Job Description

Security Operations function oversees the overall operations (including insider threat and cyber threat intelligence), as well as implementing effective cyber security controls, regarding IT, Information, and Data security across NTUC Income and its subsidiaries. Besides day-to-day operations, this role is responsible for strategic vision, scoping of requirements, system design, applications development, production implementation, incident response, budgetary control and adherence to any necessary protocols, regulations or legal requirements. Reporting to the Head of Information Technology Risk & Security (ITRS) department, he/she will have the following responsibilities: PRIMARY RESPONSIBILITIES

• Work with Head of ITRS to review the cyber security roadmap and strategy to be current with existing and emerging cyber threat landscape;
• Be the security subject matter expert and collaborate with infrastructure and application team to enhance, configure and support existing and new enterprise security solutions;
• Generate regular operational dashboard and matrices to report on the enterprise security posture, and the effectiveness of threat monitoring and responses;
• Collaborate with Enterprise Architecture Office to maintain up-to-date detailed enterprise security architecture;
• Develop and enhance the hybrid Security Operations Centre (SOC) for advanced cyber threat monitoring and detection, early warning and active defense capabilities;
• Develop and implement cyber resilience frameworks, standard operating procedures and playbooks for cyber security operations and incident response;
• Evaluate new technology (including machine learning and artificial intelligence) to strengthen the cyber defense to better protect, detect and respond to cyber threats;
• Streamline workflow to reduce manual effort for incident response and investigation;
• Manage staff performance and optimization of resources. Coach and mentor staff and identify high potential talent to enhance their performance;
• Other duties may be assigned.

Job Requirement

EXPERIENCE

• Degree holder in Information Technology, Information Systems, Computer Science or equivalent.
• CISSP, CISM, CRISC or SANS certifications will be an advantage.
• More than 7 years of working experience in IT Security with SOC or Incident Response operation experience in Financial Services Industry;
• Familiar with MAS Technology Risk Management and MAS Cyber Hygiene, MAS Outsourcing, PDPA;
• In-depth experience with solutioning and implementation of security tools such as Log management, EDR, PAM, DAM, IPS/IDS, Anti-DDoS, SIEM, Data Leakage Prevention, Proxy, Automation & Orchestration, CASB and FW;
• Experience in design and implementation of a secure infrastructure on major Cloud platform providers and have knowledge of cloud security best practices and industry security requirements.