Senior Manager, Cybersecurity Policy

Overview
What the role is:
Reporting to the Deputy Director, Cybersecurity Policy and Governance, the jobholder assists the Deputy Director (Cybersecurity Policy and Governance) by providing supervisory duties on ICT governance, risk management and compliance of ICT systems across the entire Home Team against relevant WOG and MHA policies. The job holder will also work with HTX to develop ICT (both cybersecurity and non-cybersecurity) policies and guidelines, as well as be tasked with the development and continued enhancement of MHA’s ICT policies and also provide support as subject matter expert to the Division’s senior management team in deliberations with external stakeholders, such as SNDGO and GovTech, on ICT governance and compliance matters on IM8 and WOG policies.
What you will be working on:
Responsibilities
Develop and support policy formulation such as MHA policies, Application Hosting policy and circular on the standardisation of interpretation of criteria for ICT&SS that require IM8 compliance.
Harmonise MHA policies against WOG level policies and guidelines such as IM8 and Cybersecurity Act.
Work closely with HTX counterparts to ensure policies are practical and aligned with the needs of technology developments within the Home Team.
Work closely with HTDs to ensure that their interests, and needs are considered and surfaced to TLPD management to update senior management in strategic WOG platforms such as CIO Council, IM8 Steering Committee.
Secretariat to IM8 Domain Work Group committee which will manage and co-ordinate the review of new IM8 policy changes across MHA.
Support the Ministry Family CIO and Ministry Chief Information Security Officer (MCISO) with relevant information and facts in discussion with SNDGO and GovTech through various staff-level platforms.
Provide IM8 policy consultation and advice.
Conduct pre-AOR review and work closely with other team members to identify potential compliance issues upfront.
Conduct Right Classification exercise, including criticality assessment, security and sensitivity classification with system owners and national authorities including MHA-JOG, SNDGO and CSA.
Perform in-depth, independent and holistic risk assessment on ICT governance issues, such as in the case of deviation/waiver request submitted by HTDs.
What we are looking for:
Qualifications & Personal Characteristics
Tertiary qualification in computer science, computer engineering or equivalent, preferably with a major in cybersecurity.
Professional certifications such as CISSP, CISM would be advantageous.
Preferably at least 8 years of working experience, with at least 5 years in an ICT Governance role.
Familiarity and experience with the public sector policies is preferred.
Able to work independently as well as a good team player.
Good interpersonal skills and negotiation skills.
Able to work within tight deadlines.
Good writing and communication skills.
Critical thinking skills.
All new hires are appointed on a two-year contract in the first instance and will be assessed and considered for permanent tenure over time, based on performance.
As part of the shortlisting process for this role, you may be required to complete a medical declaration and/or undergo further assessment.
All applicants will be updated on the status of their applications within 4 weeks upon closing of the advertisement.
About Home Team Science and Technology Agency (HTX)
HTX is the world’s first Science and Technology agency that integrates a diverse range of scientific and engineering capabilities to innovate and deliver transformative and operationally-ready solutions for homeland security. As a statutory board of the Ministry of Home Affairs and integral to the Home Team, HTX works at the forefront of science and technology to empower Singapore’s frontline of security. Our shared mission is to amplify, augment and accelerate the Home Team’s advantage and secure Singapore as the safest place on planet earth.
#J-18808-Ljbffr