Cyber Security Architect (Assurance & Risk)

Company Description

NCS is a leading technology services firm that operates across the Asia Pacific region in over 20 cities, providing consulting, digital services, technology solutions, and more. We believe in harnessing the power of technology to achieve extraordinary things, creating lasting value and impact for our communities, partners, and people. Our diverse workforce of 13,000 has delivered large-scale, mission-critical, and multi-platform projects for governments and enterprises in Singapore and the APAC region. 

Job Description

Security Architecture & Design

• Interpret and translate security requirements (e.g., IM8, client policies) into architecture designs
• Design, review, and enhance security architecture, controls, and solutions
• Perform threat modelling and technical risk assessments
• Support security design reviews and clearance processes (e.g., ACISO)

Build & Implementation Assurance

• Guide delivery teams on secure implementation of solutions
• Validate implementation against approved architecture and security requirements
• Identify and address security gaps, deviations, and non-compliances
• Recommend appropriate security technologies and compensating controls

Security Testing & Assurance

• Support and review security testing activities, including:
• SSAT, VAPT, and related assessments
• Validate findings, remediation plans, and retest results
• Provide guidance to reduce vulnerabilities and improve security posture

Risk Management & Assurance

• Lead development and review of:
  • Deviations
  • Risk Registers / Risk Assessments
• Assess risks based on:
  • Discoverability, Exploitability, Reproducibility, Likelihood, and Impact
  • Define preventive, detective, and corrective controls
  • Evaluate residual risks and support risk acceptance processes with stakeholders

Data Security Considerations

• Assess and advise on data-related risks, including:
  • Data classification and sensitivity
  • Data protection (data in transit / at rest)
  • Data access controls and governance
  • Ensure alignment with applicable data security frameworks and policies
  • Work with stakeholders to determine applicability of data security requirements within system scope

Stakeholder Engagement

• Act as cybersecurity SME for project teams, customers, and vendors
• Lead technical discussions and provide security advisory
• Support audits, reviews, and clarification requests

Operations & Continuous Improvement

• Validate security operational procedures
• Provide advisory to operations and SOC teams
• Periodically review and enhance security architecture and controls

 

Qualifications

 

• 8–15+ years in cybersecurity (architecture, engineering, or risk)
• Experience in large-scale ICT or regulated/Government environments preferred
• Security architecture across network, systems, applications, and cloud
• IAM / PAM, security hardening, vulnerability management
• Security testing (VAPT, SSAT)
• Familiarity with modern domains (cloud, containers, AI/OT – advantageous)
• Experience in risk assessment and deviation management (e.g., MDL)
• Familiarity with IM8 / ISO 27001 / NIST / CIS frameworks
• Working knowledge of data security principles and controls
• CISSP / CISM / CISA
• TOGAF / SABSA (advantageous)
• Cloud security certifications
• Strong stakeholder management and communication skills
• Ability to translate technical risks into business impact
• Structured, analytical, and delivery-oriented mindset
• Due to government project sensitivity, we will only consider Singapore Citizen

Additional Information

We are driven by our AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity—and we seek individuals who embody these values in both their professional and personal lives. We are committed to our Impact: Valuing our clients, Growing our people, and Creating our future.  

Together, we make the extraordinary happen.  

Learn more about us at ncs.co and visit our LinkedIn career site. 

We are driven by our AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity—and we seek individuals who embody these values in both their professional and personal lives. We are committed to our Impact: Valuing our clients, Growing our people, and Creating our future.

 

Together, we make the extraordinary happen.

 

Learn more about us at ncs.co and visit our LinkedIn career site.

 

Scam Alert

 

We are aware of fraudulent job offers and impersonations of NCS recruiters. Phishing emails using convincing-looking but fake addresses are also commonly used to trick you into thinking that they come from official NCS sources.

 

Please note that all official communications from NCS Group will only be sent from verified corporate email addresses. Always check that the sender’s email address ends with the genuine NCS domain, @ncs.com.sg and beware of extra letters, symbols or misspellings. When in doubt, verify the sender’s identity by contacting us at [email protected].