Job Description

About Doctor Anywhere Doctor Anywhere (DA) is on a mission to be the largest tech-enabled, omnichannel healthcare provider in Southeast Asia. First launched in Singapore in 2017, DA aims to bridge ga About Doctor Anywhere Doctor Anywhere (DA) is on a mission to be the largest tech-enabled, omnichannel healthcare provider in Southeast Asia. First launched in Singapore in 2017, DA aims to bridge gaps in the healthcare ecosystem through developing innovative solutions and technologies. In 2021, DA raised SGD$88 million in Series C fundraising (August 2021) and acquired Doctor Raksa, the biggest telemedicine platform in Thailand which further strengthened our foundation for telehealth and healthcare offerings. Today, DA is present in Malaysia, Thailand, Philippines, Vietnam, Indonesia and India, serving more than 2.5 million (and growing) users across the region. At DA, we believe in the value of innovation and collaboration. Grounded in our motto of 'Keep Going, Keep Growing', our team strives towards excellence every day, and values diversity in perspectives brought by every member. Together, we bring quality healthcare to your doorstep! About the team: The Infrastructure & Security team is the backbone of our platforms and services. Our Infrastructure & Security team is responsible for ensuring day to day operations, supporting and securing our large scale and highly critical applications and availability of our platform and services. Responsibilities Involve in the strategizing, reviewing and development of the organization policies and frameworks, in the areas of network resilience and cybersecurity Provide advice to stakeholders with respect to best practices, guidelines, references to ensure a consistent and effective approach across, to achieve the policy objectives. Review, endorse, align and ensure cybersecurity compliance with proper risk management and migration plans Engagement with industry and conduct technology scans on the latest information security products and technologies Identify cybersecurity risks from internal systems and vendors impacting the confidentiality, integrity and availability of the organization, perform threat assessments of identified vulnerabilities and define solutions to improve the cybersecurity posture. Liaise with stakeholders to align cyber security governance to maintain balance between service capability and management of cyber security related risks. Accountable for ensuring that security infrastructure operations handling the cybersecurity defenses remain current and relevant. Utilize and suggest improvements to the business, information and technical improvement to enhance the security posture of the organization Perform the duties as a Data Protection Officer for the organization Be the primary security SPOC for all customers including but not limited to Government, large and small enterprises. Requirements At least 10 years working experience in information security and compliances At least 5 years practical experience developing information security policy, practices, standards and guidelines. Experience working as part of an Internal Audit, Governance and Compliance team. At least five years' experience in data centres, hosting and network environments, large scale infrastructure management, cloud and infrastructure security In-depth technical knowledge of security engineering, IAM, security protocols and applied cryptography. Good understanding of DevSecOps practices and ways of implementing security for a fast paced environment Ability to multitask and prioritize effectively in a fast paced environment