Security-Jobs in Singapur

Company description:

ST Engineering's Marine arm provides innovative solutions in turnkey building, repair, and conversion services for a wide spectrum of naval and commercial vessels. We are one of the few shipyards in the world with the full range of capabilities to support the entire lifecycle of a ship. Our established shipyards in Singapore and the U.S. have proven capabilities to design and build highly customised and technically sophisticated commercial and military vessels for customers worldwide.

Expanding on our core competencies in large-scale engineering, we provide a comprehensive suite of environmental engineering solutions in water, wastewater, solid waste, and renewable energy. A trusted partner to naval and commercial sector customers worldwide, our track record includes successfully delivered projects in Brunei, China, India, Thailand, Singapore, the Middle East, and the U.S.

Job description:

The Cybersecurity Lead / SA (Cybersecurity) reports to the Head of Cybersecurity of the business unit, with the following roles & responsibilities:

1. Conduct periodic cybersecurity vulnerability assessments for the respective business unit and liaise with Group IT, SOC, or Project teams for remediation.
2. Perform system hardening and regular checks on security compliance based on relevant policies.
3. Maintain awareness of evolving cybersecurity threats, threat detection, and protection techniques to safeguard existing systems.
4. Provide cybersecurity awareness training, technical advisory, and consultancy to the business unit, such as regular security messages, eLearning, or webinars.
5. Respond to cybersecurity incidents and collaborate with SOC, IT, or Project teams for investigation and remediation.
6. Review and update project security devices and their rule sets or policies (e.g., Firewall, IDS/IPS, Web Proxy, WAF, NAC, Antivirus, DLP) to ensure relevancy and security compliance.
7. Support Business/System/Projects Audit, analyze audit findings, and prepare reports as required.
8. Assist in updating the company's Policy and SOPs, and review standards to meet Authority and industry security standards.
9. Review cybersecurity clauses in project contracts and draft security guidelines based on relevant policies.
10. Audit existing projects for security compliance against relevant policies and standards, such as CIS benchmark level 2.
11. Conduct security scans for IOC, vulnerability assessments, and potential threats as directed.
12. Assist in investigations of computer security breaches.
13. Help resolve project security gaps to enhance security posture and compliance.

• Minimum 6 years of relevant experience.
• Bachelor's degree in Computer Science, Information Systems, or related field.
• Strong understanding of security trends, technologies, and protocols.
• Excellent communication, writing, and presentation skills.
• Knowledge of risk management and incident response procedures.
• Analytical skills to assess risks and vulnerabilities.
• Up-to-date with the latest security threats and industry trends.
• Understanding of data privacy and protection compliance requirements.
• Knowledge of cybersecurity frameworks like NIST, ISO 27001, SOC 2, CIS Controls.

Preferred certifications include:

• CISSP, CISM, SSCP, GSLC, CISA, or equivalents.