Assistant Lead, Cybersecurity Operations
Mediacorp is Singapore's largest content creator and national media network, operating a suite of TV channels, radio stations, and multiple digital platforms. Its mission is to engage, entertain, and enrich audiences by harnessing the power of creativity.
We are committed to creating an inclusive and diverse workplace where talent thrives. Our hiring decisions are made based on merit and fit-to-role. If you have a disability or special need which requires accommodation to participate in the recruitment process, please inform us when you submit your online application. We will be happy to support as necessary.
Thank you for your interest and application to this role. Please note that only short-listed candidates will be contacted.
Responsibilities
This position is responsible for ensuring the confidentiality, integrity, and availability of data and information systems. The role holder is also responsible for identifying and mitigating information security risks and managing security incidents to minimize their impact on the business. The scope of the role involves managing and overseeing the implementation and maintenance of cybersecurity, risk management framework and security operations programs within the Digital organization.
- Develop and implement an enterprise-wide cybersecurity, risk management and security operations program, including policies, procedures, and standards to ensure the security and integrity of data and information systems.
- Manage security operations and incident response teams, and work with cross-functional teams to investigate and respond to security incidents.
- Ensure compliance with relevant laws, regulations, and industry standards.
- Conduct regular risk assessments and vulnerability scans to identify and remediate potential security threats and vulnerabilities.
- Develop and maintain relationships with external partners and vendors, including security consultants and service providers.
- Develop and deliver security awareness and training programs for employees, contractors, and other stakeholders.
- Collaborate with other IT and business teams to identify and implement appropriate security controls for new and existing systems and applications.
- Manage and monitor security-related incidents and breaches and develop and implement strategies to mitigate risks.
- Conduct regular security audits and assessments to ensure compliance with security policies and standards.
- Provide regular reporting to senior management and other stakeholders on the status of cybersecurity, risk management and security operations programs.
- Coordinate and participate in Cyber drills.
- Lead technical investigations of cyber incidents and coordinate technical response to identify root causes or workarounds to contain and recover from incidents.
- Act as the technical subject-matter-expert for IR related topics or during incidents.
- Develop and document the CSIRT procedures and processes based on industry best practices and internal requirements.
- Conduct technical training to improve IT departments capability to deal with threats.
- Identify opportunities or work with various teams to strengthen the firm's cyber defense capability.
- Stay abreast of industry technical trends through participation in professional associations, practice communities and individual learning.
Qualifications
- A minimum of 10 years of experience in cybersecurity, risk management, and security operations, with at least 5 years in a managerial or leadership role.
- Bachelor's degree in computer science, information technology, or a related field. Master's degree preferred.
- Relevant certifications such as CISSP, CISM, or CRISC preferred.
- Experience with security tools and technologies such as SIEM, IDS/IPS, vulnerability scanners, and endpoint protection tools.
- Prior experience in investigating major Cyber incidents is preferred.
- Min. 3 years of experience with standard enterprise security tools (e.g., Firewall, Antivirus, SIEM, IDS/IPS, EDR etc.).
- Min. 3 years of operational experience with Splunk or similar log aggregation/analysis platforms.
- Min. 3 years in Cyber forensic work.
- Experience in multiple domains within IT or Information Security.
- Advanced understanding of various operating systems, networking and web technologies.
- Excellent communication and interpersonal skills.
- Strong leadership and team management skills.
- Ability to work collaboratively across functional teams.
- Deep knowledge of cybersecurity threats, vulnerabilities, and mitigation strategies.
- Strong understanding of risk management principles and frameworks.
- Knowledge of regulatory and compliance requirements.
- Familiar with utilizing EDR technologies.
- Malware analysis/reverse engineering expertise.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
