Job Description

Responsibilities

• Lead and drive strategies to ensure strong cybersecurity governance, a resilient cybersecurity posture and robust security controls across the organisation
• Formulate cybersecurity strategies that support present and future organisation work, workplace and workforce.
• Provide oversight to company\xe2\x80\x99s information risk management framework across the Protect-Detect-Respond-Recover spectrum.
• Lead the Cybersecurity Operations Group and provide direction for continuous capability enhancement of the SOC, to ensure effective and timely detection and response to address cybersecurity threats and incidents.
• Report and communicate cybersecurity incidents, issues and risks to senior management committee to ensure cybersecurity concerns are adequately represented in organisational decisions and plans.
• Partner with Information Division to plan and cross deploy staff to deepen cyber security competencies and synergize in cyber technologies and in-house cybersecurity technologies from Information Division are leveraged to provide the cutting-edge in our cyber defence solutions.

Requirements

• Bachelor\xe2\x80\x99s Degree in Information Security, Information Engineering, Computing.
• Post Graduate Degree in Computer Science, Information Security, Cyber Security, Technology Management will be an advantage.
• Min. 15 years of experience working in cybersecurity fields and risk management
• Strong understanding in Enterprise IT infrastructure, Cybersecurity technologies, cybersecurity operations such as threat monitoring, threat hunting, incident response, cybersecurity assessments, cybersecurity risk management framework and policies.
• Proven strong leadership in managing and developing the team.
• Proven track record of working and collaborating with stakeholders across various levels and entities.
• Good communication and interpersonal skills across various levels in the organisation, including senior management team and various external stakeholders.
• Exhibit resilience and a positive attitude in tackling complex and large-scale security incidents.
• Proactive and self-driven to continually improve the status quo
• Passionate in developing the SOC team\xe2\x80\x99s knowledge and abilities, and cybersecurity vigilance and awareness of the organisation.
• Resourceful, strong work ethics and the ability to work independently in a fast-paced environment.
• Professional accreditation not limited to Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), Certified Information Systems Auditor (CISA), Certified in Risk Info Systems Control (CRISC), Certified Information Security Manager (CISM)