Job Description

Location: Singapore, Singapore
Thales people architect identity management and data protection solutions at the heart of digital security. Business and governments rely on us to bring trust to the billons of digital interactions they have with people. Our technologies and services help banks exchange funds, people cross borders, energy become smarter and much more. More than 30,000 organizations already rely on us to verify the identities of people and things, grant access to digital services, analyze vast quantities of information and encrypt data to make the connected world more secure.
Thales established its presence in Singapore in 1973 to support the expansion of aerospace-related activities in the Asia-Pacific region. Throughout the last four decades, the company grew from strength to strength and is today involved in the primary businesses of Aerospace (including Air Traffic Management), Defence & Security, Ground Transportation and Digital Identity & Security. Thales today employs over 2,100 people in Singapore across all its business areas.
Job Responsibilities:
Security Governance, Risk and Compliance

• To achieve accreditation and ensure ongoing compliance by the company with the security regulatory requirements with respect to Card Manufacturing, Perso Bureau Processing and Chip Embedding as required by relevant organizations (PCI-CP Security Standard, Visa, MasterCard, Amex, CUP, JCB, GIE-CB, OSPAR, ISO 27001, ISO 14298 among others)
• Act in accordance with the Corporate Security Management System and Corporate Security Policy to manage all aspects of personnel, physical, audit and IT Security for Singapore site;
• Implement and monitor Logical and Physical Security Governance processes and procedures based on Corporate Security Policy
• To monitor and conduct internal audits/reconciliation of security activities in the production and advise the management team on all matters concerning physical, card production & Logical security.
• Promote the defined environmental policy at all levels of the department and ensure compliance with applicable legislation.
• To ensure that the timeline of Internal Audit plan is executed base on the approved time line
• Main driver of the Security awareness training and ensure appropriate level of security consciousness.
• Initiate action to prevent the occurrence of any nonconformities relating to the product, process and quality system.
• Handling and ensuring that all manufacturing Logical Keys (encryption keys) are manage according to standards.
• Effectively communicate security risk to stakeholders
• Main focal point on handling Security incident for both Physical and Logical Security
• Act as subject matter experts and provide advice on any Security related requirements and certifications

IT Security and Operations

• Overall in charge for SG IT Security operation (e.g. Incident management, Change management, Log review, Firewall review, Antivirus monitoring and etc.)
• Driver on the review of the results from Internal/External Vulnerability Scan, Penetration Test result. Analyze and work with related owners to fix the critical and high findings within specific time period
• Conduct security review and provide appropriate recommendations to strengthen the IT Security posture and to address the gaps.
• Main focal point on IT Security Incidents and virus alerts detected by the SOC (Security Operations Command Center team) are close accordingly
• Validate and review all System Change request and ensure all risk are mitigated based on the proposed implementation plan
• Participate in new IT projects or solution implementations

Physical Security and Operations

• Overall in charge for SG Security operation (e.g. managing security guards, review of access violation & clearing door alarms, validation of secured shipment, CCTV management, supervising the destruction of secured materials and etc.)
• Overseeing Security Operation (visitors, contractors and staff handling)
• To direct and investigate all matters where actions of staff or others could or have caused a breach of security and advise on procedures to be implemented to prevent re-occurrence;
• Badge issuing and managing physical access control system
• To ensure that the security systems and all security supporting system like access control, alarm and video systems are in operating conditions
• Manage secure destruction of sensitive materials and ensure that all security elements are destroyed based on the requirements
• Qualify appointed forwarders and conduct Security Transportation audit in a regular basis
• Implementing and maintaining Safety Rules & Regulations in the company.

Additional

• Any other special projects as specified, as and when required.
• The job holder shall at all times during the employment with the company, respect and comply with the Thales DIS Quality, Health, Safety, Environmental & Security requirements during the performance of his/her duties.

Job Requirements:

• Bachelor Degree in IT related field or equivalent
• At least 5 years of experience of IT Security or Audit experience in established firm preferred, with investigative experience and an ability to prepare and present comprehensive written report and documents.
• IT security knowledge is an advantage
• CISSP, CISA, CISM is an advantage
• Excellent knowledge of the security challenges in Singapore for an individual and commercial company in the IT and high-tech environment
• High interpersonal skills, which will permit successful management of all aspects of security, together with a developing ability
• Demonstrates great maturity and holds a very high degree of integrity, confidentiality and discretion;
• Strong interpersonal and communication skills required;
• Ability to liaison and communicate with all levels of people;
• Independent, approachable and analytical; and
• Able to take up highly pressurizing environment.

At Thales we provide CAREERS and not only jobs. With Thales employing 80,000 employees in 68 countries our mobility policy enables thousands of employees each year to develop their careers at home and abroad, in their existing areas of expertise or by branching out into new fields. Together we believe that embracing flexibility is a smarter way of working. Great journeys start here, apply now!