Job Description:
Build and lead effective and intelligence-led 24x7 Cyber Security Operations function.
The focus is on aligning Cloud Security Architecture, Zero Trust along the lines of security technology, strategy, and policies.
Define, implement, assess, and maintain controls necessary to protect software and applications in accordance with security requirements.
Define, implement, assess, and maintain controls necessary to protect networks, hardware, systems, and mobile devices in accordance with security requirements (This includes, for example, intrusion prevention and detection controls, firewall).
Secure lifecycle: ensure that security requirements are adequately addressed throughout the development and acquisition lifecycles for all assets.
Manage emerging technology areas such as: Cloud Service, Provider, and Platform Security (SaaS, PaaS & IaaS), Application Security (Secure SDLC, DevSecOps, and security Automation).
Security architecture: Develop and maintain an enterprise security architecture.
Lead architecture design reviews to evaluate security controls and identify opportunities to enhance the security posture.
Manage day to day security operations and team.
Responsible for Security operations team, tools and licenses.
Manage and engage with Security vendors (Cyberark, Zscaler, Leapworks, Tenable, MS defender, PaloAlto Firewall, IDS/IPS etc).
Accountable for Regulatory Compliance / Audit responses in terms of Information & Cyber security operations topics.
Provide daily, weekly, and monthly security dashboard / reports to CISO.
Act as Technical Information Security Officer (TISO) for Seviora Group and its subsidiarity companies.
Manage DLP, AIP and data classification projects and implementations.
Provide Cyber Risk Management for the company
Requirements
15-20 years of Cybersecurity experience
Must have led large teams across geographies
CEH certified
Relevant certifications in networking or cyber security, e.g. CISSP, CISM, CISA, CRSIS preferred
Strong experience with DevSecOps methodologies and processes
Strong experience in security architecture of cloud native applications
Experience in providing security advisory and consultancy on application and services, including the design, development, implementation and/or management of the system
Experience with security tools and technologies, such as Security Information and Events Management, Data Loss Prevention, Database Activity Monitoring, Data Security and Protection, Privileged Access Management, File Integrity Monitoring, Web Application Firewall, Intrusion Prevent etc
By submitting any application or résumé to us, you will be deemed to have agreed and consented to us disclosing your personal information to prospective employers for their consideration. Under the revised Employment Agencies Licence Condition 5(b), employment agencies (EAs) are required to collect the personal data (e.g., NRIC, FIN) of applicants referred to employers for permanent or contract job positions of at least 6 months with a fixed monthly salary of $3,300 and above. PDPA requirements on collection, use and disclosure of personal data are not applicable to EAs that are collecting such information, as it is a regulatory requirement.
https://www.mom.gov.sg/faq/submit-quarterlyreferral-and-placement/are-employmentagencies-allowed-to-collect-personal-data
We regret to inform you that only shortlisted candidates will be notified. All applications will be treated with the strictest confidence.
Latha M
Senior Researcher
Dynamic Human Capital Pte Ltd,
2 Kallang Avenue #03-08 CT Hub Singapore 339407
EA License No: 12C6253 |Registration No: R1987570
