conduct research on new technologies (e.g., AI/ML, cloud, IT, OT) to identify potential security and compliance risks Perform threat modeling and strategic risk assessments to evaluate system architectures, data flows, and operational processes Collaborate with project teams to review architectural designs and identify areas of concern from a cyber security standpoint Provide input on risk implications of new projects, products, or initiatives, aligning with best practices Monitor evolving cyber threat landscapes and contribute to internal knowledge-sharing and stakeholder advisories Contribute to the development and refinement of cyber security frameworks, standards and process Act as a trusted advisor & partner to the client's cybersecurity team Flexibility in tasking and focus areas, supporting a variety of cybersecurity-related functions including research & technical reviews, depending on project needs

Requirements

Prior experience in a GRC or audit role related to cybersecurity or emerging technologies Strong understanding of risk management principles and ability to assess both technical and strategic cyber risks Knowledge in threat modeling, strategic risk analysis, and identifying systemic risks Interest and capability in researching, analyzing, and assessing risks associated with new or evolving technologies (e.g., AI, cloud, OT) Familiarity with conducting or supporting architecture reviews from a security perspective Familiarity with common information security management frameworks, such as ISO/IEC 27001 and NIST Excellent analytical thinking and communication skills, with the ability to present insights clearly to technical and non-technical audiences Relevant certifications such as CISSP, CISA, CISM, or CRISC Willingness to operate in a dynamic consulting environment where priorities may shift, and projects span multiple domains and technologies

Preferred Skills/Qualities:

Prior experience supporting or working within a CISO office, security governance, or technology risk advisory environment Exposure to working with Singapore Government agencies or ministries in a cybersecurity or risk-related capacity Familiarity with Singapore's cybersecurity regulatory landscape, including relevant national and industry-specific standards (e.g., CSA & PDPA) * Strong client-facing and stakeholder engagement skills, with the ability to build trust and communicate effectively across technical and business audiences