Lead, Security Testing
Apply on
About CGSI
CGS International Securities Pte. Ltd. (CGS International) is an award-winning and market leading integrated financial services provider, ranked among the top securities houses in Asia.
CGS International taps on our wealth of global and ASEAN insights to offer equities trading, leveraged products, wealth management, investment banking, equities research, Shariah-compliant financing, fixed income, currency and commodities, structured products, and prime brokerage services in over 15 countries and regions.
Along with its parent organization China Galaxy Securities, a leading securities house in China, CGS International is trusted by more than 15 million customers globally.
Job Responsibilities
The incumbent will be responsible for:
- Conducting security testing such as vulnerability assessments, penetration tests, application security test (code level), red teaming, simulation exercises/tests (process level)
- Tracking and ensuring prompt completion of remediation and mitigations
- Recommending, building and maintaining security testing platforms, tools, technologies
- Formulating security testing policies, standards, guidelines
- Establishing security testing processes
- Measuring and improving maturity of security testing
- Managing development and performance of team member(s)
- Mentoring and guiding junior team member(s)
- Staying up to date with business, regulatory and IT requirements
- Ensuring the secure testing program enables business, addresses regulations, aligns with IT strategies
Job Requirements
To thrive and be successful in this role, you must have / be:
- Bachelor degree in computer science, computing
- At least 1 years of experience building and managing security team.
- At least 3 years of IT security testing experience covering areas such as vulnerability assessments, penetration tests, application security test, simulation exercises/tests
- Able to speak both English and Chinese to liaise with our Chinese counterparts
- Frequent and regular communications and sharing with senior management, technical personnel and business users
- Experience working with cross-geographical teams in various time zones
- CISSP, CEH, CREST, OSCP or other related information security certifications
- A good communicator
- Able to lead by example
- Keen to share and collaborate
- Able to influence to garner buy-in