About Us

Headquartered in Singapore, SATS Ltd. is one of the world’s largest providers of air cargo handling services and Asia’s leading airline caterer. SATS Gateway Services provides airfreight and ground handling services including passenger services, ramp and baggage handling, aviation security services, aircraft cleaning and aviation laundry. SATS Food Solutions serves airlines and institutions, and operates central kitchens with large-scale food production and distribution capabilities for a wide range of cuisines.

SATS is present in the Asia-Pacific, the Americas, Europe, the Middle East and Africa, powering an interconnected world of trade, travel and taste. Following the acquisition of Worldwide Flight Services (WFS) in 2023, the combined SATS and WFS network operates over 225 stations in 27 countries. These cover trade routes responsible for more than 50% of global air cargo volume. SATS has been listed on the Singapore Exchange since May 2000. For more information, please visit www.sats.com.sg

Why Join Us

At SATS, people are our greatest asset and we build our success on the knowledge, expertise and performance of every contributor, by embracing diversity and uniqueness. As part of our holistic approach and commitment to embracing FAM (Fulfilling, Appreciated, Meaningful) in the workplace, we offer the runway to develop Fulfilling careers that foster your career growth, recognising and Appreciating the strength of talent and capabilities that we continue to build internally; and inspiring and encouraging each other to make Meaningful contributions in the work we do at SATS.

Key Responsibilities

The Compliance Senior Analyst is responsible for leading key cybersecurity compliance, assurance, and regulatory readiness activities across SATS’ global cybersecurity environment. The role translates legal, regulatory, contractual, and industry requirements into actionable cybersecurity policies, control expectations, assessment plans, and evidence-based assurance outcomes.

Acting as a senior subject-matter expert, this role partners with Security Architecture, Risk Management, Internal Audit, Legal, Enterprise Risk, IT, and business stakeholders to assess compliance posture, identify gaps, drive remediation, support regulatory and certification submissions, and provide management-ready reporting on cybersecurity compliance risks and obligations.

Key Responsibilities

• Lead cybersecurity compliance and assurance activities across applicable regulatory, contractual, and industry frameworks, including ISO/IEC 27001, NIS2, PCI DSS, and SATS internal cybersecurity policies and standards.
• Govern the enterprise cybersecurity awareness and training program by defining requirements, aligning content to risks and compliance obligations, monitoring completion and effectiveness, and reporting outcomes.
• Own and maintain the cybersecurity compliance obligations register, including mapping requirements to SATS policies, standards, controls, evidence expectations, and assessment procedures.
• Lead the cybersecurity policy and standards governance lifecycle, including review cycles, stakeholder consultation, exception handling, approval tracking, publication, and adoption monitoring.
• Plan and execute enterprise cybersecurity compliance assessments, including defining scope, evidence requirements, control owner engagement, gap analysis, findings documentation, and remediation tracking.
• Lead cybersecurity audit and certification readiness activities by preparing control owners, reviewing evidence quality, managing auditor interactions, coordinating interviews, and driving closure of findings.
• Monitor changes in applicable cybersecurity and technology regulations, assess impact to SATS, and recommend updates to policies, standards, controls, training, and assurance activities.
• Manage cybersecurity compliance exceptions and deviations, including validation of compensating controls, risk acceptance coordination, expiry tracking, and escalation of overdue or high-risk items.
• Develop compliance dashboards, KRIs, KPIs, and management-ready reporting covering compliance posture, audit readiness, control gaps, training compliance, remediation progress, and exceptions.
• Act as a senior advisor to business, IT, cybersecurity, Legal, Enterprise Risk, Internal Audit, and control owners on cybersecurity compliance expectations and practical implementation.
• Lead compliance workstreams and provide guidance, quality review, and task direction to interns, consultants, or other resources supporting the Cybersecurity Compliance function.

Key Requirements

• Bachelor’s degree in Information Security, Information Systems, Compliance/Law, or related discipline; equivalent experience considered.
• Relevant certifications preferred (e.g., ISO 27001 Lead Auditor/Implementer, CISA, CISSP, PCI ISA).
• Minimum 5 to 10 years of experience in cybersecurity compliance, technology risk, audit, policy governance, control assurance, or regulatory readiness within a regulated, multinational, or standards-driven environment.
• Demonstrated experience leading compliance assessments, audit readiness activities, control testing, evidence reviews, findings management, and remediation tracking.
• Experience preparing or supporting regulatory, certification, or compliance submissions, including ISO/IEC 27001, NIS2, PCI DSS, or comparable cybersecurity frameworks.
• Strong experience translating regulatory and control requirements into practical policies, standards, procedures, evidence expectations, and business-facing guidance.
• Experience advising senior stakeholders, control owners, auditors, consultants, and cross-functional teams on cybersecurity compliance obligations and remediation priorities.
• Experience developing compliance dashboards, management reports, KRIs, KPIs, and governance materials.
• Experience governing enterprise security awareness or compliance training programs would be advantageous.
• Exposure to leading consultants, interns, analysts, or project-based resources preferred.