Share this Job

Senior Information Security Specialist

Date: 21-Mar-2023

Location: Singapore, Singapore

Company: Singtel Group

At Singtel, we're working on projects that push the boundaries of digital, realising our vision and purpose to Empower Every Generation. We have a dynamic and diverse team, with a passion for innovation, and talent to deliver cutting-edge digital solutions and immersive customer experience.

 

In Group IT, we create great technology that can change the future, and we're looking for people to be part of our digital and 5G journey. If you like to work in a dynamic, leading communications technology group to deliver innovations and excellence across the region, come join our digital, software engineering, data and cyber security teams!

 

Apply now, and ignite our digital future together.

 

Responsibilities:

  • To perform cybersecurity risk assessment of new and existing programs. These programs can be on premises or outsourced.  The role includes but stretches well beyond IT risk and security, touching on aspects such as compliance, physical security, personnel security, incident management, business continuity and more. 
  • Organizes, conducts and performs Cybersecurity risk assessment and gap analysis process.
  • Establishes, reviews and verifies the Cybersecurity reviews conducted on Systems
  • Designing processes to identify, improve and optimize Cybersecurity risk management practices
  • Communicates and assist Business Units to address identified cybersecurity risks to meet business local objectives.
  • Monitors compliance with the Cybersecurity Standards, Policy and Architecture.
  • Conduct Cybersecurity risk management awareness program to drive risk management best practices/culture into the Business Units and Program Managers.
  • Prepares and/or coordinates Monthly/Quarterly Cybersecurity related Risk Meeting.
  • Providing security advisory and recommend resolutions for security threat and vulnerabilities
  • Performs all other Cybersecurity duties as assigned by the Management.

 

Requirements:

  • Bachelor’s Degree in computer science, Computer Engineering, Electrical Engineering, or other relevant field of study
  • Minimum 3 years of experience as Information Security Risk Management
  • At least 6 years relevant information security working experience
  • Experience working as part of an internal Audit, Governance and Compliance team.  
  • Professional security management certifications such as a Certified Information Systems Security professional (CISSP), Certified Information Security Manager (CISM) or other similar credentials, is required.
  • Strong understanding of IT Security risk, Audit and information security principles
  • Strong understanding of information security standards and practices such as ISO27001, PCI-DSS and OWASP.
  • Good understanding in the following areas: Platform Security, Data Security, Network Security, Physical Security, Security Assessment Tools, Security Monitoring Tools.  
  • Knowledge on the requirements and controls for compliance to PDPA and GDPR