Job Description

:OverviewWELCOME TO SITAWe're the team that keeps airports moving, airlines flying smoothly, and borders open. Our tech and communication innovations are the secret behind the success of the world's air travel industry.You'll find us at 95% of international hubs. We partner closely with over 2,500 transportation and government clients, each with their own unique needs and challenges. Our goal is to find fresh solutions and cutting-edge tech to make their operations run like clockwork. Want to be a part of something big?Are you ready to love your job? The adventure begins right here, with you, at SITA.PURPOSEThe Information Security Manager is on the front line of protecting a SITA's assets from threats. Successful candidate will serve as the Information Security Manager and will be responsible of all information security and cyber security activities related to the confidentiality, integrity, and availability of the organisationxe2x80x99s business operation in the region.A key element of this role is working with the management to ensure companyxe2x80x99s compliance to cyber security regulations as well as determine acceptable levels of risk for the organisation. This position is also responsible in managing and improving SITAxe2x80x99s information security management programme in Singapore. The job requires strong technical, organisational and communication skills.KEY RESPONSIBILITIES

• Lead and provide guidance on Cybersecurity Governance, Risk and Compliance across Asia Pacific (APAC) sites.
• Work closely with key stakeholders (such as Senior Management, Legal, Customers, etc.) to ensure compliance to cyber security regulations (such as Cybersecurity Act of Singapore) and ISO/IEC 27001 Information Security Management System (ISMS).
• Establish and maintain information security policies, standards, and guidelines according to SITA, regulators, and customerxe2x80x99s requirements. This includes conducting regular reviews to ensure compliance to the established policies and standards.
• Manage cybersecurity audits (i.e. Critical Information Infrastructure (CII) Audit and ISO/IEC 27001 Audit).
• Oversee security-related vendors and service providers to ensure they meet security requirements and contractual obligations.
• Establish risk management process and implement risk mitigation strategies for the identified cybersecurity risks and vulnerabilities.
• Develop Cybersecurity Awareness and Training Program, including planning, coordinating, and conducting relevant training for cybersecurity, and assurance to raise and maintain cybersecurity awareness of operators and users.
• Contribute as cybersecurity subject matter expert supporting SITA Commercial Bidding Team in tender bidding for projects.
• Lead incident response, including taking lead in responding to incidents / threats, and co-ordination with internal stakeholders, Customers, and Local authorities (such as Civil Aviation Authority of Singapore (CAAS) and Cyber Security Agency of Singapore (CSA))
• Provide mentoring to cybersecurity interns and graduates.

QualificationsEXPERIENCE

• Knowledge in information security and cyber security standards, frameworks, and code of practices such as ISO/IEC 27001, ISO/IEC 27002, NIST Cyber Security Framework, etc.
• Knowledge in cyber security regulations in Singapore such as CII CCoP, ACCoP, Security by Design Framework, etc.
• Planning, researching and developing security policies, standards and procedures.
• Knowledge of risk assessment tools, technologies and methodologies.
• Knowledge in anti-virus software, intrusion detection, firewalls and content filtering.

KNOWLEDGE & SKILLS

• The ability to multi-task
• A keen eye for detail
• Strong organisational skills
• The ability to thrive in fast-paced, high-stress situations
• The ability to communicate security issues to peers and management

EDUCATION & QUALIFICATIONS

• Bachelorxe2x80x99s degree in Computer Science or related field, or equivalent experience.
• One to three years of industry experience in an information security function.
• Certified Information Systems Security Professional (CISSP) or CISM xe2x80x93 Certified Information Security Manager (CISM) is preferred.

WHAT WE OFFERWe're all about diversity. We operate in 200 countries and speak 60 different languages and cultures. We're really proud of our inclusive environment. Our offices are comfortable and fun places to work, and we make sure you get to work from home too. Find out what it's like to join our team and take a step closer to your best life ever.xf0x9fx8fxa1 Flex Week: Work from home up to 2 days/week (depending on your team's needs)xe2x8fxb0 Flex Day: Make your workday suit your life and plans.xf0x9fx8cx8e Flex-Location: Take up to 30 days a year to work from any location in the world.xf0x9fx8cxbf Employee Wellbeing: We have got you covered with our Employee Assistance Program (EAP), for you and your dependents 24/7, 365 days/year. We also offer Champion Health - a personalized platform that supports a range of wellbeing needs.xf0x9fx9ax80 Professional Development: Level up your skills with our training platforms, including LinkedIn Learning!xf0x9fx99x8c Competitive Benefits: Competitive benefits that make sense with both your local market and employment status.SITA is an Equal Opportunity Employer. We value a diverse workforce. In support of our Employment Equity Program, we encourage women, aboriginal people, members of visible minorities, and/or persons with disabilities to apply and self-identify in the application process.

SITA