Head, Keppel Cybersecurity Centre

Responsibilities:

• Ensure 24x7 cybersecurity monitoring and incident response for Keppel.
• Monitor the evolving threat landscape and devise strategies to prepare cyber operations to deal with emerging challenges effectively.
• Develop detection strategies to ensure threats are detected early, effectively, and within available resources.
• Ensure KCSC operations and key cybersecurity projects are delivered on time and within budget.
• Integrate functions of Cyber Defence, Cyber Engineering, Threat Intelligence, and Vulnerability Management, fostering collaboration as a cohesive team.
• Promote automation and efficiency within cyber operations.
• Define and monitor metrics for the effectiveness of cybersecurity operations, security posture, and threats.
• Supervise evaluation of security solutions to ensure alignment with strategy.
• Stay updated on cybersecurity trends, technologies, and best practices to proactively enhance security measures.
• Maintain team capabilities with the necessary skillsets and resources.
• Optimize processes across Cyber and IT teams.
• Supervise Cybersecurity Centre's monitoring KPIs to ensure targets are met.
• Manage audits and ensure compliance with company policies and standards.
• Share information on cybersecurity incidents with Cyber SteerCo.

Cyber Defence:

• Guide use cases, detections, and threat hunts aligning with detection strategy.
• Approve scenarios for incident playbook design.
• Supervise major cybersecurity incidents, ensuring proper investigation and response.
• Review and prioritize Red/Purple teaming exercises, Breach and Attack Simulations.

Cyber Engineering:

• Prioritize Cyber Engineering projects.
• Identify automation opportunities to improve security operations efficacy.
• Ensure comprehensive security monitoring coverage.

Threat Intel:

• Review threat landscape and advise on Cyber Threat Level.
• Ensure effective use of threat intel in operations.

Vulnerability Management:

• Oversee Vulnerability Management, prioritize patches based on risk.
• Align vulnerability assessment & remediation policies with IT teams and owners.

Requirements:

• 10+ years in cybersecurity operations, with a focus on Security Operations Centre management.
• Experience in strategic planning for security operations.
• Ability to lead and manage security teams effectively.
• Operational insights into integrating threat intelligence into security operations.
• Understanding of incident management, malware management, and vulnerability processes.
• Technical expertise in detection engineering, forensics, and malware analysis.
• Knowledge of IT systems, including Windows and Linux administration.