About Us!
The mission of Housing & Development Board (HDB) is to provide affordable, quality housing and a great living environment where communities thrive. To achieve its mission, HDB aims to be data-driven to the core and adopt evidence-based decision making in developing better housing policies service, improving service delivery and optimising operations.
What Will You Do?
• Develop, maintain, and operationalise a Threat Risk Assessment framework for HDB to identify and mitigate the threats and risks in its IT systems and programmes.
• Work with key stakeholders to ensure high cybersecurity posture of application systems through activities such as the following:
i. Promote secure coding practices.
ii. Review of Vulnerability Assessment and Penetration Testing (VAPT) Cases
iii. Facilitate remediation of vulnerabilities arising from application security testing
iv. Setup DevSecOps through CI/CD pipeline
v. Securing Cloud Workloads
vi. Procure & Maintain Security testing Tools/services to support source code review and VAPT.
• Related works include Threat Risk Assessment, project specific cybersecurity specification, cybersecurity proposals evaluation, cybersecurity design review, System Security Acceptance Test and review, Vulnerability Assessment and Penetration Test.
• Manage and promote IT security awareness and outreach programme.
• Keep abreast of the latest industry ICT security practices and technologies as well as emerging threats and vulnerabilities and recommend appropriate controls for implementation to improve the enterprise security posture.
• lead and/or participate in the adoption of new technological advances and best practices in infrastructure security systems to mitigate security risks.
You will be a Great Fit if you:
You should possess a strong background in ICT Security, Information Security, Information Technology, Computer Science, Cybersecurity or equivalent.
• At least 2 years of experience in ICT works involving the setup, development, and management of web-based systems, with at least 2years of relevant ICT security work experience.
• Preferably possess one or more appropriate IT security certifications, such as CISSP, CRISC, CISM, CISA, CEH, etc
• Preferably with strong knowledge and experience in information and cybersecurity risks, controls, vulnerability assessment/penetration testing, compliance, and industry IT/cyber security best-practices.
Good to Have:
• Domain knowledge of access control; telecommunications and network security; cloud security; Cybersecurity & information security governance and risk management; software development security; cryptography; security architecture and design; operations security; security incident response and management; business continuity and disaster recovery planning; legal regulations, investigations, and compliance; physical (environmental) security
• Knowledge in IT security principles and IT controls as well as industry best practices and frameworks pertaining to IT Controls (IM8, COBIT, ISO27001/2 etc.)
• Good understanding of the current IT/Cyber Security landscape Great Attitude to bring the best out our team
• work beyond business hours including weekend when necessary.
• possess good interpersonal and communication skills.
• demonstrate a strong sense of urgency and have good troubleshooting and problem-solving skills with good attention to detail.
• conduct research on ICT and cybersecurity technologies where necessary to perform the assigned tasks.
• have good command of written and oral English
Successful candidates will be offered a 1+1 year contract in the first instance. Conversion to perm is dependent on good performance.
Find out more about a career with HDB at www.hdb.gov.sg/cs/infoweb/about-us/careers
Please apply for the job through the Careers@Gov job portal as linked:
https://www.careers.hrp.gov.sg/sap/bc/ui5_ui5/sap/ZGERCFA004/index.html#/JobDescription/14317734/a94bccfb-172f-1ede-b0fe-e1923775726c
