IT Auditor (Risk, Security & Compliance) - #1102819

AGES Systems Gelderfarenit


Date: 19 hours ago
District: Marine Parade
Salary: $4,000 - $5,000 / month
Contract type: Full time
Work schedule: Full day
AGES Systems Gelderfarenit

Established in 2004, AGES is a comprehensive solutions provider for various cyber and IT applications. The company has garnered substantial market recognition and is accredited as a Qualified Security Assessor (QSA) organization. AGES offers independent security audits, assessments, and compliance validation services.

The evolving challenges in security compliance within the rapidly expanding and competitive IT, payment, and cyber industries underscore the need for tailored solutions. AGES aims to provide a comprehensive solution through modularized service packages. These packages encompass concept design, feasibility evaluation, business model assessment, use cases, and partnering models, all supported by professional project management.

As a pioneer in cryptography, cyber security, and related payment environments, AGES has garnered substantial market recognition and is recognized by numerous prominent organizations.

AGES has also garnered relevant in-depth experience with significant organizations such as Payment Card Industry (PCI) Security Standards Council (SSC), MasterCard International (MCI), VISA, American Express (AMEX), JCB, Diners/Discover, NPCI – RuPAY, and UnionPay International (China UnionPay – UPI), enable AGES to effectively reach out to diverse clientele across global markets.

Organizations engaged in physical and logical security activities related to the production and provisioning of payment cards for various brands must adhere to the PCI Card Production and Provisioning (CP) requirements. AGES is a market leader in PCI CP security assessments that encompass physical and logical security, cybersecurity, information security, network and data security, and cryptographic key management. AGES has developed into a critical source of security and certification support for numerous card plants.

AGES is also a pioneer in scheme-specific assessments covering Over-the-Air (OTA) payment-related services, Trusted Service Managers (TSM), and tokenization implementations. AGES methodologies for remote assessment have been approved and accepted by various payment brands during the COVID-19 pandemic.

AGES is committed to integrating sustainability and scaling its ESG initiatives into its core business operations to facilitate the transition towards a cleaner and more sustainable future for society. We envision significant growth in its security audit programs to position itself among the global top audit providers for these programs.


Job Description:

  • We are looking for competent individuals to join our team, to conduct security assessments and vulnerability testing relating to the payment and IT security industry. Weekly traveling is required during peak season.

  • To evaluate technologies against cybersecurity standards and stay current on IT security regulations and standards (eg: PCI CPSA, PCI DSS)

  • Undergo company bond-sponsorship for industrial professional certifications, courses, examinations and overseas on-the-job trainings.

  • This is an ideal role for a highly organised individual who has a good command of language, possess excellent interpersonal skill, good writing skills and holds a keen interest in IT to join our expert IT auditing and security

Your Key Responsibilities:

  1. Conduct compliance assessment, assessment reporting, vulnerabilities scans and network penetration tests for local and overseas customers (if required), enhancement of in-house penetration test system. Network penetration testing follows the NIST Special Publication 800-115 using tools not limiting to Metasploit, Wireshark, Nessus, Nikto, Nicat, John the Ripper, AppScan, Greenbone, and Netcraft.

  2. Configuration of VM image for VM Box used for vulnerability scans and network penetration tests.  VM image may deploy Kali Linux.

  3. Clients in scope cover but not limited to organisations certified under the Payment Card Industry (PCI) Card Production (CP), and PCI Data Security Scheme (DSS) programs.

  4. Document work papers, report preparation and quality assurance, and attend in house training sessions (if any).

  5. Any other ad-hoc tasks and job rotation as assigned by your reporting officer.

Requirements:

  • Degree in Computing or equivalent with minimum 1 to 10 years of IT working experience;

  • Able to travel weekly for short trips;

  • Ability to speak and write to our Taiwanese speaking clients.

  • Certified CISA and CISM/CISSP is required.

Why join our team?

AGES has a friendly working environment with a highly motivated and hard-working team. This role should appeal if you enjoy verifying information, has an inquisitive mind, is an effective communicator and enjoy challenging yourselves to make a positive impact to our clients and our peoples.

The IT security and audit industry is fast-paced and busy, so we are looking for colleagues who have a positive and results focused attitude. You should also like traveling worldwide for work related projects too.

This breadth and depth of experience, combined with technical and communication skills in the payment security assessment domain, makes you a valuable asset to any organisation, opening up opportunities in areas such as IT Risk Management, IT Compliance, Technology Operations, and Cyber Information Security.

How to apply

To apply for this job you need to authorize on our website. If you don't have an account yet, please register.

Post a resume