Senior Manager, Information Security - Singapore - Razer Inc.

    Razer Inc.
    Razer Inc. Singapore

    1 week ago

    Default job background
    Description

    Job Responsibilities:

    Information Security Strategy and Planning:
    Contribute to the development the organisation's InfoSec strategy and roadmap

    Stay updated on industry trends, security best practices, and regulatory requirements

    Policy and Procedure Development:
    Create, maintain, and update InfoSec Architecture, frameworks and policies, standards

    Ensure alignment of security policies across different Business Units (BUs) and with industry standards and compliance requirements

    Risk Management:
    Collaborate with BUs in risk assessments and identify vulnerabilities in systems, applications, and processes

    Develop and implement risk mitigation strategies and controls

    Security Awareness:
    Design and conduct Phishing Simulation exercises as part of the overall effort in promoting security awareness and best practices among employees

    Incident Response and Management:
    Review BU's security incident response plans

    Co-lead incident response efforts with BU Leads in the event of security incidents

    Coordinate with Legal, IT, and other relevant departments during incident investigations

    Security Monitoring and Operations:
    Manage Bug Bounty Program

    Manage outsourced security service providers

    Review, analyse and ensure the timely closure of security vulnerabilities, alerts, and issues while working with BU-InfoSec to plan for remediation or implementing controls to mitigate them

    Security Projects and Initiatives:
    Evaluate and select security solutions, including the negotiation of the associated contracts

    Lead security projects and work closely with internal IT team and BU-InfoSec in rolling out security solutions

    Security Team Management:
    Lead and manage junior security team members, including training and development, and performance evaluations

    Set team goals, objectives, and KPIs to ensure effective security operations

    Foster a culture of collaboration, innovation, and continuous improvement within the security team


    Pre-Requisites:
    Degree in Computer Science or Cyber Security with at least 7 years of cybersecurity experience

    Possess industry certifications such as CISSP, CEH and AWS Security

    Proven track record of progressively responsible roles in cybersecurity, with managerial experience

    Hands-on experience in security solutions implementation, management and operations

    Proficiency in various cybersecurity solutions, including firewalls, SIEM, VAPT, Privileged Access Management (PAM), Breach & Attack Simulation systems (BAS) and Security Orchestration & Automated Response (SOAR)

    Experience in network security, AWS cloud security, and application security best practices


    Good working knowledge of risk management, BCP and security frameworks (NIST or ISO2700), compliance frameworks (GDPR) and Technology Risk Management Frameworks (e.g.

    , MAS TRM)

    Strong project management and stakeholder management skills

    Excellent oral/written communication skills and interpersonal skills

    Positive mindset, open-minded, flexible and proactive

    Experience in an end-user environment and managing cyber security vendors

    #J-18808-Ljbffr