Search Jobs
Search by job, company or skills
Search by job, company or skills
[What the role is]
GovTech is the lead agency driving Singapore's Smart Nation initiatives and public sector digital transformation. As the Centre of Excellence for Infocomm Technology and Smart Systems (ICT & SS), GovTech develops the Singapore Government's capabilities in Data Science & Artificial Intelligence, Application Development, Smart City Technology, Digital Infrastructure, and Cybersecurity.[What you will be working on]
Develop and maintain risk management frameworks, policies, and procedures.
Monitor and challenge the effectiveness of risk controls implemented by First Line of Defence (1LOD).
Conduct independent risk assessments and report findings to senior management for proactive resolution.
Automate risk assessment process using AI tools.
Explore automated tools to extract data from systems to perform second-line IT compliance checks more effectively to ensure adherence to organisational and regulatory standards
Continuously improve IT compliance processes and procedures for greater efficiency and effectiveness.
Support training and awareness programs on risk and compliance topics.
Develop, implement, and enforce security and compliance protocols, policies, and procedures.
Provide guidance on integrating security practices into software development and IT operations.
Stay updated on cybersecurity trends, threats, tools, and compliance requirements, ensuring policies remain aligned with standards and regulations.
Lead initiatives like ISTD Compliance Day and IT Audit 101 to coach teams on complying with standards.
Mentor and guide junior staff, fostering their professional development and ensuring they understand and adhere to security and compliance requirements.
Centrally review IM8 policies to ensure alignment with standards and regulations.
Seek approval on any deviations from IM8 policies and document the justification for deviations.
[What we are looking for]
Degree in Computer Science, Information Systems, Engineering or equivalent
Strong interpersonal and stakeholder management skills
Ability to work with cross-functional, multi-disciplined team to formulate, institute and monitor security policies and procedures
At least 8 years of experience related to information security and solid grasp of ICT operations, security policies, business processes and the relationship between them.
Knowledge of IT security management principles and practices
Experience in one or more of the following areas will be an advantage policy compliance and governance, risk assessment, solutioning, network design, application development, Internet of Things, cryptography, hardware design protection, mobile application/device management, cloud hosting design and implementation in AWS/Azure/Google, DevSecOps consulting, design and implementation of CI/CD pipelines, etc.
Knowledge and experience of IM8/NIST/IS0 27001/2 policies /standards
Good understanding of both IT and business processes and the relationship between them
GovTech is an equal opportunity employer committed to fostering an inclusive workplace that values diverse voices and perspectives, as we believe that diversity is the foundation to innovation.
Our employee benefits are based on a total rewards approach, offering a holistic and market-competitive suite of perks. These include leave benefits to meet your work-life needs and employee wellness programmes.
We champion flexible work arrangements (subject to your job role) and trust that you will manage your own time to deliver your best, wherever you are, and whatever works best for you.
Learn more about life inside GovTech at go.gov.sg/GovTechCareers.
Stay connected with us on social media at go.gov.sg/ConnectWithGovTech.
Job ID: 128722441
