Senior Assistant Director/Assistant Director, Critical Information Infrastructure (CII), CSA

About CSA

Established on 1 April 2015, the Cyber Security Agency of Singapore (CSA) provides dedicated and centralised oversight of Singapore's national cyber security functions. It is the national body overseeing cyber security strategy, operation, education and outreach and ecosystem development. It is part of the Prime Minister's Office and is managed by the Ministry of Communications and Information. CSA offers exciting opportunities for individuals to be part of our dynamic, multi-disciplinary and committed team shaping Singapore's cyber landscape.

Role

Critical Information Infrastructure (CII) Division works to strengthen the cybersecurity of our critical

sectors in the Government, Transport, Services and Utilities clusters. The team partner regulators and

CII owners to strengthen the cyber resilience of the Nation's CII against cyber threats and to ensure the

continuity of the essential services. Towards this end, your work will be focused on enhancing the

protection, detection, response, and recovery capabilities of CII.

Responsibilities

You will be involved in directing and the administration of the cybersecurity governance and legislative

framework, engaging stakeholders on cyber risk management efforts and supervise the implementation

of security measures. Experienced candidate will be exposed to engagement opportunities with foreign

government cybersecurity agencies, International think-tanks, and technical practice groups.

As part of the division leadership, you will manage a team of 4-10 officers and assist the Division

Director in the day-to-day governance operations, supervision engagements, and operationalising

national programme and projects. There will also be opportunities for frequent interactions with senior

leaders from both the public and private sectors.

Requirements

• Relevant qualification in Info-Communications Technology-related discipline

(Cyber/Information Security, Information Technology, Computer Science, Management

Information Systems), Science or Engineering.

• At least 12-15 years of Information Technology (IT) / Operational Technology (OT) related role

in the domains of cyber governance, risk management and compliance and/or consulting

capacity.

• Strong technical skills in one of more of the following: network, application and operating system

security assessment, cloud security, vulnerability assessment and penetration testing, incident

management and IoT security.

• Professional certifications such as CISM, CRISC, CGEIT, and CISA are preferred. CISSP,

GRID, GDAT, GDSA, and GICSP are desired.

• Self-motivated with strong analytical skills to deal with complex issues and influence internal

and external stakeholders to achieve targeted outcomes. Supervisory experience is preferred.

• Excellent communication, written and interpersonal skills, and confident to engage senior

management.

All applicants will be notified on whether they are shortlisted or not within 4 weeks of the closing date

of this job posting.

For any issues with the application, you may drop your resume with us at csa_recruit@csa.gov.sg.

Lead Senior Consultant Attack Simulation Group (Enterprise), Cybersecurity Engineering Centre, CSA About CSA Established on 1 April 2015, the Cyber Security Agency of Singapore (CSA) provides dedicated and centralised oversight of Singapore's national cyber security functions. It is the national body overseeing cyber security strategy, operation, education and outreach and ecosystem development. It is part of the Prime Minister's Office and is managed by the Ministry of Communications and Information. CSA offers exciting opportunities for individuals to be part of our dynamic, multi-disciplinary and committed team shaping Singapore's cyber landscape. Role As a Lead/Senior Consultant of the ASG (Enterprise), your key responsibility is to lead a team in the conduct of in-depth vulnerability assessment, penetration testing and red teaming of Enterprise IT systems. Responsibilities • Provide cybersecurity assurance against sophisticated attackers through attack simulation • Work closely with respective stakeholders to facilitate the tests, provide technical consultancy, report vulnerabilities and recommend remediation/mitigation actions • Manage team of specialists and oversee their Enterprise IT technical skills development, including your own managerial and technical competencies Requirements • At least three years’ experience in Enterprise IT and Cloud attack simulation • CRT/OSCP or equivalent certifications in penetration testing is preferred • Technically hands-on and curious about inner workings of Enterprise information technologies • Analytical, conceptualisation and problem solving skills • Good communications and interpersonal skills to relate to stakeholders’ concerns If you share our passion to make a difference in the cyber security landscape, take up the challenge and apply now. All applicants will be notified on whether they are shortlisted or not within 4 weeks of the closing date of this job posting. For any issues with the application, you may drop your resume with us at csa_recruit@csa.gov.sg.

Senior Consultant /Assistant Director (Governance, Supervision & Analytics), Critical Information Infrastructure, CSA About CSA Established on 1 April 2015, the Cyber Security Agency of Singapore (CSA) provides dedicated and centralised oversight of Singapore's national cyber security functions. It is the national body overseeing cyber security strategy, operation, education and outreach and ecosystem development. It is part of the Prime Minister's Office and is managed by the Ministry of Communications and Information. CSA offers exciting opportunities for individuals to be part of our dynamic, multi-disciplinary and committed team shaping Singapore's cyber landscape. Role Critical Information Infrastructure (CII) Division works to strengthen the cybersecurity of our critical sectors in Government, Transport, Services and Utilities clusters. The team partners regulators and CII owners to strengthen the cyber resiliency of the Nation's CII against cyber threats and to ensure the continuity of the essential services. Towards this end, your work will be focused on enhancing the protection, detection, response and recovery capabilities of CII. Responsibilities You will be involved in directing, supervising and the administration of the cybersecurity governance and legislative framework, and engaging stakeholders on cyber risk management efforts and security measures. Experienced candidate will be exposed to engagement opportunities with foreign government cybersecurity agencies, International think-tanks and technical practice groups. As a senior member of the team, you will assist in the supervision and governance of the CIIs. If deemed suitable, you will undertake managerial responsibilities for a team of officers. There will also be opportunities for frequent interactions with senior leaders in the cybersecurity space. Requirements

• Experience formulating and implementing cybersecurity policies and code of practice

• Defence policy management experience or at least 12-15 years of Information Technology and/or Operational Technology in the area of cybersecurity governance, risk management, compliance and/or cyber consulting capacity

• Relevant qualification in Political Science, Info-Communications Technology-related discipline (Cyber/Information Security, Information Technology, Computer Science, Management Information Systems), Science or Engineering

• Strong technical skills in network defences, application, database and operating system security preferred; cybersecurity assessment, cloud security, vulnerability assessment, penetration testing, incident management and IoT security are desired

• Professional certifications such as CISM, CRISC, CGEIT, and CISA are preferred; CISSP, GRID, GDAT, GDSA and GICSP are desired

• Self-motivated with strong analytical skills to deal with complex issues and influence internal and external stakeholders to achieve targeted outcomes

• Possess excellent written, presentation and communication skills with the ability to build effective and strong working relationships at all levels

All applicants will be notified on whether they are shortlisted or not within 4 weeks of the closing date of this job posting. For any issues with the application, you may drop your resume with us at csa_recruit@csa.gov.sg.