[What the role is]
GovTech is the lead agency driving Singapore’s Smart Nation initiatives and public sector digital transformation.[What you will be working on]
Identify and address vulnerabilities through system scans, monitoring, and prompt investigation of suspicious activities.
Develop, implement, and enforce security and compliance protocols, policies, and procedures.
Provide guidance on integrating security practices into software development and IT operations.
Stay updated on cybersecurity trends, threats, tools, and compliance requirements, ensuring policies remain aligned with standards and regulations.
Conduct risk assessments, review policies, and perform second-line IT compliance checks to ensure adherence to organizational and regulatory standards.
Monitor and report instances of non-compliance to management for proactive resolution.
Continuously improve IT compliance processes and procedures for greater efficiency and effectiveness.
Lead initiatives like ISTD Compliance Day and IT Audit 101 to coach teams on complying with standards.
Offer guidance and support to first-line teams on implementing standards and policies.
Brief vendors to ensure they meet compliance standards and regulatory requirements.
Mentor and guide junior staff, fostering their professional development and ensuring they understand and adhere to security and compliance requirements.
[What we are looking for]
Degree in Computer Science, Information Systems, Engineering or equivalent
Strong interpersonal and stakeholder management skills
Ability to work with cross-functional, multi-disciplined team to formulate, institute and monitor security policies and procedures
At least 8 years of experience related to information security and solid grasp of ICT operations, security policies, business processes and the relationship between them.
Knowledge of IT security management principles and practices
Experience in one or more of the following areas will be an advantage; policy compliance and governance, risk assessment, solutioning, network design, application development, Internet of Things, cryptography, hardware design protection, mobile application/device management, cloud hosting design and implementation in AWS/Azure/Google, DevSecOps consulting, design and implementation of CI/CD pipelines, etc.
Knowledge and experience of IM8/NIST/IS0 27001/2 policies /standards
Good understanding of both IT and business processes and the relationship between them
GovTech is an equal opportunity employer committed to fostering an inclusive workplace that values diverse voices and perspectives, as we believe that diversity is the foundation to innovation.
Our employee benefits are based on a total rewards approach, offering a holistic and market-competitive suite of perks.
These include leave benefits to meet your work-life needs and employee wellness programmes.
We champion flexible work arrangements (subject to your job role) and trust that you will manage your own time to deliver your best, wherever you are, and whatever works best for you.
Learn more about life inside GovTech at go.gov.sg/GovTechCareers.
Stay connected with us on social media at go.gov.sg/ConnectWithGovTech.