Senior Manager Cybersecurity Audit

Reporting to the Head (Cybersecurity Audit), the jobholder will work on audit automation project, as well as perform ICT audits on MHA ICT Systems covering various aspects of the audit process including risk assessments, preparing audit programs, providing stakeholders with assessments and recommendations, as well as updates on the risk and its compliance with the prevailing statutory and government ICT security policies.

• Plans for and conducts ICT audits on MHA systems, including its Critical Information Infrastructure Systems (CIIs) and Significant Information Instructure Systems (SIIs), to assess the effectiveness of security controls and its compliance with the prevailing statutory and government ICT policies
• Examine the possible root causes of the exceptions noted from ICT audits in terms of the People, Process and Technology aspects to formulate the appropriate recommendations to remediate the weaknesses noted
• Identify areas for improvement in audits by benchmarking against industry’s best practices, where relevant
• Assist in the development of audit work programmes that are aligned with industry’s best-in-class practices, statutory requirements such as Cybersecurity Code of Practice for CIIs and government ICT policies
• Performs audit issues validation
• Oversees and manages outsourced ICT audits of MHA’s systems or other audit related projects as assigned

• Tertiary qualification in Information Technology, Computer Science, Computer Engineering or a related discipline
• Minimum 3 years of relevant experience in ICT auditing, security consultancy or compliance reviews
• Having CISA, CISSP, CRISC, ISO/IEC 27001 or related certificates will be advantageous
• Well-versed in ICT auditing, cybersecurity technologies and ICT security controls in operating systems, network, ICT operations and processes
• Good interpersonal and communications skills for internal/external stakeholders’ engagement
• Able to multi-task and work independently

All new hires are appointed on a two-year contract in the first instance and will be assessed and considered for permanent tenure over time, based on performance.

As part of the shortlisting process for this role, you may be required to complete a medical declaration and/or undergo further assessment.

All applicants will be updated on the status of their applications within 4 weeks upon closing of the advertisement.

HTX is the world’s first Science and Technology agency that integrates a diverse range of scientific and engineering capabilities to innovate and deliver transformative and operationally-ready solutions for homeland security. As a statutory board of the Ministry of Home Affairs and integral to the Home Team, HTX works at the forefront of science and technology to empower Singapore’s frontline of security. Our shared mission is to amplify, augment and accelerate the Home Team’s advantage and secure Singapore as the safest place on planet earth.