• jobs
  • 6 days ago

jobs description

Job Responsibilities
• Develop and maintain all documentation on security policies, standards and controls and enforce compliance with policies and procedures in entire organisation
• Develop, implement and monitor reporting mechanisms for governance, security and risk practices to support compliance and highlight areas of exposure
• Keep abreast of current advances in all areas of information technology concerning vulnerabilities, security breaches or malicious attacks, and maintain up-to-date knowledge of IT security industry
• Work with internal units to conduct regular reviews and audit of IT systems and applications to ensure statutory compliance
• Develops, tracks, and reports on Key Risk Indicators (KRIs) for information technology security risk assessment progress
• Support data protection under Personal Data Protection requirements
• Develop and maintain business continuity plan and IT disaster recovery plan. Conduct annual business continuity and IT Disaster recovery... testing
• Conduct IT risk assessment, review and reporting of key IT risk exposures and metrics, develop IT risk management framework and remediation plans to improve security posture with IT security best practices
• Assist in the execution for enterprise information and security governance and architecture roadmap
• Identify potential threats or attempted breaches to minimise vulnerabilities and risks in operating environment
• Design, develop and conduct cybersecurity and personal data protection act awareness workshops.
• Execute, manage, enhance and implement security operational processes to comply with IT regulatory and corporate requirements
• Responsible to ensure information security agreement is established for any required IT system/service contracts
• Perform incident and security management through Identify, Protect, Detect, Respond and Recover functions
• Any other related tasks assigned by supervisor

Job Requirements
• Bachelor’s Degree in Computer Science / Cyber Security / Information Technology or equivalent
• Minimum 3 years’ experience in IT audit, IT security or Data protection
• Possess relevant IT Governance, security and project management certifications (eg COBIT, CISSP, CISA, CISM, CITPM, PMP) will be advantageous
• Strong understanding of key IT security concepts such as access control, confidential data, encryption, business continuity, info-sec scans, and vendor apps
• Strong knowledge of IT organisation business processes and systems including (IT Security, data management, architectural and planning, technology life cycle management)
• Good understanding of risk management functions, including IT audit, cyber security, and/or IT compliance.
• Experience in or knowledge of 3rd party / vendor management lifecycle
• Good understanding of Singapore Personal Data Protection Act (PDPA)
• Strong oral and written communication skills to work effectively with staff at all levels of the organisation

Note: All new hires will be offered a two-year contract in the first instance. Contract renewal and emplacement on permanent appointment will be subject to continuous good performance


Apply - Assistant Manager (IT Security Operations) Singapore