Manager/Senior Manager (Governance), Regulations Division

RoleThe incumbent will be responsible for the protection of our most valuable national digital assets against cyberattacks, by strengthening the various critical information infrastructure (CII) sectors, and regulated digital infrastructures and entities amidst the evolving cyber threat landscape with internal and external stakeholders from the public and private sectors through governance, supervision, and regulatory work under the Cybersecurity Act.

• Administer the designation and withdrawal of critical information infrastructures (CII) and regulated digital infrastructures such that they are designated timely and protected adequately, and monitor and liaise with the owners of CII and regulated digital infrastructures and entities in the performance of their statutory obligations
• Administer the approval of external stakeholders in accordance with the necessary regulatory requirements to ensure these external stakeholders are competent to carry out their duties in accordance with the Cybersecurity Act
• Regularly review the Cybersecurity Act in relation to the protection of CII and regulated digital infrastructures and entities
• Supervise CII owners and regulated digital infrastructures service providers and entities under the Act to ensure measures are effectively implemented to address increasingly sophisticated threats to national cybersecurity
• Support and participate in CSA-wide projects and cybersecurity events

• A recognised degree in Computer Science, Cybersecurity or Information Systems & Technology
• At least 4 to 6 years of experience in the domain of cyber governance, risk management and compliance
• Strong technical skills in one or more of the following: network, application and operating system security assessment, cloud security, vulnerability assessment and penetration testing, incident management and IoT security
• Professional certifications such as CISM, CRISC, CGEIT, and CISA are preferred. CISSP, GRID, GDAT, GDSA, and GICSP are desired
• Self‑motivated with strong analytical skills to deal with complex issues and influence internal and external stakeholders to achieve targeted outcomes
• Excellent communication, written and interpersonal skills, and confident to engage senior management and C‑suite level officers of regulated entities
• Previous experience in the essential services sectors to obtain an understanding of the operating environments preferred. This includes:
  • Services sectors such as banking & finance, healthcare, telecom, media
  • Utilities sector such as energy, water
  • Transport sector such as aviation, maritime, land transport
  • Government, Security & Emergency, Defence sectors

If you share our passion to make a difference in the cyber security landscape, take up the challenge and apply now.

All applicants will be notified on whether they are shortlisted or not within 4 weeks of the closing date of this job posting.

For any issues with the application, you may drop your resume with us at csa_recruit@csa.gov.sg

Note: CSA will be shifting to Punggol Digital District (PDD) in year 2026.

About the Cyber Security Agency of SingaporeEstablished in 2015, the Cyber Security Agency of Singapore (CSA) seeks to keep Singapore’s cyberspace safe and secure to underpin our Nation Security, power a Digital Economy and protect our Digital Way of Life. It maintains an oversight of national cybersecurity functions and works with sector leads to protect Singapore’s Critical Information Infrastructure. CSA also engages with various stakeholders to heighten cyber security awareness, build a vibrant cybersecurity ecosystem supported by a robust workforce, pursue international partnerships and drive regional cybersecurity capacity building programmes. CSA is part of the Prime Minister’s Office and is managed by the Ministry of Digital Development and Information. For more news and information, please visit www.csa.gov.sg