Responsibilities
• Establish and implement cybersecurity policies, standards and procedures on project networks to ensure compliance
• Ensure timely conduct of audit framework, monitoring and examining audit findings to propose action plans to address those non-compliances holistically
• Provide leadership and guidance to Cyber Leads in business units in ensuring compliance in project networks
• Inculcate a positive cybersecurity culture where cybersecurity becomes the second nature for all employees
• Work closely with Group GISO and Group IT to ensure oversight and security compliance on secured networks
• Partner with Group GISO to keep track and update management on vulnerabilities and threats
• Promote cybersecurity education & training, and enhance awareness and adoption of essential cybersecurity practices
• Implement and govern Cybersecurity Incident Management framework
Requirements
• A tertiary degree in Computer Science, Information Systems, Engineering or related IT discipline.
• Preferred professional certifications in tailored and practical certifications including CISSP (Certified Information Security Systems Professional) and CISM (Certified Information Security Manager)
• A minimum of seven years' experience in risk management in information security
• Knowledge of information security management frameworks, such as ISO/IEC 27001 and NIST.
• In-depth knowledge of IT systems and architecture and also in data administration
• Good knowledge of cyber-security and ongoing threats
• Excellent management and leadership skills.
Licence No: 12C6060