Make an Impact by
- Provide leadership and strategy for cybersecurity monitoring and incident response operations supporting Group IT and Singtel.
- Take leadership role to detect, manage and respond to cybersecurity incidents and provide updates to internal stakeholders and management. Work closely with Group Risk Management (GRM) to support crisis management processes and exercises.
- Manage a highly specialised team of security analysts, incident managers and incident responders to effectively monitor, defend and response to cyber threats and events. Develop critical in-house talent and capabilities, while leveraging on 3rd party services. Aggressively drive automation using AI and other technology.
- Build and maintain an effective threat intel capability and working collaboratively with other internal SOCs and partners to coordinate defensive tactics and playbooks against cyber threats.
- Continuously identify and enhance 24x7 operations, incident and crisis management processes, automation, and capabilities to progressively strengthen the security posture of Singtel and its group of companies.
- Experience in Security Ops and monitoring of Cloud set up
- Partner with Cyber Threat Intel team and perform Hunting as per event, or per time-driven calendar.
- Lead the automation of SOC and IR runbooks, moving the SOC team up the value chain.
Skills for Success
- Bachelor Degree in Computer Science, Computer Engineering, Electrical Engineering or other relevant field of study
- Professional security management certifications such as Certified Information Systems Security professional (CISSP), Certified Information Security Manager (CISM), specialised SANS certifications, or other similar credentials, is required.
- Minimum 10 years of experience as in IT or security roles.
- Minimum 5 years of practical experience managing security operations, SOCs or equivalent security programmes.
- Experience working with Internal Audit, Governance and Compliance teams.
- Expert or advance level competence in the following :Cyber Incident Management
Partnership Management
Network Security
Platform Security
Security Programme Management
Stakeholder Management
Threat Analysis and Defence
Threat Detection and Response
Security Monitoring Tools - Advanced understanding in the following areas:Data Security
Physical Security
Regulatory requirements
Data Loss Prevention strategies
- Expert competence in the following:Communication
Leadership
Decision Making
Developing People
Resource Management
- Have exposure to other compliance audits such as PCI, PDPA, GDPR, CCoP mostly related to security part.
