Key Responsibilities:
- Responsible in setup, implement and enhance the organization cybersecurity capabilities
- Responsible in manning the IT operation tasks such as administering, maintaining, and optimising the Infra and security solutions
- Point of contact to liaise and work closely with IT vendor and monitor all outsource infrastructure/ system/ cloud vendors performance against agreed SOW and SLA
- Monitor and maintain IT assets and ensure the capacity and quantity is sufficient and optimised for business and operation need
- Perform security monitoring and review to ensure that all implemented security controls/measures are relevant and effective
- React timely to the security alert and advisory that is issued by the authority, partners, and product vendors
- Perform due diligence on product vendors, partners, and 3rd party service providers
- Develop, update, and review technical SOPs/workflows, policies, processes, standards, and baselines to ensure that it remain relevant and effective
- Support IT security compliance projects and programs such as audit, VAPT and table-top exercise
- Keep up to date on emerging security threats and vulnerabilities on new and existing platforms
- Identify, assess, and remediate cyber risks in cloud, applications, endpoints, system, and network
- Manage, assess, and address security vulnerabilities and perform patch management
- Investigate, analyse, and respond to cyber incidents in a timely manner
- Perform review of security logs and events to ensure that all unauthorised activities, indicator of compromise (IOC), threats or breaches are identified
Requirements:
- Bachelor’s Degree in Information Technology, Computer Science, or a related field
- A minimum of 5 years of experience in IT compliance, technology risk management, or a related role
- Strong understanding of the MAS Technology Risk Management guidelines and relevant regulatory frameworks
- Experience in conducting risk assessments and developing risk management strategies
- Strong knowledge of IT security principles, best practices, and controls
- Excellent communication and interpersonal skills, with the ability to collaborate with cross-functional teams