Principal Engineer – Security Operations
Principal Engineer – Security Operations
Job Type: Full-Time
About Us
SPH Media is evolving, and we welcome talented individuals to join us in our transformation journey. Our mission is to be the trusted source of news and lifestyle content in Singapore and Asia. As an employer, we are committed to rewarding our people fairly and developing them in their careers. Grow your career in a vibrant and collaborative environment built around a culture of respect and inclusivity. Join us to work with passionate people who impact lives through the stories they tell.
About the role
We are seeking a highly experienced and technically proficient senior-level team leader to join our Cybersecurity team. You will be involved in activities that contribute to cyber resiliency for the organization, such as cybersecurity operations, threat analysis and assessment, and capability development. This role demands strong technical leadership and expertise in cybersecurity, and a passion for all things cybersecurity.
Responsibilities
- Lead and mentor a team of cybersecurity engineers, providing technical guidance and support.
- Ensure the team stays updated with the latest advancements in cybersecurity technologies and practices.
- Identify key threats, conduct technical risk analysis, and formulate mitigation strategies. Collaborate with internal and external stakeholders, regulators, and security partners to implement and operate cybersecurity solutions.
- Conduct comprehensive assessments of internal IT and OT systems to identify vulnerabilities and potential security risks.
- Engage in the enhancement, assessment, and implementation of cybersecurity frameworks in accordance with the NIST Cybersecurity Framework (CSF).
- Evaluate and assess the security maturity and vulnerability assessment of IT products and software applications to ensure compliance with the organization's security standards.
- Provide recommendations to de-risk technology adoption for internal programmes and initiatives.
- Manage and operate security monitoring tools to detect and analyse security risks and threats.
- Monitor and track suspicious network and application behavior, including investigating breaches, gathering evidence, and analysing security log/access reviews.
- Lead the team to analyze and respond to security incidents and threats.
- Lead investigation of security incidents by analysing logs, identifying security issues, and recommending solutions.
- Execute security projects such as data classification, DLP, BAS across the organization.
- Create management reporting for cybersecurity evolving threats, organization maturity assessment, and initiatives.
- Provide technical advice to CISO, delivering expert insights on cybersecurity implications of disruptive and emerging technologies.
Requirements
- Minimum 10 years of experience in cybersecurity, with a focus on technical roles, and at least 3 years in a technical leadership role.
- Possession of a Bachelor’s or Master’s degree in Computer Science, Engineering, Cybersecurity, Information Security or ICT related field.
- Experience with cloud and native security solutions is required.
- Experience with incident response in relation to cyber events is required.
- Experience with SOC (Security Operations Center) teams to monitor and manage security incidents and events in real-time is required.
- Proficient in using SOC tools and technologies to identify threats, analyse data, and ensure timely response to security incidents.
- Hands-on experience in investigating breaches, gathering evidence, and analysing security log/access reviews is a plus.
- Certification: CISSP, CISM and GIAC certifications is a plus.
- Knowledge of common security frameworks like CIS, NIST CSF, ISO 27000, COBIT, C2M2.
- Knowledge of regulatory requirements related to cybersecurity (e.g., Cybersecurity Act, PDPA, CCoP 2.0, PCS).
- Excellent problem-solving, analytical, and critical thinking skills.
- Effective communication and presentation skills, with the ability to convey complex technical information to non-technical stakeholders.
- Proven track record in leading and mentoring technical teams.
- Driven and capable of working independently and as part of a team.
- Experience working in cross-functional and interdisciplinary teams.
Interested individuals, please fill in the form and attach your resume.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
