Share this Job

Consumer Networks - Manager, Network Security Governance (115363)

Date: 17-Nov-2020

Location: Singapore, Singapore

Company: Singtel

Responsibilities:

 

Policy & Standards

  • Assist the Supervisor to establish, communicate and maintain Cybersecurity policies, standards and guidelines. Ensure that Cybersecurity requirements are practical and communicated to all relevant parties.
  • Coordinating the Cybersecurity standards, strategies and responses across GTN is essential. Ensure policies, standards and guidelines incorporate regulated requirements.
  • Work with GTN teams to ensure effective implementation of the GTN Cybersecurity policy, standards and guidelines.
  • Work with Singtel’s Cybersecurity Resiliency team on emerging and new security technologies for possible adoption and update the GTN Cybersecurity policy, standard and guidelines.
  • Perform periodic review and updates on the GTN Cybersecurity policy, standards and guidelines.

 

Cyber Security Awareness

  • Assist the Supervisor in developing and implementing a Cybersecurity Awareness program for GTN. Ensure that the Awareness Program is effective in terms of coverage and message to the Staff and Management.
  • Ensure that GTN units understand their roles and responsibilities in complying to regulatory requirements for Cybersecurity.

 

Information Security Governance

  • Assist the Supervisor, in working closely with GTN teams to maintain a balance between service capability and agility, and the management of security-related risks.
  • Ensure that GTN units understand their role and responsibilities in ensuring that all Systems, Third Party Service Providers and Internet Presence have acceptable Cybersecurity practices, as per Singtel and GTN Cybersecurity Policy and Standards.
  • Ensure that GTN units understand their role and responsibilities in ensuring that all Systems, Third Party Service Providers comply to regulatory requirements for Cybersecurity.
  • Demonstrate professional, pro-active qualities in dealing with internal clients and stakeholders.
  • Attend required meetings on information security governance, risk, and compliance topics

 

Information Security Risk Management

  • Assist the Supervisor in ensuring that the Cybersecurity Risk Management Process is effective for all in-scope Systems, Third Party Service Providers and Internet Presence. Provide administrative support for the Risk Management process.
  • Escalate issues arising from non-compliance with the policy and standards to the reporting manager.
  • Ensure all identified cybersecurity risks are managed properly and follow the Singtel’s risk management framework.

 

Continuous Improvement

  • Keep abreast of relevant technology to improve service delivery.
  • Identify areas of improvement in delivering services through process improvement and tasks automation.
  • Keep all role related technical documentation current.
  • Create or improve technical documentation where it is lacking

 

Communication and Teamwork

  • Work with all stakeholders to meet security requirements.
  • Promote knowledge sharing, effective communication and teamwork with peers.
  • Report information security control effectiveness through dashboards.

 

 

The Ideal Candidate should have/be:

  • Bachelor Degree in Computer Science, Computer Engineering, Electrical Engineering or other relevant field of study
  • Minimum 5 to 8 years of experience as a security architect/network security architect.    
  • Minimum 2 years of practical experience developing information security policy, practices, standards, and guidelines.
  • Minimum 1 years of practical experience developing and implementing awareness training programs
  • Minimum 1 years of practical experience in vendor security management.   
  • Experience working as part of an internal Audit, Governance and Compliance team.  
  • Advanced understanding in the following areas: Platform Security, Data Security, Network Security, Physical Security, Security Assessment Tools, Security Monitoring Tools.   
  • Advanced understanding in the following areas: Security Governance Standards, Business Continuity Planning, Enterprise Risk Management, Computer Security Incident Response, and Security Compliance Audits.  
  • Good analytical and communication skills.
  • Ability to work as a team member and independently with minimal supervision.
  • Have exposure to other compliance audits such as PCI, SOX, mostly related to security part.