As the sole cybersecurity specialist within a MAS‑regulated general insurance intermediary, you will assume full ownership of the organisation’s end‑to‑end cybersecurity function. This is a hands‑on individual contributor role requiring the ability to operate independently across the full cybersecurity lifecycle — spanning governance, risk, and compliance through to technical implementation, security operations, and incident response.

You will be responsible for maintaining a robust security posture aligned with MAS Technology Risk Management (TRM) Guidelines, PDPA requirements, and recognised industry best practices. You will support environments that include CRM platforms, cloud infrastructure, SAP systems, and end‑user computing.

Key Responsibilities

Governance, Risk & Compliance

• Own, develop, and maintain cybersecurity policies, standards, and procedures in line with MAS TRM Guidelines
• Conduct periodic technology risk assessments, maintain the technology risk register, and track remediation of identified gaps
• Ensure compliance with PDPA obligations, including conducting Data Protection Impact Assessments (DPIAs) where required
• Prepare and maintain compliance documentation and audit evidence for regulatory and internal reviews

Security Operations & Monitoring

• Implement and manage security monitoring across cloud environments, CRM platforms, endpoint devices, and network perimeters
• Monitor, triage, and respond to security alerts and incidents; maintain, test, and continuously improve the incident response plan
• Manage endpoint detection and response (EDR), email security controls, DNS filtering, and firewall configurations
• Conduct regular vulnerability scanning and coordinate timely patching and remediation across all systems
• Oversee identity and access management (IAM), including MFA enforcement, conditional access policies, and periodic privileged access reviews

Technical Security

• Harden cloud environments (application services, storage, and networking) and perform ongoing security configuration reviews
• Assess and secure third‑party vendors, external partners, integrations, and APIs and Manage encryption standards, SSL/TLS certificates, and secure data transmission mechanisms
• Support secure development practices by reviewing system designs, configurations, and code changes for security risks

Requirements / Skills

• Relevant professional certifications such as CompTIA Security+, CEH, CISSP, CISM, Microsoft SC‑series or equivalent5 years of hands‑on cybersecurity experience, preferably within regulated environments such as financial services or insurance
• Working knowledge of MAS TRM Guidelines and PDPA requirements
• Practical experience with Microsoft Azure security, including Defender for Cloud, Azure AD / Entra ID, Conditional Access, and Network Security Groups
• Experience managing endpoint protection solutions, SIEM or log management platforms, and vulnerability management tools
• Proven ability to operate independently and manage the full cybersecurity lifecycle without the support of a large security team Strong documentation and communication skills, with experience producing policies, risk assessments, and compliance artefacts.