Jobs

    Global Cyber Security - Singapur, Singapore - Fung Group

    Fung Group
    Fung Group Singapur, Singapore

    6 days ago

    Default job background
    Full time
    Description

    We pride ourselves in being at the forefront of Innovation when it comes to creating bespoke beauty solutions for our partners. If you want to transform and make waves in the beauty industry, and are looking for a company that is Innovative, Exciting, and Results Oriented with excellent Team Spirit, join us at Meiyume Let us Empower Beauty for A Sustainable Future, together.

    $9925/9925$18566.htmldThe Manager (or Senior) – Global Cyber Security and IT Governance, is a critical role in ensuring Meiyume's information and technology assets are secure from cyber threats and vulnerabilities. Responsible for designing, implementing, and managing Meiyume's cyber security and IT governance initiatives. This includes creating and enforcing security policies, ensuring adherence to compliance regulations, and developing and implementing cyber security strategies to safeguard the company's systems and data. working with a team of security professionals at group level and externally.
    The ideal candidate for this role will have a strong background in cybersecurity, as well as experience managing a team or leading projects. They should have excellent communication and analytical skills and be able to work effectively in a fast-paced, dynamic environment. A bachelor's degree in computer science, information technology, cyber security or a related field is a must, and advanced certifications such as CISM, CISSP, or CISA are highly desirable.

    Key Results / Accountabilities:

  • Implementation and maintenance of the ISO27001 framework: Responsible for maintaining the ISO27001 framework for the company. This includes the development of policies, procedures, and guidelines to meet the security requirements of Meiyume. You will work with the IT, legal, group technology and compliance teams to ensure all aspects of the framework are implemented.
  • Developing cyber risk management strategies: Working with the senior management team to develop and implement cyber risk management strategies that are aligned with the business objectives of the company. This involves assessing the risks associated with the Meiyume's data, systems, and processes, and recommending appropriate mitigration strategies.
  • Leading cyber secruity incident response activities: Responsible for leading the company's cyber security incident response activities. This includes developing incident response plans, conducting incident response training, and leading post-incident analysis and review.
  • Ensuring compliance with relevant regulations and standards: Responsible for ensuring that the company complies with relevant regulations and standards in relation to cyber security-related regulations.
  • Managing cyber security audits and assessments: Responsible for managing cyber security audits and assessments, including external audits of the company's cyber security controls, and ensuring remediation of identified gaps.
  • Leading cyber security awareness programs: Collaborating with other departments to promote a culture of security awareness and training. Responsible for developing and delivering cyber security awareness training programs for all employees. This includes regular training on cyber security best practices, phishing and social engineering awareness, and other topics.
  • Budget and resource management: Responsible for the management of budget and resources allocated to the cyber security function. This includes managing the team of cyber security professionals at group level, as well as engaging with external service providers where required.
  • Risk Assessments: Conducting risk assessments and vulnerability testing to identify potential security threats and weaknesses including red and blue team exercises.
  • Monitoring:Managing access control and authentication systems.Monitoring security logs and alerts to identify suspicious activity.Ensure effective 24/7 Security Operations Centre (SOC) processes are in place.
  • IT Governance:Develop and implement IT governance and compliance frameworks that align with Meiyume's needs and compliance requirements.Perform IT risk assessments and identify potential risks to the organisation's IT systems, applications, and data.Develop and implement IT policies and procedures that align with the organisation's overall governance framework.Ensure that all IT practices and policies follow legal and regulatory requirements.Develop and implement IT security and privacy policies and procedures.Develop and implement IT audit programs and ensure that all audits are conducted in accordance with established policies and procedures.Develop and implement processes for ensuring that all IT controls are tested, reviewed, and updated on a regular basis.Develop and maintain a comprehensive IT governance and compliance reporting system.
  • Responsible for organisational change management and leading an effective change function to include:Apply a structured methodology and lead change management activities.Communication to project team members, key stakeholders, and sponsors.Assess and lead organisation through appropriate change management practices.Explore the use of eLearning across the business in delivering targeted training.Define positive use cases to bring team members along the journey that will help employees to adjust to new ways of working, enabled by the "Meiyume Way" process operating model and new technology.Develop and implement effective communication strategies that build employee trust and awareness.Develop communications materials which support the transformation, including pre and post go-live awareness in multiple markets globally.
  • Manage the business relationship to ensure buy-in and advocacy for business change activities with internal business, IT, project teams and third-party consultants to develop a shared understanding.
  • Stay up to date on industry trends and best practices related to transformation and incorporate them into the organisation's transformation strategy.

    • Key Contacts:

  • This position's primary interfaces are:InternalMeiyume technology team.Every business team globally.Super Users.Fung Group.ExternalService providers.Technology vendors / suppliers.

    • Qualification & Experience and Competencies:

    Education and Experience (MUST HAVE)

  • Bachelor's degree in computer science, information security, or a related field
  • 5+ years of experience in IT governance, compliance, cyber security management roles, with experience in ISO27001 implementation and maintenance.
  • Strong knowledge of cyber security regulations and standards.
  • Understanding of IT risk management and experience developing cyber risk management strategies.
  • Demonstrated experience designing and implementing cyber security strategies and initiatives.
  • Familiarity with major cyber security frameworks, such as NIST, SOC 2, or ISO 27001.
  • Strong knowledge of IT governance frameworks and best practices, including COBIT, ITIL, and ISO.
  • Advanced knowledge of security technologies, such as firewalls, encryption, and intrusion detection/prevention systems.
  • Strong understanding of cloud security and cloud service provider security.
  • Strong communication and interpersonal skills, with the ability to engage with senior management and build effective relationships with stakeholders.
  • Excellent communication skills, particularly in presenting security topics to non-technical stakeholders.
  • Experience leading cyber security incident response activities.
  • Budget and resource management experience.
  • Experience leading and managing a team of security professionals.
  • Creative and willing to drive change.
  • Strong analytical and problem-solving skills, with the ability to develop and implement innovative solutions.
  • Well-organised, strong interpersonal skills with the ability to work in a team and independently.
  • Willingness to travel.
  • Familiar with managing external vendors and able to communicate with users across all levels.
  • Demonstrated ability to manage complex projects and teams in a fast-paced environment.
  • Strong business acumen, with a deep understanding of business operations, processes, and strategy.
  • Able to adopt a flexible working hour arrangement to work with team members located in different time zones.
  • Interested in and able to work with people from different cultures and backgrounds.
  • Good command of written and spoken English, Cantonese, Putonghua/Mandarin, French, Thai, or Indonesian Bahasa speaking and writing ability is an advantage.
  • Demonstrates a strong awareness of the uses of IT within the industry sector and specifically within competitive or associated organisations operating in the same market.

    • Preferred Criteria (NICE TO HAVE)

  • Professional security certifications such as CISSP, CISM, or CISA are a plus.
  • Certifications in IT governance and compliance, such as CISA, CGEIT, CRISC, or similar, are a plus.
  • Previous red and blue team exercise experience highly regarded.
  • Track record in Project Management tracking tools such as , Jira or equivalent.
  • Knowledge of Gartner's run, grow and transform model.
  • Experienced in manufacturing or B2B industry is an absolute advantage.

    • Economic Dimensions:

  • Create 3-year financial plan for the One ERP project and all "transform" opex and capex costs.
  • Forecast quarterly upcoming spend for the One ERP project and all "transform" vendors and internal costs.
  • Categorise costs for One ERP project against Gartner's run, grow and transform model.
  • Forecast people spend across employees and consultants during the life of the One ERP project and other "transform" projects.

    • Country / Cluster Specific Information:

    With an annual budget consisting of opex and capex this position is responsible for ensuring the rollout of the One ERP project to various Meiyume's businesses globally across eight locations including United States, United Kingdom, France, Thailand, Singapore, Indonesia, Hong Kong, and China.

    Full responsibility for ensuring the highest possible satisfaction of business team members at Meiyume locations globally through effective design, implementation, and support. Any interruption or outage of any component of this ERP project could cause an immediate discontinuance in the ability for:


    • Manufacturing sites to manufacture products,


    • Warehouses / distribution centres to ship products and receive raw materials,


    • Offices to communicate using tools such productivity tools and critical ERP systems.

    In short, Meiyume's business could come to an immediate halt if the responsibilities of this position are not executed to an extremely high level of standard. The cost impact of such an outage would far exceed the annual budget for which the position maintains responsibility.

    #meiyume

    As an equal opportunity employer, we shall consider all applicants regardless of gender, age, religion, marital status, race, sexual orientation, disability, disease, pregnancy, or trade union and/or political affiliation, and disregard all factors deemed inappropriate by local law and the International Labor Organization's Declaration on Fundamental Principles and Rights at Work.

    Data collected will be used for recruitment purpose only. Applicants not hearing from us within 6 weeks from the date of advertisement may consider their application unsuccessful.

  • ENGAGE GROUP PTE. LTD.

    Cyber Security

    1 week ago

    ENGAGE GROUP PTE. LTD. Singapore

    **CYBER SECURITY - Senior Solution Consultant (Presales), Regional - Cyber Security Software** · A specialised Cyber Security branch and a subsidiary of a Global Telco organisation is heavily investing and expanding their operations across the South-East Asia (SEA) region. · We a ...

  • ENGAGE GROUP PTE. LTD.

    Cyber Security

    1 week ago

    ENGAGE GROUP PTE. LTD. Singapore

    **CYBER SECURITY - Implemention & Deployment (Global Cyber Security Software)** · An advanced Cyber Security firm is expanding in the South-East Asia (SEA) region, and are now seeking experienced Cyber Security Engineers to Implement and Deploy Global Security Software. · Major G ...

  • Wärtsilä

    Cyber Security

    3 days ago

    Wärtsilä Singapore

    **Cyber Security (Operation Technology) Engineer/Specialist**: · **Job Title: Cyber Security (Operation Technology) Engineer/Specialist** · A safer, low-carbon shipping industry is underpinned by data sharing. We at Wärtsilä Voyage are creating the digital infrastructure needed t ...

  • Kerry Consulting

    Cyber Security

    1 week ago

    Kerry Consulting Singapore

    **Description**: · Job posting done by Sheralynn Tjioe, Associate Director - Cyber Security & Technology Governance, Risk & Compliance (GRC) Recruitment · Kerry Consulting is partnering with multiple clients on Cyber Security/Information Security job openings. · **Roles specifica ...

  • D L RESOURCES PTE LTD

    Cyber Security

    1 week ago

    D L RESOURCES PTE LTD Singapore

    Key Skills: External Attack Surface Management (EASM) solution & Vulnerability Management · **Job Objectives** · Ø This Vulnerability Management role will help on the strategic initiative to implement the External Attack Surface Management (EASM) solution. · Ø This role requires ...

  • D L RESOURCES PTE LTD

    Cyber Security

    1 week ago

    D L RESOURCES PTE LTD Singapore

    **Responsibilities**: · - Lead and participate in ongoing Microsoft 365 security projects and requirements discussions · - Provide overall security expertise for Microsoft 365 tools and Microsoft Purview Information Protection, so as to guide the team · **Job Description**: · - R ...

  • Spring Professional (Singapore) Pte. Ltd.

    Cyber Security

    1 week ago

    Spring Professional (Singapore) Pte. Ltd. Singapore

    Our Client is a Global Tech Unicorn. · - Led cybersecurity controls management programs alongside frameworks such as** ISO27001, PCI-DSS, SOC, NIST CSF** other regulations · - Working experience with **RSA Archer or ServiceNow**: · - Collaborated with other cybersecurity stakehol ...

  • EY

    Cyber Security

    1 week ago

    EY Singapore

    At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build ...

  • Leonardo S.p.A. Singapore Branch

    Cyber Security Engineer, Cyber

    1 week ago

    Leonardo S.p.A. Singapore Branch Singapore

    We are looking for a Security Engineer, Cyber & Security Solutions, to provide technical support to our installed system and infrastructure in the region. · In summary, the role involves the following activities: · - Managing and monitoring the installed system and infrastructure ...

  • LEONARDO S.P.A. SINGAPORE BRANCH

    Cyber Security Engineer, Cyber

    5 days ago

    LEONARDO S.P.A. SINGAPORE BRANCH Singapore

    We are looking for a Cyber Security Engineer to provide technical support to our installed system and infrastructure in the region. · The role involves the following activities: · - Managing and monitoring the installed system and infrastructure · - Debugging the system failures ...

  • halcyonknights

    Cyber Security Education

    2 days ago

    halcyonknights Singapore

    **Cyber Education & Reporting Analyst** · - Fed Gov - aviation sector · - Canberra CBD location + WFH · - Australian Citizens eligible for an NV1 Security Clearance · **The Opportunity**: · As the Cyber Security Education and Reporting Analyst, you will be an important member of ...

  • halcyonknights

    Cyber Security Education

    2 days ago

    halcyonknights Singapore

    **Cyber Education & Reporting Analyst** · - Fed Gov - aviation sector · - Brisbane Airport location + WFH · - Australian Citizens eligible for an NV1 Security Clearance · **The Opportunity**: · As the Cyber Security Education and Reporting Analyst, you will be an important member ...

  • NCS

    Cyber Security Internship

    1 week ago

    NCS Singapore InternshipSHIP

    **Cyber Security Internship**: · **Date**:3 Aug 2023 · **Location**: Singapore, Singapore · **Company**:Singtel Group · **About NCS** · **Track Introduction** · The increased sophistication of advanced cyber-attacks, the accelerated migration to complex cloud and hybrid IT enviro ...

  • ENSIGN INFOSECURITY (CYBERSECURITY) PTE. LTD.

    Cyber Security Officer

    2 days ago

    ENSIGN INFOSECURITY (CYBERSECURITY) PTE. LTD. Singapore

    The professional will be joining a top team in delivering complex Cyber Security solutions to defend against cyber threats of the world. We are looking for a dedicated and meticulous team player who wants to make a career in the Vulnerability Management (VM), Data Protection or G ...

  • NCS

    Cyber Security Operations

    1 week ago

    NCS Singapore

    **Cyber Security Operations (SOC) Senior Manager**: · **Date**:14-Feb-2023 · **Location**: Singapore, Singapore · **Company**:Singtel Group · Security, privacy, and operational resilience are critical issues facing all organizations today. We are currently looking for qualified a ...

  • Peak Ocean

    Cyber Security Engineer

    1 week ago

    Peak Ocean Singapore

    **16th February, 2023**: · The OT Cyber Security Engineers is working in billion-dollar scale projects to safely and securely deliver the Digitalisation Strategy for FPSO Facilities. Digital innovation requires operational technology (OT) systems to interact more and more with in ...

  • PEAK OCEAN PTE. LTD.

    Cyber Security Engineers

    1 week ago

    PEAK OCEAN PTE. LTD. Singapore

    The OT Cyber Security Engineers is working in billion-dollar scale projects to safely and securely deliver the Digitalisation Strategy for FPSO Facilities. Digital innovation requires operational technology (OT) systems to interact more and more with information technology (IT) s ...

  • One Consulting (Global) Pte Ltd.

    Cyber Security Engineer

    1 week ago

    One Consulting (Global) Pte Ltd. Singapore

    Singapore · Permanent · Closing on April 12, 2023 · **Responsibilities** · **D&A Dept**: · - Analyse Operation Technology (OT) and Information Technology (IT) networks for opportunities to improve integration, network architecture and security. · - Provide architectural advice an ...

  • SEARCH INDEX PTE. LTD.

    Cyber Security Engineer

    1 week ago

    SEARCH INDEX PTE. LTD. Singapore

    **IT / Cyber Security Exp**: · - **Azure Cloud Security**: · - **Project Management** · Job Scope: · - To deploy, configure and fine-tune security policies and configuration, and perform threat hunting to proactively response to potential cyber threat · - To configure security in ...

  • SEARCH INDEX PTE. LTD.

    Cyber Security Engineer

    1 week ago

    SEARCH INDEX PTE. LTD. Singapore

    **IT / Cyber Security Exp**: · - **Azure Cloud Security**: · - **Project Management** · Job Scope: · - To deploy, configure and fine-tune security policies and configuration, and perform threat hunting to proactively response to potential cyber threats · - To configure security i ...