Security and Compliance Manager (SMO)
Date: 19-May-2023
Location: Singapore, Singapore
Company: Singtel Group
About NCS
NCS is a leading technology services firm with presence in Asia Pacific and partners with governments and enterprises to advance communities through technology. Combining the experience and expertise of its 12,000-strong team across 66 specialisations, NCS provides differentiated and end-to-end technology services to clients with its NEXT capabilities of digital, cloud, platforms as well as core offerings in application, infrastructure, engineering and cyber security. NCS also believes in building a strong partner eco-system with leading technology players, research institutions and start-ups to support open innovation and co-creation. For more information, visit www.ncs.co
Will you be part of the extraordinary?
We're guided by our vision of advancing communities, and bringing people and technology together to make the extraordinary happen. NCS creates end-to-end technology solutions and services clients with its NEXT capabilities of digital, cloud, platforms as well as core offerings in Applications, Infrastructure, Engineering and Cyber Security, working on projects that impact millions every day. With our passion to innovate, you can tell that we're more than ready to meet the future. Join us and be part of this extraordinary journey too.
What will you be expected to do?
IT Governance and Security Team is responsible for the day-to-day management, monitoring and reporting on the systems and processes that support the IT governance, risks and security. IT Governance and Security Team The following are the scope work require:
- Develop frameworks and processes to support IT Governance and Security.
- Develop, implement and monitor reporting mechanisms for governance, security and risk practices to support compliance and highlight areas of exposure
- Provide guidance to other IT and business units in the conducting and updating of risk assessment for IT projects and systems
- Review to identify security risks and breaches to ensure the organisation’s assets and information are appropriately secured at all times
- Communicate security basics to the general user population including formulating Security Awareness program to raise user awareness and understanding of basic security concepts
- Develop and updating of the IT Business Continuity Plan
- Monitor and review compliance with risk management strategies and practices to ensure ICT-related activities are meeting Singapore Government Instruction Manual and relevant ICT security best practices
- Work collaboratively with other corporate oversight functions to identify and implement consistent and effective approaches to risk governance and control-based activities
- Work with internal units to conduct regular reviews and audit of IT systems and applications to ensure statutory compliance
- Liaise and support internal and external auditors to facilitate IT audits, reviews and timely closure of audit outcomes
- Lead in the investigation of cyber security incidents by working with other government agencies
- Work with other Vendor/Suppliers to resolve IT security incidents.
- Participate and assist in IT security incident response table-top exercises and technical assessment exercises.
- Review and audit access control polices and management.
- Able to identify latest security vulnerabilities and response to query / resolution.
- Able to understand and identify security warning / alerts / notifications from reliable sources and provide consultation.
- Familiar with usage on SIEM tools / VA scan tools / Ticketing tool is a plus.
- Familiar with IM8 polices is a plus.
Make extraordinary happen