Share this Job

Senior War Game Specialist, Cyber Range

Date: 05-Apr-2019

Location: Singapore, Singapore

Company: Singtel

We are currently seeking an experienced manager to develop content and conduct cyber wargaming exercises leveraging on a Cyber Range.  Cyber security practitioners with pen testing and Incidence response experience are encouraged to apply.  This security practitioner will work closely with cyber range masters, Trustwave SpiderLabs and various technology partners to co-create scenarios that simulate attacks on corporate networks.  Other than being a range commander to hold cyber exercises, the individual is expected to provide consultancy and training services offered within the Cyber Security Institute.    

 

Overview:

Singtel CSI is keen to bolster its delivery capabilities by seeking an experience and articulate cyber security practitioner to work on the delivery of our existing training programs as well as develop new cyber range related services.  The training modules will target both technical and management/board participants with the trainer having the ability to share and relate security concepts with practical life experiences.  On the non-technical aspect, the trainer will work with other partners to co-deliver different segments and have the ability to elevate and translate the technical aspect of cyber to business issues and impacts to the organization.  On the aspect of developing advanced cyber range services, the individual will work with the delivery team to create and build new Intellectual Property on how critical infrastructure organizations (CII) can leverage on the range to perform tactical and management training to prepare such organizations to respond swiftly and effectively to cyber attacks.

 

Duties & Responsibilities:

  • Develop and launch training programs that maximize the features of security appliances in the cyber range environment
  • Create and deliver training material including lab exercises
  • Conduct classroom training
  • Test and evaluate student performance
  • Participate in information security development projects in areas such as penetration testing, threat modelling, web application security, intrusion detection, IT compliance and security operations
  • Build IP for both training and cyber range exercises focused on threats to CII.
  • Work with different partners to create a multi-disciplinary cyber security offering that focuses on detection and response.  The following segments may be included but not limited to Incident response, risk management and crisis communications. 
  • Build training programs and consultancy services that are recurring and on a retainer basis to ensure continuous improvement of the client's people and process. 
  • Assist organizations to develop an integrated cyber response plan through working with our partners

 

Education & Competency Requirements:

  • Relevant degree in IT/computer science or OT (Control Systems Engineering or Electrical/Electronics Engineering) with/or at least 6 - 8 years experience in the Information Security  field
  • Advanced Certificate in Training and Assessment (ACTA) certified (good to have)
  • Possessed security certifications such as CISSP, CISM and GIAC SANS.
  • Strong subject matter expertise and operational experience working for CII in either transport, energy, aviation, manufacturing or other OT environments.  
  • Excellent presentation and communication skills
  • Experience in penetration testing, vulnerability assessment, incident response and security operations
  • Hands-on experience with networking and security equipment
  • Familiarity with web technologies
  • System administration experience with both Windows and Linux/Unix operating systems
  • Knowledge of OT technology components such as PLC, HMI, RTU, IED, and SCADA communication protocols such as modbus, dnp3, profibus, iccp, and others.
  • Hands on experience operating and managing PLCs manufactured by one or more of the following:  Siemens, Honeywell, Schneider Electric
  • Familiar with different IT regulations, compliance and audit standards
  • Understanding of security policies and best practices