Job Opportunity: Regional Internal Audit Lead (Technology & Cloud SME)

Location: Singapore (Regional Hub)

Industry: Global Energy / Enterprise Infrastructure

Salary: Up to SGD 15,000 / month + Performance Bonus

About the Role

We are looking for a Regional Internal Audit Lead to serve as the Subject Matter Expert (SME) for our Technology and Cloud portfolio. In an era where energy grids and enterprise operations are increasingly digitized, the "cost of a glitch" or a security breach can be catastrophic.

You will not just be auditing "IT controls"; you will be assessing the architectural integrity of our cloud environments, the resilience of our cybersecurity defenses, and the maturity of our data privacy frameworks across the Asia-Pacific region. You will provide the Board and the CTO with the technical assurance needed to scale our digital operations safely.

Primary Technology & Cloud Audit Domains

As the Lead SME, you will oversee and execute high-complexity audits within the following domains:

1. Cybersecurity & Threat Management

• Audit the effectiveness of Security Operations Centers (SOC) and incident response protocols.
• Evaluate Network Security, including firewalls, Zero Trust architecture, and vulnerability management.
• Assess the technical security of ICS/SCADA systems-the critical infrastructure that controls energy production and distribution.

2. Cloud Governance & Infrastructure

• Audit the configuration and security of multi-cloud environments (AWS, Azure, and Google Cloud).
• Review "Infrastructure as Code" (IaC) pipelines and the governance of automated deployments.
• Evaluate cloud cost optimization and the technical management of shared responsibility models with cloud service providers (CSPs).

3. Data Privacy & Sovereign Compliance

• Ensure enterprise-wide compliance with regional data protection laws, including Singapore's PDPA and global standards like GDPR.
• Audit data classification, encryption at rest/in transit, and "Privacy by Design" in new software development.
• Evaluate the security of third-party data processing and cross-border data transfer mechanisms.

4. IT Operational Resilience & Disaster Recovery

• Audit the technical readiness of Disaster Recovery (DR) plans and high-availability systems.
• Evaluate the resilience of Business Continuity Plans (BCP) against ransomware and large-scale outages.
• Assess the "Mean Time to Recover" (MTTR) metrics for critical energy-grid software.

5. Emerging Tech & AI Governance

• Audit the ethical use and security of Artificial Intelligence (AI) and Machine Learning (ML) models.
• Review the governance of Internet of Things (IoT) sensors deployed across industrial assets.

The SME Candidate Profile

• Experience: 6-10 years of experience in IT Audit, Cybersecurity, or Cloud Engineering. Experience within a large-scale enterprise is essential.
• Technical Certifications: At least two of the following: CISA, CISSP, CISM, CCSP (Cloud), or CRISC.
• Education: Degree in Computer Science, Information Systems, or Engineering.
• Industry Background: Previous experience in Energy, Utilities, or Critical Infrastructure is a significant advantage.
  
  How to Apply
  
  Please submit your resume and a cover letter to juliah@gemini.sg. In your letter, please clearly outline your primary technical audit domain (e.g., Cloud Security, Privacy, or ICS/SCADA) and any specific certifications held.