Manager / Assistant Manager (IT Security)
InfoComm, Technology, New Media Communications
Ground-breaking projects, such as one-north, Jurong Island, Jurong Rock Cavern and Seletar Aerospace are evidence of the innovative and dynamic side of JTC. Hardly surprising, because at JTC, our mission is to conceive visionary developments in key industrial sectors to create national economic growth for the future. If you want to know how we break new ground and turn vision into reality, visit us at www.jtc.gov.sg.
You will lead and implement ICT security programme including the development, implementation, enforcement, maintenance, monitoring and updating of our ICT security policies, standards and procedures. You will promote ICT security awareness programme, ensure our compliance to ICT security policies and provide IT risk and regular security compliance reporting to the Senior Management and IT Steering Committee.
Part of the role requires you to provide advice on the security controls for applications, infrastructure and operations to the project and operation teams to comply with ICT security policies and procedures. You will identify and evaluate current and new security risks and threats and propose measures and technologies to counter these threats.
In addition, you will manage the appointed parties/testers on ICT security reviews, penetration tests, audits and risk assessments of systems as well as track the timely completion of corrective actions on IT security deficiencies found during the audit and review its effectiveness. You will also conduct regular IT security audits, assessments and inspections to ensure security controls are operating effectively and identify deviations in security practices, so as to report to senior management.
This role also requires you to conduct vulnerability assessments and risk analysis in relation to security alerts and incidents and recommend the appropriate course of action. This includes doing research on the latest industry security practices and technologies as well as emerging threats and vulnerabilities, and recommend and implement controls and/or measures to enhance our ICT security.
Background in Information Systems, Computer Science or equivalent and an Industry Security Certification such as CISSP or CISA. At least 5 years of relevant experience in IT security, with expertise on security frameworks and standards, secured network design, testing and have a good understanding of security mechanisms. Experience in ISO 27000 framework series will be preferred. Good understanding of IT architecture, design patterns and standards for IT security. Good knowledge of security controls and be involved in operations of complex IT infrastructure. Highly self-motivated, possess analytical mind, good leadership skills, excellent interpersonal and communication skills with experience working in a team-oriented, collaborative environment. Ability to prioritize and execute tasks in a high-pressure environment and make sound decisions in emergency situations.
Back to search results Apply now