IT Security Governance - Singapore - Housing and Development Board

Description

About Us
The mission of Housing & Development Board (HDB) is to provide affordable, quality housing and a great living environment where communities thrive. To achieve its mission, HDB aims to be data-driven to the core and adopt evidence-based decision making in developing better housing policies service, improving service delivery and optimising operations.

What Will You Do?

• Work with key stakeholders to ensure high cybersecurity posture of HDB applications through activities such as the following:

i. Develop and promote Secure Coding Practices.
ii. Collaborate with project teams to ensure compliance with Vulnerability Assessment & Penetration Testing requirements.
iii. Review security test reports and provide recommendations on remediation measures to application project teams, where necessary.
iv. Procure and maintain security testing tools to support Static Application Security, Dynamic Application Security Testing and Vulnerability Assessment & Penetration Testing.
v. Study and propose CI/CD pipeline to support DevSecOps.
vi. Perform Software Composition Analysis.

• Develop, maintain, and operationalise a Threat Risk Assessment framework for HDB to identify and mitigate the threats and risks in its IT systems and programmes.

• Manage and promote IT security awareness and outreach programme.

You are also to:

• Keep abreast of the latest industry Software security practices and technologies to manage emerging threats and vulnerabilities.

• Recommend and implement appropriate measures to improve the HDB Applications security posture.

• Lead and/or participate in the research and adoption of new technological advances and best practices in software security to mitigate future security threats.

You will be a Great Fit if you:

• Possess a strong background in software development with popular web/mobile technologies such as HTML, Javascript, , Angular, Java, ASP.NET, C#, PHP, Ruby, etc with knowledge on ICT Security, Information Security and Secure Coding.

• Have at least 2 year of relevant ICT security work experience.

• Possess one or more appropriate IT security certifications, such as CSSLP, CISSP, CRISC, CISM, CISA, CEH, OSCP, CREST etc.

• Have strong knowledge and experience in Information and Cybersecurity Risks, Vulnerability Assessment & Penetration Testing, Cloud Security, Container Security, Mobile Security, DevSecOps, Cryptography and other industry IT/cyber security best-practices.

Good to Have:

• Able to drive new initiatives for Cloud Security.

• Possess good interpersonal and communication skills.

• Proactive to troubleshoot with excellent problem-solving skills.

• Fluent in written and spoken English.

• Meticulous attention to details

• Work beyond business hours including weekend when necessary.

Successful candidates will be offered a 1+1 year contract in the first instance. Conversion to perm is dependent on good performance.

Please apply for the job through the job portal as linked: