IT Security Officer

Monday to Friday, 8:30 am to 6 pm.

We are seeking a team of IT Security Officers (ITSOs) who will serve as IT security subject matter experts, providing comprehensive support for system managers and the Board’s Cybersecurity team. The team will be responsible for ensuring the security of the IT infrastructure, compliance with security policies and standards, and overseeing cyber operations across all hosting environments (On premise, GDC, GCC, GCC+ and etc). The scope of responsibilities will be distributed among the team members to ensure comprehensive coverage and effective security operations.

The ITSO team will divide responsibilities across key security domains to ensure comprehensive coverage. The team will directly report to the Board’s Cybersecurity Team. Team members will focus on specialised areas including security monitoring, system security and compliance activities, technical support, risk assessments, and governance functions. This distribution ensures specialised expertise whilst maintaining collaborative oversight across all security functions.

• System Security and Compliance: conduct security reviews, system hardening checks and risk assessments based on deviations to hardening requirements (e.g., CIS Benchmarks). Create PUB hardening baselines using available benchmarks (e.g., CIS Benchmarks or those provided by the manufacturer). Create, review and maintain Standard Operation Procedures (SOPs), plan and schedule annual reviews of security hardening documents, perform compliance reviews, and ensure remediation of findings.
• Management and responding to security alerts: monitor phishing alerts and communicate with staff regarding malicious emails, support audit activities, vulnerability scans, and penetration tests. Follow SOP to perform malware scans on endpoints with anti‑virus alerts.
• PUB has cloud security engineers that manage cloud security tools like Cloud Security Posture Management. The ITSO shall work with the cloud security engineers to communicate with System Managers, follow up on findings identified in CSPM and the Government in‑house CSPM tool (Cloudscape). The ITSO shall perform routine review of the findings flagged by the CSPM tools, monitor suppression expiry to ensure its validity, follow up directly with system Officers‑in‑Charge and infrastructure teams, and provide recommended actions to rectify in a timely manner. Maintain a tracking system to monitor the status of remediation efforts, document whether recommended actions have been completed, are in progress, or require escalation, ensuring accountability and timely resolution of security issues. Make assessment if security recommendations are required or false alarms using the GenAI tool provided by PUB to aid assessment.
• Technical Support and Governance: provide vulnerability monitoring and recommend and implement mitigation actions to system Officers‑in‑Charge and infrastructure teams. Provide security advice or proposals on security measures for new projects and functionalities and monitor governance compliance tools, such as Cloudscape. Provide risk‑based assessments to prioritise rectification of alerts (e.g., Cloudscape). Manage and update governance compliance tools with relevant information to suppress affected findings when approval is sought. Respond to auditors’ RFI on security monitoring.
• Reporting and Training: compile monthly reports summarising the progress of tasks and flag outstanding non‑remediated issues/alerts across the key security domains, and present them to the Board’s Cybersecurity team. Coordinate monthly IT security awareness training and briefings for users to enhance organisational security posture, with team members contributing their specialised expertise to deliver comprehensive training programmes.

• All candidates must possess a bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field and at least an internationally recognised security certification such as CISSP, CISM, CRISC, or CISA.
• Proven experience of at least 2 years in Cloud cybersecurity is required, including security assessment and vulnerability management within cloud and on‑prem environments, particularly GCC.
• Familiarity with security platforms such as Azure LogAnalytics, AWS CloudWatch, AWS Security Hub CSPM, and Microsoft Defender for Cloud is preferred.
• Strong analytical and problem‑solving skills are necessary to resolve security‑related issues, and excellent communication skills in both spoken and written English are required to effectively collaborate with team members, system Officers‑in‑Charge, infrastructure teams, and external vendors.
• Strong collaborative skills are essential to ensure seamless coordination between the specialised roles whilst maintaining comprehensive security coverage.