Assistant Head (Infosecurity)

Location: Singapore
Job Type: Permanent
Reference: JO-2106-11980

Salary: Up to $6,200 / month

Nearest MRT: Buona Vista

Working hours: Monday - Friday (Office Hours)


Job Responsibilities:

  • Assist in the day-to-day configuration management of existing cybersecurity tools under Infosecurity Team's responsibility including enhancing SOPs as part of operational excellence
  • Perform internal vulnerability assessment and penetration testing on the IT infrastructure and Web Applications
  • Explore new security technologies including leading subsequent implementations to constantly defend the organisation against the evolving threat landscape
  • Conduct investigations, digital forensics, identify threats, assess impact, and provide recommendations on incident containment and post-mortem actions. Perform the role of a SIRO in incident management and reporting
  • Perform threat intelligence surveillance and publish regular internal CERT security advisories gathered from both government and commercial Intel sources to address the various technology stack/platforms used in the organisation
  • Speak in virtual workshops to advocated cybersecurity awareness and share upcoming new initiatives or projects
  • Coordinate the onboarding of new SIEM log sources with MSS provider and assist in periodic SOC and KRI metrics reporting

Job Requirements:

  • Minimum qualifications: Degree
  • Minimum 5-6 years relevant experience in one or more domains of Cybersecurity Operations, Incident Response, and Advisory role.
  • Prior technical hands-on experience in one or more of the security tools and technologies such as Privileged Access Management (PAM), Database Access Monitoring (DAM), Anti-virus (AV), Endpoint Detection Response (EDR), Network Access Control (NAC), Web Content Isolation, Netflow Vulnerability Scanners, and Digital Forensics
  • Comfortable with well-known security hardening benchmarks such as CIS or NIST
  • Proactive, meticulous with good communication and interpersonal skills
  • Self-motivated team player, with a desire to keep up-to-date knowledge of latest developments, in tactics, techniques, and procedures (TTPs) used by malicious threat actors and apply appropriate defensive countermeasures
  • Relevant security certifications such as CISSP, CEH, CISM, CCSP, CHFI, and CCSK, etc, is a plus