Senior Information Security Specialist

Company Description

GECO Asia, established in 2006 as part of the German GECO-Group and operating independently since 2020, is a leading IT Consultancy Services company based in Singapore, with a presence in Indonesia, Malaysia, China, and delivery centers in the Philippines. With over 18 years of experience, GECO Asia specializes in cutting-edge technologies including Artificial Intelligence, Blockchain, Cloud Computing, and Data Science/Engineering, driving digital transformation across the Asia Pacific region. The company has received multiple accolades, including the Innovation Partner for External Talent Award from Accenture Philippines and the SkillsFuture Employer Gold Award. GECO Asia is committed to fostering innovation, operational efficiency, and competitive growth among its clients.

Job Summary:

This position serves as a Project Lead for U.S. security initiatives and projects.

1. Responsible for the planning and implementation of the security integration in M&A as well as other U.S. security initiatives to achieve security and corporate goals.
2. Facilitate efficient project execution and effective communication,collaborationand decision-making

Provide project managementexpertiseby offering training and guidelines, developing robust processes,identifyingareas for improvements, and recommending project management tools and best practices to enhance project execution and delivery

Responsibilities:

Project Planning & Execution

1. Define project scope,objectives, deliverables, timelines, and resources in collaboration with key stakeholdersin order toensure clear expectations and alignment
2. Develop andmaintaincomprehensive project documentation, including detailed project plans, schedules, status reports, and meeting minutes to provide transparency and traceability throughout the projectlifecycle.
3. Lead and coordinate cross-functional project teams to drive execution, clarify priorities, and provide regular updates and reports to stakeholders.
4. Track progress through milestones and proactively manage risks, issues, and dependencies to keep the project on schedule and within scope.
5. Ensure projects are delivered on time, within budget, and with the required quality standards to meet business and stakeholder expectations.

Risks and Change Management

1. Identify, assess, and manage project risks, issues, and assumptionsin order tominimize impact on scope, schedule, and budget throughappropriate mitigationplans
2. Manage stakeholder expectations and resolve conflicts or blockers tomaintainproject momentum and team alignment.
3. Manage change requests, including impact assessments on scope, timelines, resources, and budgetin order tosupport informed decision-making.
4. Ensure proper documentation and approvals for major project decisions and changes tomaintaingovernance, compliance, and auditability.

Continuous Improvement

1. Conduct post-implementation reviews and capture lessons learned to drive continuous improvement across futureprojects.
2. Recommend process improvements and best practices to enhance project execution and delivery

Qualifications:

Certification/Licenses:Certifications related to information security management or cybersecurity technology, such as CISSP, CISM, CISA, or CompTIA Security+

Certifications related to project management, such as PMP, PRINCE2, or Scrum Master

Working Experience required and preferred:At least 5 years of experience with information security management, cybersecurity control frameworks and/or cyber or information security auditing

At least 3 years of experience inprojectmanagement role.

Behavioral/technical skills; Competencies

• Strong understanding of cybersecurity frameworks and operations (e.g., ISO/IEC 27000, NIST, CIS, or MITRE ATT&CK)
• Strong understanding of project management methodologies (e.g., waterfall, agile, or hybrid)
• Strong analytical and problem-solving skills with a focus on detail.
• Excellent communication, presentation, and stakeholder management skills
• Demonstrated experience in leading cross-functional teams and delivering projects end-to-end
• Leadership and team coordination
• Time management and prioritization
• Results orientation