Landscape jobs in Singapore

The IT and Cybersecurity Manager is a key management role responsible for establishing, maintaining, and overseeing the comprehensive IT and Operational Technology (OT) security posture of the T3 Baggage Handling System (BHS). This role ensures strict compliance with international standards (like ISO/IEC 27001) and applicable Singapore laws (like the Cybersecurity Act 2018) and actively manages cybersecurity risks throughout the operation and maintenance lifecycle. This position reports to Operation and Maintenance (O&M) Manager – Customer Support.

The Cybersecurity Manager performs or coordinates a wide array of activities, often working directly with the LTSS team to provide necessary resources and expertise.

• Maintain high-availability IT infrastructure for baggage handling systems across on-premises and hybrid environments.
• Oversee proactive monitoring, maintenance, and upgrades to ensure high availability and performance.
• Manage server environments (Windows, Linux, VMware/Hyper-V), including patching, backups, and disaster recovery.
• Maintain IT asset inventory, configuration, and lifecycle management to meet operational and regulatory requirements
• Oversee system updates, upgrades, and configuration management to minimize downtime and optimize performance.
• Ensure full documentation of system architecture, configurations, and change logs for audit readiness.

• Manage the comprehensive IT and Cybersecurity Programme (such as ISO/IEC 27001 Information Security Management System - ISMS) and coordinate resources to fulfil all security activities.
• Ensure alignment of the program with the latest ISO/IEC 27001 standard, the Aviation Cybersecurity Code of Practice (ACCoP), and the Cybersecurity Code of Practice (CCoP) requirements.
• Oversee and coordinate all activities for the certification, maintenance, and renewal of the required ISO certifications for the entire contract lifecycle.
• Ensure that operational processes adhere to established ISO and security guidelines, preventing any deviation from certified processes.
• Support compliance efforts regarding the Cybersecurity Act 2018 provisions, especially if the BHS is designated as "critical information infrastructure" (CII).
• Review and update the comprehensive risk register at least annually or following changes in the operating environment or threat landscape.

• Manage and coordinate activities related to event and incident management.
• Immediately notify the Superintending Officer from the Customer (S.O.) of any cybersecurity incident relating to the CII or any Connected System.
• Provide timely updates to the S.O. and cooperate fully with the LTSS team to handle, manage, and resolve all security incidents.
• Ensure prompt implementation of immediate corrective measures, such as software patches and virus/malware removal, to restore the system to a clean, secured, and operational state.
• Support the S.O.'s required incident response procedures, ensuring that all personnel are briefed on reporting processes.
• Ensure that all audit trails (e.g., network, application, system, and security logs) are kept for a minimum of twelve (12) months to assist in future investigation and access control monitoring.

• Coordinate system updates and upgrades, including Patch Management.
• Oversee and facilitate regular software and firmware updates for all relevant hardware (e.g., servers, network switches, PLCs).
• Ensure the security of the System and Facilities by generating and coordinating the review of security logs and reporting any found security violations to the S.O.
• Support Security Testing and Assessment activities, including:
• Security Vulnerability Assessment (annually).
• Penetration Testing (annually).
• Threat Hunting exercises (at least once every twenty-four months).
• Adversarial Attack Simulation (Red/Purple Teaming exercises).
• Support and coordinate resources for all periodic audits and security reviews conducted by the S.O. or appointed third-party auditors.
• Ensure that all discovered vulnerabilities are addressed and resolved within the timeframe agreed upon by the S.O.

• Ensure the BHS design and architecture comply with secure design principles, including Defense-in-Depth, Least Privilege Principle, and Zero-Trust Principle.
• Collaborate on the development and adherence to the 15-year Technological Roadmap and Obsolescence Management Plan.
• Coordinate the integration of the BHS central logging system with the S.O.’s corporate Security Information and Events Management (SIEM) solution.

The position requires a strong technical and management background specific to critical infrastructure environments.

• Degree in Computer Engineering and/ or relevant technology education in computer networking and security.
• A minimum of 5 years of relevant experience in managing, operating, and testing Information Technology (IT) and Operational Technology (OT) systems of similar scale.
• Strong knowledge of baggage handling systems, SCADA, and industrial control systems is a plus.
• Proven experience in vendor management, compliance, and cross-functional collaboration.
• Knowledge in MS Office, MS Project, MS Visio.
• Familiarization with SIEM solutions (e.g. IBM Qradar), Network monitoring tools (e.g. Whatsup Gold) as an advantage.

• ISC2 Certified Information Systems Security Professional (CISSP)
• ISACA Certified in Risk and Information Systems Control (CRISC)
• ISACA Certified Information Security Manager (CISM)
• GIAC Certified Intrusion Analyst (GCIA)
• GIAC Certified Incident Handler (GCIH); or
• Qualified ISO/IEC 27001 Lead Implementer / Lead Audit

• Communication and interpersonal skills
• Problem-solving and decision-making
• Conflict resolution
• Adaptability and flexibility
• Time Management