Assistant / Vice President, Cybersecurity Strategy

**Overview of the Team**

The increasing reliance of businesses on technology means that cybersecurity and technology risk management is a strategically important function within Temasek. The implementation of an effective and comprehensive cybersecurity defence plan and strategy will enable Temasek to be better prepared for these risks and evolving cybersecurity threats.

**Roles & Responsibilities**

The AVP/VP, Cybersecurity Strategy and Technology will support the Cybersecurity team in developing and executing the cybersecurity defence strategy, carrying out cyber performance monitoring as well as future planning for Temasek and its ecosystem.

The mission is to strengthen Temasek’s cybersecurity defence and resilience through development of a sustainable and effective cyber defence strategy and related initiatives/programme. This role will:

- Work closely with the CISO and Director (Cybersecurity Strategy and Technology) to drive the development and execution of end-to-end cybersecurity defence strategy and operating model to support Temasek’s mission and vision
- Support the driving, development and execution of an overarching cyber defence strategy to holistically set out the strategies, initiatives/programme, and roadmaps to drive cyber development and defence in Temasek and its ecosystem
- Establish mechanisms, protocols, code of practice and guidance materials to enable the execution and continuous monitoring and review of Temasek’s cyber defence programme and initiatives
- Carry out resource planning, validate and maintain effectiveness of security technologies in accordance with overall cyber strategy and architecture
- Review and enhance current indicators and processes to enable the effective and dynamic assessment and monitoring of department’s operational and strategic performance as well as Temasek’s overall cyber posture whilst progressively enhancing the maturity of the cyber programme
- Engage service providers, business partners, and internal stakeholders to embed security by design principles throughout system development life cycle, and roll out related programme/framework to support this effort
- Formulate and enhance competency roadmap and training programme for structural development of cybersecurity professionals to enable effective performance of role and responsibilities
- Support the refinement and enhancement of cyber/tech policies in alignment with cyber defence strategy to enable effective oversight of departments’ compliance
- Support the refinement and enhancement of the security architecture and cyber technology stack with overall enterprise architecture and cyber strategy
- Support conduct of engagement with internal and external stakeholders to enhance overall cyber resilience of Temasek and its ecosystem
- Support incident response and management as part of the Cyber Incident Response Team (CIRT)

**Requirements**:

- Minimum 8 years of relevant experience in the field of cybersecurity and technology with at least 3-5 years in vendor/service provider environments
- Bachelor’s degree in engineering, information technology/security, cybersecurity and related field
- Possess strong prior experience and knowledge in cyber strategy and policy formulation, cyber programme execution and risk management
- Strong technical background is important, with proven ability in technical security design and implementation and possess cyber domain knowledge across areas such as cybersecurity technology and solutioning, SOC/MSS, network & infrastructure security, data & information protection, supply chain security, cyber architecture, and cloud computing security
- Good knowledge in industry security practices, frameworks, and standards such as MAS TRM, ISO27001, Cybersecurity Code of Practice, and NIST Cybersecurity Framework
- Strong communication, interpersonal and leadership skills, with proven ability to manage multiple priorities, drive project teams and collaborate across business units and partners to achieve desired end-goals
- Professional information security certifications such as CISSP, CISM an advantage
- Prior governance, risks and compliance experience will be an advantage
- Experience in data governance, cyber data and analytics, lake will be an advantage

**Soft Skills**
- Possess an inquisitive, structured, and logical mind to drive end-to-end strategy development and implementation
- Strong analytical and problem-solving abilities
- Ability to lead project teams as well as work independently to organize, manage and complete projects
- Excellent cross-group and interpersonal skills, with the ability to communicate with technical and non-technical teams
- Excellent communication, presentation, and advisory skills, capable of engaging senior stakeholders
- Result-oriented and assertive