Senior Manager, Business Information Security Office (BISO)

Primary Objectives of Position:

• Support business growth and operations while maintaining adequate baseline security expectations

Major Responsibilities:

• Primary point of contact and liaison between cyber risk & security team and various lines of business (i.e. corporate, rail & bus).
• Ensure synergy and strong engagements with various lines of business.
• Ensure business is in compliance with regulatory requirements and industry best practices (e.g. Cybersecurity Code of Practice (CCoP 2.0), CP8, ISO27001 etc.).
• Assess and manage risk associated with various lines of business.
• Ensure cybersecurity teams support business growth and operations while maintaining adequate baseline security expectations.
• Coordinate and ensure implementation of company policies & standards across corporate IT, IoT, Bus Systems and Railway Transit System (RTS).
• Manage cybersecurity incidents & crisis.
• Manage projects to meet internal and regulatory requirements.

Job Specifications:

Minimum Education / Qualifications:

• Degree in Computer Engineering or equivalent.
• Trained in Cybersecurity, Information Security, Forensics or equivalent

Minimum Years of Relevant Experience:

• 10-15 years of cybersecurity work experience

Knowledge/Skills:

• CISSP/CISM/CISA/CEH/ CRISC or equivalent certification,
• Strong domain knowledge of information security governance and risk management, controls, vulnerability assessment/penetration testing, compliance, business continuity, investigations, system architecture and design, legal, and industry IT/OT and cyber security best-practices.
• Knowledge on ISO27001 and IEC62443, NIST Cybersecurity Framework, CSA Code of Practice (CCoP).
• Experience in Threat detection, Penetration testing and red/purple teaming.
• Knowledge in Network, Web Security and Application Security would be highly valued.
• Experience with information security tools (SIEM, anti-virus tools etc.).
• Experience in forensics and incident management.

Attributes (functional & leadership competencies):

• Ability to work under pressure.
• Self-motivated, a good team player and strong ability to multi-task.
• Excellent verbal, written communication, presentation and analytical skills.
• Ability to build strong and trusting relationships.
• Experience working in public transport and/or OT industry would be highly valued.

Please be informed only shortlisted candidates will be notified.