The Government Technology Agency (GovTech) aims to transform the delivery of Government digital services and products by taking an "outside-in" view, putting citizens and businesses at the heart of everything we do. We also develop the Smart Nation infrastructure and applications and facilitate collaboration with citizens and businesses to co-develop technologies.
Join us as we support Singapore’s vision of building a Smart Nation - a nation of possibilities empowered through info-communications technology and related engineering.
Do you want to apply your skills, knowledge and energy to implement cutting-edge infocomm technology and digital solutions that will change the lives of Singaporeans and the public? In GovTech, you can!
The Cyber Security Group (CSG) is the cybersecurity arm of GovTech, committed to creating a safe and secure digital government. You will be part of the Policy Development team to formulate cybersecurity policy standards and guidelines.
Job Description:
Lead or Support the formulation of progressive ICT Security policies to ensure continuous and relevant protection of Government ICT assets
Develop, assess and review existing and proposed policies in collaboration with stakeholders to govern cyber activities
Promote awareness of security issues and communicate security principles among management and stakeholders
Address policy queries, and assess exemption requests to ascertain relevance of preventive and detective controls to reduce risk of exposure
Work with the operational and implementation teams to identify, qualify, quantify and agree proposed mitigation plans against any identified risks and that those risks have been captured with mitigation plans.
Conduct the measurement of security health posture of Agencies and provide analytical studies and trending of key risk indicators
Support limited scale security projects, system vulnerability assessments or audits of cyber programs if required
Find creative ways to take on and address complex information security challenges across a variety of existing and emerging technologies and digital environments.
Requirements:
Degree in Infocomm Security, Computer Science, Computer/Electronics Engineering or Information Technology
Possess CISSP and/or CISA certifications would be an advantage
At least 3 years’ of relevant IT or inforcomm security consulting, project management, and/or IT audit and governance
Knowledge of IT security management principles and practices
Experience in one or more of the following areas will be an advantage; policy compliance and governance, risk assessment, solutioning, network design, application development, Internet of Things, cryptography, hardware design protection, mobile application/device management, cloud hosting design and implementation in AWS/Azure/Google, DevSecOps consulting, design and implementation of CI/CD pipelines, etc.
Knowledge and experience of IM8/NIST/IS0 27001/2 policies /standards
Singapore Citizen only
Based on 1,523 disclosed Security salaries on RoleSuite, the role pays a median of $142K/year, with most offers between $114K and $180K (10th–90th percentile: $93K–$216K).
See the full Security salary breakdown →