Deputy Director/Snr Asst Director, SingCERT (SG Cyber Emergency Response), NCIRC

As Deputy Director/Senior Assistant Director of SingCERT, you will lead a team of cybersecurity professionals to detect, assess, and respond to cyber threats affecting businesses and the public. Reporting to the Senior Director of National Cyber Incident Response Centre (NCIRC), you’ll be setting strategic direction and representing Singapore in multiple local and global cybersecurity engagements.The SingCERT team is the national CERT of Singapore looking after the businesses and the members of public in Singapore and deploys incident response teams on-site to conduct investigations and digital forensics. It also plays an important role in digital anti-scams, safeguarding the life savings of those who live and work in Singapore.This is more than just a technical role — it’s a national mission, a calling. You will play a pivotal role in keeping Singapore’s cyberspace safe and secure, watching out for cybersecurity threats, tailoring advice for constituents to protect themselves, and providing guidance to constituents who have encountered a cybersecurity incident.We are looking for a strategic thinker and a highly motivated team player who has demonstrated experience working in incident management roles and developing or deploying mitigation techniques for defending networks.There will be adequate training opportunities to upskill yourself and stay relevant in the cybersecurity field.

Responsibilities• Lead SingCERT’s operations in investigating and responding to cybersecurity incidents and threats, including anti-scam efforts• Engage stakeholders across industries — including SOCs, CERTs, technical teams, law enforcement, and leadership — during incident handling and remediation• Shape and coordinate public and crisis communications during major cyber incidents• Identify and drive improvements in processes and tools to enhance operational effectiveness• Represent SingCERT in regional and international cybersecurity forums and working groups• Strengthen ties with the global CERT community through proactive outreach and partnerships• Drive thought leadership and contribute to policy-level discussions in national cyber response

Requirements• Bachelor’s degree in Computer Science, Computer Engineering, or related field• Relevant working experience in IT infrastructure or Cybersecurity of at least 10 years• At least 5 years of supervisory experience in Incident Response (SOC/CIRT/CSIRT/CERT)• In-depth knowledge of operating systems, network protocols, security monitoring, log collection, and correlation, network- and host-based forensics• Understanding of the tactics, techniques, and procedures of cyber attackers, and experience managing cyber incidents end-to-end• Experience with investigating common types of cyberattacks, network packet analysis, log analysis, and reviewing security events from detection to resolution• Experience advising on enterprise-level cybersecurity strategies or audit frameworks is an advantage• Certifications such as GCFE, GREM, GCIH, GNFA will be an advantage• Excellent communication skills, both verbal and written, as well as strong presentation and engagement skills• Strong stakeholder management skills to work with both partners and stakeholdersAll applicants will be notified on whether they are shortlisted or not within 4 weeks of the closing date of this job posting.Note: CSA will be shifting to Punggol Digital District (PDD) in year 2026.

About the Cyber Security Agency of SingaporeEstablished in 2015, the Cyber Security Agency of Singapore (CSA) seeks to keep Singapore’s cyberspace safe and secure to underpin our Nation Security, power a Digital Economy and protect our Digital Way of Life. It maintains an oversight of national cybersecurity functions and works with sector leads to protect Singapore’s Critical Information Infrastructure. CSA also engages with various stakeholders to heighten cyber security awareness, build a vibrant cybersecurity ecosystem supported by a robust workforce, pursue international partnerships and drive regional cybersecurity capacity building programmes. CSA is part of the Prime Minister’s Office and is managed by the Ministry of Digital Development and Information. For more news and information, please visit www.csa.gov.sg