Assistant Vice President, IT Security

Job Description

SingPost is seeking a highly skilled and motivated Lead, IT Security Operations to
spearhead our efforts in safeguarding our critical IT infrastructure and data assets. As the leader of the Security Operations team, you will be responsible for the proactive monitoring, detection, analysis, response, and remediation of security threats and vulnerabilities. You will play a pivotal role in ensuring the confidentiality, integrity, and availability of our systems and data, contributing directly to the overall resilience and success of the organisation. This role requires a strong technical background in cyber security, exceptional leadership abilities, and a passion for staying ahead of the evolving threat landscape.

Responsibilities:

Team Leadership and Management:

• Lead, mentor, and develop a team of security analysts and engineers,fostering a collaborative and high-performing environment.
• Assign tasks, set priorities, and monitor team performance to ensure efficient and effective security operations.
• Conduct regular team meetings, provide constructive feedback, and support the professional growth of team members.
• Contribute to recruitment and onboarding processes for new security operations personnel.

Security Monitoring and Analysis:

• Oversee the continuous monitoring of security systems, including SIEM,intrusion detection/prevention systems (IDS/IPS), endpoint detection and response (EDR), and other security tools.
• Analyse security alerts and events to identify potential threats, vulnerabilities,and breaches.
• Develop and refine security monitoring rules, alerts, and dashboards to improve detection capabilities.

Incident Response and Remediation:

• Lead and coordinate incident response activities, including containment,eradication, and recovery efforts.
• Develop and maintain incident response plans and procedures, ensuring they are regularly tested and updated.
• Conduct post-incident analysis to identify root causes and implement preventative measures.
• Communicate effectively with stakeholders during security incidents, providing timely updates and recommendations.

Vulnerability Management:

• Manage the vulnerability scanning and assessment process, ensuring timely identification and prioritisation of vulnerabilities.
• Work with IT teams to develop and implement remediation plans for identified vulnerabilities.
• Track and report on vulnerability remediation progress.

Security Tooling and Infrastructure:

• Manage and maintain the organisation's security infrastructure, ensuring optimal performance and availability.
• Evaluate and recommend new security technologies and tools to enhance security capabilities.
• Collaborate with IT teams on the implementation and integration of security solutions.

Threat Intelligence:

• Stay abreast of the latest security threats, trends, and attack techniques.
• Utilise threat intelligence feeds to proactively identify potential risks and inform security monitoring and incident response efforts.

Reporting and Documentation:

• Develop and maintain security operations documentation, including policies, procedures, and playbooks.
• Prepare regular reports on security operations metrics, incident trends, and vulnerability management activities for management.

Collaboration and Communication:

• Collaborate effectively with other IT teams, business units, and external vendors on security-related matters.
• Communicate security risks and recommendations clearly and concisely to both technical and non-technical audiences.
• Participate in security awareness training initiatives.

Management of 3rd Party SecOps team:

• Define specific security responsibilities, performance metrics (KPIs), and service level agreements (SLAs) upfront. This ensures both parties understand the scope of work, expected outcomes, and accountability.
• Foster regular and transparent communication channels. Schedule consistent meetings, share relevant threat intelligence, and encourage collaborative problem-solving to ensure seamless integration and responsiveness.
• Establish clear processes for monitoring performance, conducting audits, and verifying compliance against agreed-upon standards and regulations.
• Regular reviews and feedback mechanisms are crucial for continuous improvement and risk mitigation.

Requirement

• Bachelor's degree in Computer Science, Information Security, or a related eld.
• Relevant certifications (e.g., CISSP, CISM, CompTIA Security+, CEH) are highly desirable.
• Minimum of 8 years of experience in IT security, with at least 3 years in a security operations leadership role.
• Proven experience leading and managing a team of security professionals.
• In-depth knowledge of security monitoring tools and technologies (e.g., SIEM, IDS/IPS, EDR).
• Strong understanding of networking protocols, operating systems, and cloud security principles.
• Experience with incident response methodologies and best practices.
• Familiarity with vulnerability management processes and tools.
• Excellent analytical, problem-solving, and decision-making skills.
• Strong communication, interpersonal, and presentation skills.
• Ability to work effectively under pressure and prioritise tasks in a fast-paced environment.
• Knowledge of relevant security frameworks and regulations (e.g., ISO 27001, GDPR, PDPA).
• Experience with scripting languages (e.g., Python, PowerShell).
• Experience with cloud security platforms (e.g., AWS, Azure, GCP).