- Reporting to the Group Information Security Office, he/she will have the following responsibilities:
- Review Healthcare infosec and cybersecurity-related policies for adoption by NHG
- Develop infosec and cybersecurity sub-policies for adoption by NHG
- Develop and perform regular monitoring and reporting of key risk indicators.
- Maintain cybersecurity risk register
- Drive the Group-wide cybersecurity risk awareness and training program
- Keep abreast of new ICT-related risks, industry trends, and regulatory requirements relating to ICT, information and cyber security
Requirements
- More than 8 years of experience in information/cybersecurity and risk management
- Experience in application/network vulnerability assessment and validation
- Experience in leading cybersecurity risk assessment and risk reduction initiatives
- Good knowledge and experience with application and platform technologies
- Good knowledge and experience with regulatory requirements pertaining to cybersecurity risk management
- Good problem analysis and resolution skills
- Good influencing skills within the team, department and across departments
- Ability to contribute through others, collaborate well across seniority, cultures and locations
- Good written and communication skills with ability to interact and engage with stakeholders and all levels of management
- Ability to work well under pressure and respond to tight deadlines
- Proactive and consistently show initiative, solution-oriented
- Degree in Computer Science or equivalent technical degree
- CISSP, CRISC and /or CISA advantageous
