IT Security Governance Specialist

What The Role IsThe mission of Housing & Development Board (HDB) is to provide affordable, quality housing and a great living environment where communities thrive. To achieve its mission, HDB aims to be data-driven to the core and adopt evidence-based decision making in developing better housing policies service, improving service delivery and optimising operationsICT Security GovernanceWhat you will be working onDevelop And Implement Enterprise-wide ICT Security Programmes As FollowsEstablish the cybersecurity governance structure for HDB to ensure that the security posture is robust, resilient, and pragmaticEnhance and update the IT security policy, standards, procedures so that they are always current against the evolving cyber security landscapeManage the compliance with the GovTech ICT/SS Security Policies, Initiatives, Measures and the relevant Government Instruction Manual to further strengthen the WOG and HDB ICT security posture.Establish the governance and administer the Third-Party Management Policy and ProcedureCybersecurity Awareness OutreachManage and implement Cybersecurity Awareness Framework to promote IT security awareness and outreach programme as follows:Raise HDB management and staff’s security awareness and appreciation of ICT Security to ensure HDB’s information assets are protected.Create good staff cyber security hygiene through regular ICT Security outreach programme such as annual ICT Security Awareness Talk, security advisories, conduct of Phishing exercise, road show.Keep abreast of key technology and skillset in the industry to maintain ICT Security personnel skills development.Identify various channels for the conduct of the security program such as cyber range exercises, technical certification, gamification.Identity & Access ManagementTo establish procedures and standards for the Identity and Access management in HDB as follows:To administer and manage the user accounts and privileged access, so as to safeguard the confidentiality of ICT assets and systems in HDB.To maintain and manage the access controls to applications on premises and on Cloud.Digital Certificate ManagementQuality Audit and Security ReviewsTo serve as an independent party to perform quality auditing and report to Management on the observations and recommendations.To conduct regular security reviews on application systems and infrastructure to ensure the HDB’s systems and infrastructure are secured and reliable.You Are Also Tokeep abreast of the latest industry ICT security practices and technologies as well as emerging threats and vulnerabilities and recommend appropriate controls for implementation to improve the enterprise security posture.lead and/or participate in the adoption of new technological advances and best practices in infrastructure security systems to mitigate security risksWhat We Are Looking ForYou should possess a strong background in ICT Security, Information Security, Information Technology, Computer Science, Engineering (Computing/Telecommunication), Cybersecurity and/or Digital Forensic or equivalent.At least 1 years of direct and relevant full-time ICT security work experiencePreferably possess one or more appropriate IT security certifications, such as CISSP, CRISC, CISM, CISA, CEH, etcPreferably with strong knowledge and experience in information and cybersecurity risks, controls, vulnerability assessment/penetration testing, compliance, and industry IT/cyber security best-practices.Added advantage for candidates with knowledge in any of the following:Domain knowledge of access control; telecommunications and network security; cloud security; Cybersecurity & information security governance and risk management; software development security; cryptography; security architecture and design; operations security; security incident response and management; business continuity and disaster recovery planning; legal regulations, investigations, and compliance; physical (environmental) securityKnowledge in IT security principles and IT controls as well as industry best practices and frameworks pertaining to IT Controls (IM8, COBIT, ISO27001/2 etc.)Good understanding of the current IT/Cyber Security landscapeCandidate Also Need Toto work beyond business hours including weekend when necessarypossess good interpersonal and communication skillsdemonstrate a strong sense of urgency and have good troubleshooting and problem-solving skills with good attention to detailhave good command of written and oral EnglishSuccessful candidates will be offered a 1+1 year contract in the first instance.Find out more about a career with HDB at www.hdb.gov.sg/cs/infoweb/about-us/careersAll applicants will be notified on whether they are shortlisted for the position within 4 weeks of the closing date of this job posting.