Manager, Cyber Security (Threat Management)
Manager, Cyber Security (Threat Management)
Security, privacy and operational resilience are critical issues facing all organizations today. We are currently looking for qualified and capable security-minded individuals to be the driving force behind SMRT’s cyber security measures with the goal of enabling ongoing, secure and reliable operations across the enterprise.
Responsibilities
As Manager, Cyber Security (Threat Management), you will work as part of the team to perform 24x7 cybersecurity monitoring and incident response at the SMRT Rail Cybersecurity Centre, covering Non-RTS (Rapid Transit System) systems and applications. Specific responsibilities include, but are not limited to:
- Detection, triage, escalation and analysis of potential cybersecurity threats, events and incidents.
- Correlation and analysis of cybersecurity threat detections for attribution and proactive defence.
- Management and calibration of security monitoring and incident response playbooks, supported by cybersecurity advisories and threat intelligence.
- Developing cybersecurity incident handling practices, standards and guidelines, playbooks and solutions aligned with technical and industry best practices.
- Conducting host forensics, network forensics, and log analysis in support of incident response investigations.
- Continuously monitor the company’s digital assets to identify and remediate vulnerabilities.
- Developing and presenting cybersecurity threat analysis, security monitoring dashboards and reports to SMRT management.
- Adopting incident reporting procedures in compliance with the Group Cybersecurity Policy, as well as regulatory frameworks such as the CSA Code of Practice (CCoP) and LTA Cyber Security Incident Management Framework.
- Leading cybersecurity incident after-action reviews.
- Staying updated with cybersecurity threats, trends and developments, and recommending cost-effective improvements to manage cybersecurity threats effectively.
Qualifications & Work Experience
• You should possess a Degree in Information Systems, Computer Science or equivalent
• At least 6 years of experience in Cybersecurity with experience in cybersecurity SOC operations and/or threat hunting
• Cybersecurity credentials such as CISSP, OSCP, GCIH will be advantageous
Skills
Technical Skills
• Good understanding of managed security services, network security, monitoring and incident response
• Good understanding of cybersecurity principles, governance and risk management
• Good knowledge of cybersecurity operations, incident handling, forensic investigation
• Ability to analyse and interpret data from various sources to identify potential cyber security threats.
• Strong understanding of MITRE ATT&CK and ICS MITRE frameworks
• Familiarity with regulatory frameworks such as the Cybersecurity Code of Practice (CCoP)
Generic Skills
• Excellent verbal and written communication skills
• Strong leadership, communication, interpersonal, analytical and problem-solving skills
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
