Strategic planning for investment and/or adoption of cybersecurity technologies to maximize effectiveness of cybersecurity controls against rapidly evolving threat. Work closely with internal and external stakeholders to support the analysis of alerts and management of cybersecurity incidents. Mentor, train and provide oversight for cybersecurity analysts and digital forensic & incident responders. Track and analyse cybersecurity metrics for optimal effectiveness, benchmarking and management reporting.
Roles/Responsibilities:
- Develop Cyber Incident Response Readiness - Get prepared before it happens
- Develop Incident Response Plan that integrate into ERM incident response.
- Work with various stakeholders including Synapxe, GCIO office, Institution ISO, Public Relation, etc. to ensure cyberattack preparedness
- Test Cyber Incident Response Readiness - Test to ensure we are ready
- Coordinate table top exercise with NUHS management
- Participate in government lead cyberattack exercise such as CSA Exercise Cyber Star
- Support Incident Response - Support response when it happens
- Assess & classify security incident. Initiate response actions
- Notify cluster management
- Contain and eradicate the incident
- Recovery post incident
- Investigate the incident
- Review alerts from MSSP
Requirements:
- At least 6-8 years of cybersecurity incident response experience is required.
- A strong communicator with good writing and communication skill.
- Able to work under pressure and work with multiple parties needed to manage the cybersecurity incident.
- Cybersecurity incident response related certifications such as GCIH, GCFA, GRID, GCIA is a requirement.
