Job Description
What The Role Is
The mission of Housing & Development Board (HDB) is to provide affordable, quality housing and a great living environment where communities thrive. To achieve its mission, HDB aims to be data-driven to the core and adopt evidence-based decision making in developing better housing policies service, improving service delivery and optimising operations
What You Will Be Working On
Develop, maintain, and operationalise a Threat Risk Assessment framework for HDB to identify and mitigate the threats and risks in its IT systems and programmes.
Ensure adequate and effective risk management, there is a need to conduct risk assessments to identify the ICT risks, such as ICT security and data risks of all ICT systems, assess the consequent risks to determine the controls to mitigate the risks, and assess the effectiveness of the controls implemented. Key functions are:
Cyber Security Assurance Programme
Threat Risk Assessment Framework
Cyber & Data Security Risk Management
Enterprise Risk Management – Cybersecurity
Application Security Consultancy
Related works include project specific cybersecurity specification, cybersecurity proposals evaluation, cybersecurity design review, System Security Acceptance Test and review, Vulnerability Assessment and Penetration Test.
Manage and promote IT security awareness and outreach programme.
Keep abreast of the latest industry ICT security practices and technologies as well as emerging threats and vulnerabilities and recommend appropriate controls for implementation to improve the enterprise security posture.
Lead and/or participate in the adoption of new technological advances and best practices in infrastructure security systems to mitigate security risks.
What We Are Looking For
Possess a strong background in ICT Security, Information Security, Information Technology, Computer Science, Cybersecurity or equivalent.
Have at least 2 years of experience in ICT works involving the setup, development, and management of web-based systems, with at least 2years of relevant ICT security work experience.
Possess one or more appropriate IT security certifications, such as CISSP, CRISC, CISM, CISA, CEH, etc
Have strong knowledge and experience in information and cybersecurity risks, controls, vulnerability assessment/penetration testing, compliance, and industry IT/cyber security best-practices.
Have domain knowledge of access control; telecommunications and network security; cloud security; Cybersecurity & information security governance and risk management; software development security; cryptography; security architecture and design; operations security; security incident response and management; business continuity and disaster recovery planning; legal regulations, investigations, and compliance; physical (environmental) security
Have knowledge in IT security principles and IT controls as well as industry best practices and frameworks pertaining to IT Controls (IM8, COBIT, ISO27001/2 etc.)
Have good understanding of the current IT/Cyber Security landscape
Good to Have:
Good interpersonal and communication skills.
Demonstrate a strong sense of urgency and have good troubleshooting and problem-solving skills with good attention to detail.
Conduct research on ICT and cybersecurity technologies where necessary to perform the assigned tasks.
Good command of written and oral English.
Successful candidates will be offered a 1+1 year contract in the first instance. Conversion to perm is dependent on good performance.
Find out more about a career with HDB at www.hdb.gov.sg/cs/infoweb/about-us/careers
All applicants will be notified on whether they are shortlisted for the position within 4 weeks of the closing date of this job posting.
