Job Description

The role is primarily responsible for information security, security monitoring and cyber incident response & recovery within security team. The role is also to collaborate on designing network and infrastructure security and monitor for effective security control in place. This includes managing the outsourced Security Operation Centre and tweak the IT process for effectiveness and efficiency on addressing security risks.

Responsibilities:

• Work with IT and various departments in developing, reviewing and improving existing security controls implementation on any IT systems to ensure system is secure by design.
• To ensure any IT implementation is meeting the security requirements and appropriate design documentation is always maintained up to date.
• Evaluating any technology to be implemented by university to ensure data access and system integration is conducted securely and auditable.
• Act as subject matter of expert on information technology tools and security monitoring and able to propose appropriate cost‐effective solution to ensure IT operation is maintained smoothly and any anomaly can be detected and follow‐up as soon as possible.
• Manage third party outsourcer for cyber security operation centre contract and deliverables.
• Ensure security monitoring process integration with all critical IT system and workflow process is documented and executed flawlessly.
• Act as subject matter expert on security events monitored and security incidents reported during audit, to ensure any suspicious events are followed up and incidents are investigated and closed appropriately.
• Monitor security events and manage all security incidents to ensure probable cause analysis identified, containment is done timely, eradication of threat is completed and service recovery is performed.
• Track and follow‐up documentation related to an IT security incident including Root Cause Analyses (RCAs), lessons learned and Remediation Plans throughout the incident lifecycle till closure.
• Manage cyber incident response plan, updating of cyber incident response playbook and perform regular table‐top exercise as well red teaming as required with all stakeholders.
• Identify any security gaps from incidents and recommend appropriate measures to close the gap.
• Continuously improve the security monitoring process to automate log event correlation and security response to ensure high risk events are identified and impact of security incident is minimized.
• Regularly reports event monitoring and incident metrics.
• Support any information technology and information security activities or projects as deemed required by Head of IT Security
  

Requirement:

• 4 or more years working in Cyber Security Incident Response role with experience in examining suspicious/malicious network events, analysing malicious code/exploits, and system/network forensics
• Experience in security aspects of multiple platforms, operating systems, software, communications and network protocols or an equivalent combination of education and work experience
• Good knowledge and experience with ISO27001 implementation and cloud security like Amazon Web Services (AWS), Microsoft Azure and SaaS solutions, security standards and frameworks like NIST, ISO27001 and CSA Security‐by‐Design (SB) is desirable
• Excellent organizational, interpersonal and project management skills
• Excellent communication skills both written and oral
• Experience on managing security in complex environment
• Candidate with security qualification like GCIH, ECIH, CISSP, CISM is preferred
  

Interested candidates are invited to submit their MS Word formatted CV with expected remunerations to cs.seh@jondavidsongroup.com .

• JonDavidson Pte Ltd • EA Lic-08C4705 • Reg No-R1440770 •