GovTech Singapore

Parent Category: Job Listings - Public Domain Listings Category: Security Engineers Published: Monday, 14 September 2020
NOTE: The following job description was extracted from public domain and published here as a value added service to BizLINKS Resources members. We are currently not a direct vendor to the above organisation and would be interested to work with the above through a internal organisation referral
 Employer Referral

Cybersecurity Consultant (Government Agencies) at GovTech Singapore

The Government Technology Agency (GovTech) aims to transform the delivery of Government digital services by taking an "outside-in" view, putting citizens and businesses at the heart of everything we do. We also develop the Smart Nation infrastructure and applications, and facilitate collaboration with citizens and businesses to co-develop technologies. Join us as we support Singapore’s vision of building a Smart Nation - a nation of possibilities empowered through info-communications technology and related engineering. The Government Cybersecurity Consulting team in Cyber Security Group (CSG) in GovTech provides in depth technical Point-of-View of advanced security technologies and emerging technologies to support better use of technologies in Government and the Smart Nation initiatives. What To Expect Involve in the provision of cybersecurity consulting services for large, national or Whole-of-Government projects or systems. Support business initiatives through risk management, which involves performing security risk assessment to identify and analyse security risks, recommending risk treatment and mitigation measures, and assess residual risks. Ensure that key security requirements are defined and designed into the systems, implemented in accordance to the security design, and in compliance with prevailing ICT security policies and standards. Develop and review project specific security specifications and ensure alignment to assessed security risks, security requirements, prevailing ICT security policies and standards. Review security architectures, designs and implementations to ensure compliance with prevailing ICT security policies and standards. Ensure that open security audit items and security vulnerabilities of are closed. Involve in designing artefacts (spanning design, development, and implementation) into enterprise systems that aligns to security principles and overall Enterprise System Architecture. Oversee outsourced vendors on security deliverables and the security robustness of the project. Involve in scoping of security tests, reviews and audits, as well as reviewing the results of security tests, reviews and audits to ensure security assurance is achieved. Work closely with MCISO/ACISO, stakeholders, project teams, and outsourced vendors to ensure security objectives are achieved. Manage stakeholder relationships to ensure that consulting services delivered meet their expectations. How To Succeed Degree in Infocomm Security, Computer Science, Computer/Electronics Engineering or Information Technology with at least 5 years’ of IT experience in security roles with in-depth hands-on knowledge of security practice. At least 2 years of hands-on experience in one or more of the following security areas: network design, applications development, Internet of Things, wireless communications, cryptography, hardware design protection, mobile management, cloud hosting design and implementation, DevSecOps consulting, design and implementation of CI/CD pipelines, etc. Possess CISSP and/or CISA certifications. Having cloud security or DevSecOps related certification will be of added advantage. Knowledge and experience of IM8 policies, ISO/IEC 27001/2 standards. Knowledge and experience of operational security management techniques, architecture and designs. Knowledge of cybersecurity attributes (e.g. confidentiality, integrity, availability, accountability, assurance, etc.) and security measures (e.g. authentication, authorisation etc.). Knowledge and experience of risk management methodologies and risk evaluation techniques. Able to articulate cybersecurity risks, mitigation measures and residual risks to stakeholders. Knowledge of system security architecture concepts including network topology, protocols, components and principles (e.g. application of Defence in-Depth), and able to specify where and how security controls should be applied to or engineered into the security design. Singapore Citizen only. Show more

Original Joblink: ---------------------------------------------------------------------------------------------------------

to BizLINKS Resources

via BizLINKS Resources
Hits: 454
Country: Singapore
Employment Type: Full time
Salary: Open