Job Responsibilities

Technology Governance

• Drive the implementation of a robust Cyber governance and Cyber security risk management framework to ensure appropriate controls

• Review existing policies to ensure that the policies are updated to reflect accuracy on the evolving cyber threat and emerging cyber threats.

• Ensure appropriate cyber and technology strategy is planned and managed to ensure sufficient controls in place.

• Develop and maintain the Cloud Governance Framework with response to the Enterprise Risk Management, etc.

• Manage audit findings remediation.

Cybersecurity Compliance and Operation

• Conduct assurance review to ensure adherence of the defined governance principles to ensure expected value is delivered.

• Work with the technology team and business functions in automating process and compliance checks and participate in internal/external audits.

• Assess the cyber security risk of third-party vendors with an appropriate level of detail; Identify controls to address gaps in third party vendor relationships; Monitor the implementation of controls

• Manage and lead Security operation service provide in security operation matters

• Provide support in deploying cybersecurity solutions to internal and external stakeholders

• Assist in managing support issues for cybersecurity

• Ensure that detected cyber threats, risks and vulnerabilities are addressed promptly

• Conducting level 2 investigation and digital forensics on suspected cyber incidents and events

• Keep abreast of the latest industry cybersecurity practices and technology as well as emerging threats and vulnerabilities and recommend appropriate controls and solutions for implementation

• Plan, execute, advise on vulnerabilities and penetration testing on system, and ensure that closure is timely.

CyberSecurity Risk management

• Assess the cyber security risk of third-party vendors with an appropriate level of detail; Identify controls to address gaps in third party vendor relationships; Monitor the implementation of controls

• Act as the application security gatekeeper for the development of application.

• Liaise with the application project team on Penetration test findings closure and improvement; track finding and ensure timeliness closure.

• Ensure Cyber risk register are kept up to date and risk are calculated accurately.

Job Requirements

• Degree in Risk, Cybersecurity or related field
• 8 to 10 years of experience in cybersecurity roles
• Proficient in MS Office Applications / Microsoft Power Platform Applications and social media platforms
• Basic understanding of cybersecurity principles and best practices
• Ability to explain technical concepts to non-technical audiences
• Strong attention to detail and a commitment to maintaining accuracy and consistency in all communications.
• Self-motivated and proactive, with a demonstrated ability to work independently and take ownership of assigned tasks.
• Ability to manage multiple tasks simultaneously and carry out tasks which are assigned by the Management.
• Strong written and verbal communication skills
• Working hours -Monday to Friday, 8am to 530pm
• Working Location - Toll City, 60 Pioneer Road, Tuas

"This job is in partnership with the Employment and Employability Institute Pte Ltd ("e2i").

e2i is the empowering network for workers and employers seeking employment and employability solutions. e2i serves as a bridge between workers and employers, connecting with workers to offer job security through job-matching, career guidance and skills upgrading services, and partnering employers to address their manpower needs through recruitment, training, and job redesign solutions. e2i is a tripartite initiative of the National Trades Union Congress set up to support nation-wide manpower and skills upgrading initiatives.

By applying for this role, you consent to ST Logistics's PDPA - https://www.stlogs.com/pages/personal-data-policy/ and e2i's PDPA - https://www.e2i.com.sg/pdpa/ . "