Assistant Manager - Singapore - NATIONAL INSTITUTE OF EARLY CHILDHOOD DEVELOPMENT

NATIONAL INSTITUTE OF EARLY CHILDHOOD DEVELOPMENT

Verified Company

Singapore

1 week ago

Posted by:

Wei Jie

beBee Recruiter

Description

Responsibilities:

Develop and maintain all documentation on security policies, standards and controls and enforce compliance with policies and procedures in entire organisation
Develop, implement and monitor reporting mechanisms for governance, security and risk practices to support compliance and highlight areas of exposure
Keep abreast of current advances in all areas of information technology concerning vulnerabilities, security breaches or malicious attacks, and maintain uptodate knowledge of IT security industry
Develops, tracks, and reports on Key Risk Indicators (KRIs) for information technology security risk assessment progress
Support data protection under Personal Data Protection requirements
Develop and maintain business continuity plan and IT disaster recovery plan. Conduct annual business continuity and IT Disaster recovery testing
Conduct IT risk assessment, review and reporting of key IT risk exposures and metrics, develop IT risk management framework and remediation plans to improve security posture with IT security best practices
Assist in the execution for enterprise information and security governance and architecture roadmap
Identify potential threats or attempted breaches to minimise vulnerabilities and risks in operating environment
Design, develop and conduct cybersecurity and personal data protection act awareness workshops.
Execute, manage, enhance and implement security operational processes to comply with IT regulatory and corporate requirements
Responsible to ensure information security agreement is established for any required IT system/service contracts
Perform incident and security management through Identify, Protect, Detect, Respond and Recover functions
Any other related tasks assigned by supervisor

Job Requirements

Bachelor's Degree in Computer Science / Cyber Security / Information Technology or equivalent
Minimum 3 years' experience in IT audit, IT security or Data protection
Possess relevant IT Governance, security and project management certifications (eg COBIT, CISSP, CISA, CISM, CITPM, PMP) will be advantageous
Strong understanding of key IT security concepts such as access control, confidential data, encryption, business continuity, infosec scans, and vendor apps
Strong knowledge of IT organisation business processes and systems including (IT Security, data management, architectural and planning, technology life cycle management)
Good understanding of risk management functions, including IT audit, cyber security, and/or IT compliance.
Experience in or knowledge of 3rd party / vendor management lifecycle
Good understanding of Singapore Personal Data Protection Act (PDPA)
Strong oral and written communication skills to work effectively with staff at all levels of the organisation