Job Description

Requirement

Diploma/Degree in Computer Science, Information Systems, Engineering or a related Technology based education. At least 8 years of management/officer experience related to information security and solid grasp of ICT operations, security policies, business processes and the relationship between them. Knowledge and/or practical experience in most of the domains below: Cybersecurity Governance frameworks, Security Operations including incident response, Architecture design and threat risk assessment, Security Testing. Demonstrate knowledge and experience in security by design implementations, review of system architecture, DevSecOps practices, Infrastructure as Code (IaC) tools and securing CI/CD pipelines, cloud service models (IaaS, PaaS, SaaS)

Responsibilities

Lead the agency-level cybersecurity function in supporting agency digital transformation initiatives whilst ensuring digital resilience of agency systems. Formulate and implement agency cybersecurity strategies, policies and work plans, ensuring continuous alignment. Review and enhance risk management through threat-based risk assessments, risk mitigations, risk monitoring and reporting. Provide consultation and endorse risk management and mitigation plans from agency's project teams. Govern and enhance the agency's security posture by maintaining visibility and oversight of ICT assets, security architectures, and cybersecurity operations code of practices. Develop and maintain incident response plan and playbooks. This involves planning, designing and conduct of security incident response workshops and exercises as well as lead the investigation and management of ICT security incidents. Provide advisory and recommendations on appropriate cybersecurity technologies to be deployed that meets agency's business requirements and aligned with WOG-wide advisories and practices. Ensure secure by design ICT product development, and that security controls implementations comply with the defined security policies, standards and guidelines.



Interested applicants, please send your updated resume MS Word to hres@itcspl.com .

Please Indicate Job Code 109 "Agency Chief Information Security Officer (ACISO)

"

the email subject

We regret that only shortlisted candidates will be notified.



Garcia Diana Rosario (Reg. No. R1104129)


IT Consultancy & Services Pte Ltd


EA No: 92C5311 |





Please visit www.itcspl.com to learn more information about ITC