Specialist (CISO Office)

Responsibilities

DSO National Laboratories (DSO) is Singapore’s largest defence research and development (R&D) organisation, with the critical mission to develop technological solutions to sharpen the cutting edge of Singapore's national security. At DSO, you will develop more than just a career. This is where you will make a real impact and shape the future of defence across the spectrum of air, land, sea, space and cyberspace.

The Digital Division leads the digital transformation of DSO through the master planning and policies, delivering digital capabilities through IT infrastructure, and providing one stop service to corporate and R&D Divisions. The Digital Division will transform the way we work, our workplace, and the capabilities we deliver to the MINDEF/SAF and for the security of Singapore.

People are DSO’s greatest asset. You will get to realise your career aspirations and develop your own niche either as a deep technical expert or a leader in the team. With frequent career dialogues and a robust training and development framework, we will provide you with the necessary development tools for you to reach your potential. You will also be recognised and rewarded through competitive remuneration packages and scholarship opportunities.

Specialist (CISO Office)

In this role, you will:

• Lead and drive strategies to ensure strong cybersecurity governance, a resilient cybersecurity posture and robust security controls across the organisation
• Formulate cybersecurity strategies that support present and future DSO work, workplace and workforce
• Support DSO project teams to ensure compliance to IM8, whole-of-government ICT policies and standards
• Play a risk assessment, review and compliance role in strengthening DSO’s security posture
• Perform risk assessments and review procedures so as to identify weaknesses to improve cyber security posture
• Conduct risk reviews to validate security posture and uncover indicators of compromise
• Identify compliance gaps and advise on mitigating measures
• Validate effectiveness of select controls implemented to meet policy objectives
• Conduct cybersecurity experiments using in-house or publicly available research tools or techniques
• Implement, extend or customize cybersecurity tools to improve security posture review and validation
• Be the subject matter expert in Singapore Government’s Instruction Manual for ICT&SS Management (previously known as IM8) and other relevant whole-of-government ICT policies and standards
• Support the Digital Division in other ICT&SS Management related work as necessary.

Requirements

• Degree / Master in Computer Engineering / Computer Science & Engineering / Electrical & Computer Engineering / Computing with Management / Cyber & Digital Security / Cyber Forensics & Information Security/Cyber Forensics, Info Security & Business Information / Cyber Security / Cyber Security / Cyber Security Management / Digital Forensics / Infocomm Security / Infocomm Security Management/Information Security
• Relevant certifications (e.g., CISSP, CISM, CISA) are highly desirable
• Strong policy interpretation, analytical, logical thinking and problem-solving skills
• Excellent communication skills (written and spoken
• Minimum 1 years of relevant working experience related to information security and professional knowledge of ICT operations, audit and compliance, IM8 policies and procedures
• Knowledge of Singapore Government Instruction Manual for ICT&SS Management (previously known as IM8) and information security frameworks, standards, and best practices, such as ISO 27001, NIST and MITRE is preferred