Responsibilities
- Establish and implement cybersecurity policies, standards and procedures on project networks to ensure compliance
- Ensure timely conduct of audit framework, monitoring and examining audit findings to propose action plans to address those non-compliances holistically
- Provide leadership and guidance to Cyber Leads in business units in ensuring compliance in project networks
- Inculcate a positive cybersecurity culture where cybersecurity becomes the second nature for all employees
- Work closely with Group GISO and Group IT to ensure oversight and security compliance on secured networks
- Partner with Group GISO to keep track and update management on vulnerabilities and threats
- Promote cybersecurity education & training, and enhance awareness and adoption of essential cybersecurity practices
- Implement and govern Cybersecurity Incident Management framework
Requirements
- A tertiary degree in Computer Science, Information Systems, Engineering or related IT discipline.
- Preferred professional certifications in tailored and practical certifications including CISSP (Certified Information Security Systems Professional) and CISM (Certified Information Security Manager)
- A minimum of seven years' experience in risk management in information security
- Knowledge of information security management frameworks, such as ISO/IEC 27001 and NIST.
- In-depth knowledge of IT systems and architecture and also in data administration
- Good knowledge of cyber-security and ongoing threats
- Excellent management and leadership skills.