Title: Cyber Security Engineer
Job ID:
22275
Location:
Land - 249 Jalan Boon Lay, SG
Description:
Job Description:
Responsible for the following roles & responsibilities (but not limited to the following), covering primarily all N2 and N3 computers and systems in the company:
- Perform Log Review on classified computers and systems.
- Perform Change Management and maintain records for audit purposes.
- Conduct Cyber Risk Assessment on classified computers & systems.
- Handle and follow up on Cyber Security Incident Management.
- Conduct Cyber hygiene awareness & education for computer users.
- Conduct internal and support external Cyber Security Compliance Audits
- Ensuring adherence to internal security policies, IT governance frameworks, and compliance controls.
- Track and remediate vulnerabilities, ensuring computers and system meet security patching and compliance standards.
- Conduct Vulnerability Management (VA Scanning) on classified network computers and systems.
- Enforce Data Security and Encryption requirements on classified computers and systems.
- Formalize and archival of network security processes & flows, develop SOPs for compliance.
- Implement GPOs to maintain Secured Configurations to prevent breaches
- Daily basic cyber security operation and maintenance.
- Conduct security audits and prepared reports, highlighting areas for improvement.
- Coordinate and supporting external audits, risk assessments, and regulatory submissions.
- Assist with implementation of security standards aligned to MSD, GISO, IT and other relevant authorities’ frameworks.
Job Requirements to have 1 or more of the following certifications:
- CSSA+ — Cyber Security System Administration (cum CEH / ComTia Security+ within 6 months of appointment)
- CISA — Certified Information Systems Auditor
- CISM — Certified Information Security Manager
- ISO 27001 – Internal Audit — ISO/IEC 27001 Information Security Management Systems (ISMS) Internal Auditor.
- ISO 27001 – Lead Implementer — ISO/IEC 27001 Information Security Management Systems (ISMS) Lead Implementer.
- CISSP — Certified Information Systems Security Professional.
- GCIH - GIAC Certified Incident Handler