Manager, Cyber Security (Threat Management)

Job Purpose

Security, privacy and operational resilience are critical issues facing all organizations today. We are currently looking for qualified and capable security minded individuals to be the driving force behind SMRT’s cyber security measures with the goal of enabling ongoing, secure and reliable operations across the enterprise.

Responsibilities

As Manager, Cyber Security (Threat Management), you will work as part of the team to perform 24x7 cybersecurity monitoring and incident response at the SMRT Rail Cybersecurity Centre, covering Non-RTS (Rapid Transit System) systems and applications. Specific responsibilities include, but are not limited to:
•    Detection, triage, escalation and analysis of potential cybersecurity threats, events and incidents.
•    Correlation and analysis of cybersecurity threat detections for attribution and proactive defence.
•    Management and calibration of security monitoring and incident response playbooks, supported by cybersecurity advisories and threat intelligence.
•    Developing cybersecurity incident handling practices, standards and guidelines, playbooks and solutions aligned with technical and industry best practices.
•    Conducting host forensics, network forensics, and log analysis in support of incident response investigations.
•    Continuously monitor the company’s digital assets to identify and remediate vulnerabilities.
•    Developing and presenting cybersecurity threat analysis, security monitoring dashboards and reports to SMRT management.
•    Adopting incident reporting procedures in compliance with the Group Cybersecurity Policy, as well as regulatory frameworks such as the CSA Code of Practice (CCoP)            and LTA Cyber Security Incident Management Framework.
•    Leading cybersecurity incident after-action reviews.
•    Staying updated with cybersecurity threats, trends and developments, and recommending cost-effective improvements to manage cybersecurity threats effectively.

Qualifications & Work Experience

•    You should possess a Degree in Information Systems, Computer Science or equivalent
•    At least 6 years of experience in Cybersecurity with experience in cybersecurity SOC operations and/or threat hunting
•    Cybersecurity credentials such as CISSP, OSCP, GCIH will be advantageous

Skills

Technical Skills
•    Good understanding of managed security services, network security, monitoring and incident response
•    Good understanding of cybersecurity principles, governance and risk management
•    Good knowledge of cybersecurity operations, incident handling, forensic investigation
•    Ability to analyse and interpret data from various sources to identify potential cyber security threats.
•    Strong understanding of MITRE ATT&CK and ICS MITRE frameworks
•    Familiarity with regulatory frameworks such as the Cybersecurity Code of Practice (CCoP)

Generic Skills
•    Excellent verbal and written communication skills
•    Strong leadership, communication, interpersonal, analytical and problem-solving skills

SMRT Trains Ltd was incorporated in 1987 and operates Singapore’s first mass rapid transit system. Today, we manage and operate train services on the North-South Line, East-West Line, the Circle Line, the Thomson-East Coast Line, and the Bukit Panjang Light Rail Transit. With over 5,000 employees, more than 250 trains, and 141 km of rail tracks across 108 stations, we serve millions of commuters daily.