Assistant Manager – Cybersecurity & Compliance

Job Responsibilities

Technology Governance

· Drive the implementation of a robust Cyber governance and Cyber security risk management framework to ensure appropriate controls

· Review existing policies to ensure that the policies are updated to reflect accuracy on the evolving cyber threat and emerging cyber threats.

· Ensure appropriate cyber and technology strategy is planned and managed to ensure sufficient controls in place.

· Develop and maintain the Cloud Governance Framework with response to the Enterprise Risk Management, etc.

· Manage audit findings remediation.

Cybersecurity Compliance and Operation

· Conduct assurance review to ensure adherence of the defined governance principles to ensure expected value is delivered.

· Work with the technology team and business functions in automating process and compliance checks and participate in internal/external audits.

· Assess the cyber security risk of third-party vendors with an appropriate level of detail; Identify controls to address gaps in third party vendor relationships; Monitor the implementation of controls

· Manage and lead Security operation service provide in security operation matters

· Provide support in deploying cybersecurity solutions to internal and external stakeholders

· Assist in managing support issues for cybersecurity

· Ensure that detected cyber threats, risks and vulnerabilities are addressed promptly

· Conducting level 2 investigation and digital forensics on suspected cyber incidents and events

· Keep abreast of the latest industry cybersecurity practices and technology as well as emerging threats and vulnerabilities and recommend appropriate controls and solutions for implementation

· Plan, execute, advise on vulnerabilities and penetration testing on system, and ensure that closure is timely.

CyberSecurity Risk management

· Assess the cyber security risk of third-party vendors with an appropriate level of detail; Identify controls to address gaps in third party vendor relationships; Monitor the implementation of controls

· Act as the application security gatekeeper for the development of application.

· Liaise with the application project team on Penetration test findings closure and improvement; track finding and ensure timeliness closure.

· Ensure Cyber risk register are kept up to date and risk are calculated accurately.

Job Requirements

• Degree in Risk, Cybersecurity or related field
• At least 5 years of experience in cybersecurity operations roles
• Proficient in MS Office Applications / Microsoft Power Platform Applications and social media platforms
• Basic understanding of cybersecurity principles and best practices
• Ability to explain technical concepts to non-technical audiences
• Strong attention to detail and a commitment to maintaining accuracy and consistency in all communications.
• Self-motivated and proactive, with a demonstrated ability to work independently and take ownership of assigned tasks.
• Ability to manage multiple tasks simultaneously and carry out tasks which are assigned by the Management.
• Strong written and verbal communication skills
• Working hours - Monday to Friday, 8am to 530pm
• Working Location - Toll City, 60 Pioneer Road, Tuas