Share this Job

Senior Manager, Information Security

Date: 10-Nov-2020

Location: Singapore, Singapore

Company: Singtel

<span style="font-family:"Times",serif"><span style="font-family:"Calibri",sans-serif">Key Responsibilities:

  • <span style="font-family:"Times",serif"><span style="font-family:"Calibri",sans-serif">Establish security architecture for BU aligned to Group Cyber Resilience.  Accountable for ensuring that security infrastructure operations handling the cybersecurity defences remain current and relevant.
  • <span style="font-family:"Times",serif"><span style="font-family:"Calibri",sans-serif">Administer compliance with these policies and procedures through ongoing security reviews, audits and assessments.
  • <span style="font-family:"Times",serif"><span style="font-family:"Calibri",sans-serif">Conduct security risk assessment, business impact analysis and develop security risk treatment plan.
  • <span style="font-family:"Times",serif"><span style="font-family:"Calibri",sans-serif">Collaborate with stakeholders for risk management, mitigation and remediation measure.
  • <span style="font-family:"Times",serif"><span style="font-family:"Calibri",sans-serif">Leverage Group Cyber Resilience to deliver security awareness training program to foster a secure culture, improve security awareness and compliance.
  • <span style="font-family:"Times",serif"><span style="font-family:"Calibri",sans-serif">Partner with internal and external audit teams, to manage and effect audits from a compliance & point-in-time perspective, to a risk-driven, continuous proactive compliance approach.
  • <span style="font-family:"Times",serif"><span style="font-family:"Calibri",sans-serif">Point of contact to assist and advise Line-of-Business for cyber security related matters.

 

<span style="font-family:"Times",serif"><span style="font-family:"Calibri",sans-serif">Requirements:

  • <span style="font-family:"Times",serif"><span style="font-family:"Calibri",sans-serif">Degree/Diploma or higher in Computer Science, Information Systems or equivalent
  • <span style="font-family:"Times",serif"><span style="font-family:"Calibri",sans-serif">At least one security certification is preferred, such as Certified Information Security Management (CISM), Certified Risk Information Security Control (CRISC), Certified Information Systems Auditor (CISA) or Certified Information Systems Security Professional (CISSP)
  • <span style="font-family:"Times",serif"><span style="font-family:"Calibri",sans-serif">At least 8 years of experience in IT Risk Management, Governance or Compliance.
  • <span style="font-family:"Times",serif"><span style="font-family:"Calibri",sans-serif">Understanding of control and risk management concepts including control testing, risk assessments, risk treatment and third-party risk.
  • <span style="font-family:"Times",serif"><span style="font-family:"Calibri",sans-serif">Knowledge of risk management policies, methods, standards, processes, governance models, and both quantitative and qualitative risk analysis approaches.
  • <span style="font-family:"Times",serif"><span style="font-family:"Calibri",sans-serif">Knowledge of common information security management frameworks, such as ISO 27001-5, COBIT and NIST, including 800-53 and Cyber security Framework.
  • <span style="font-family:"Times",serif"><span style="font-family:"Calibri",sans-serif">Customer-focused with good interpersonal skills
  • <span style="font-family:"Times",serif"><span style="font-family:"Calibri",sans-serif">Ability to lead, as well as working as a team member, and independently with minimal supervision.
  • <span style="font-family:"Times",serif"><span style="font-family:"Calibri",sans-serif">Good analytical and communication skills