Cyber Security Advisor

Location: Singapore, Singapore

Thales people architect solutions that support 85 million mainline and suburban passenger journeys, worldwide, every day. Our Rail Signalling and Communication systems are used on metro lines across major cities, and 72,000 kms of route, 52,000 trains per day in 16 countries are controlled by our Traffic Management Systems. Together We deployed the first-ever nationwide ticketing system which processes over 50 million ticketing transactions in 100 cities daily.

Thales established its presence in Singapore in 1973 to support the expansion of aerospace-related activities in the Asia-Pacific region. Throughout the last four decades, the company grew from strength to strength and is today involved in the primary businesses of Aerospace (including Air Traffic Management), Defence & Security, Ground Transportation and Digital Identity & Security. Thales today employs over 2,100 people in Singapore across all its business areas.

Thales people architect solutions that support 85 million mainline and suburban passenger journeys, worldwide, every day. Our Rail Signalling and Communication systems are used on metro lines across major cities, and 72,000 kms of route, 52,000 trains per day in 16 countries are controlled by our Traffic Management Systems. Together We deployed the first-ever nationwide ticketing system which processes over 50 million ticketing transactions in 100 cities daily.

Thales established its presence in Singapore in 1973 to support the expansion of aerospace-related activities in the Asia-Pacific region. Throughout the last four decades, the company grew from strength to strength and is today involved in the primary businesses of Aerospace (including Air Traffic Management), Defence & Security, Ground Transportation and Digital Identity & Security. Thales today employs over 2,100 people in Singapore across all its business areas.

This Cyber Security Advisor role is with Thales transportation division in Singapore. The team in Singapore works on projects related to metro systems in South East Asia region including Signaling Systems, Integrated Communication Systems, Supervision Systems and Ticketing Collection Systems. The systems deployed have direct impact on end-to-end commuter experience.

As a Cyber Security Advisor for the Engineering team in Singapore, you will ensure consistency of project solutions according to defined security policy, technical product roadmap and customer requirements/needs. Leading and providing guidance for all project cybersecurity activities across all transportation projects will be primary objective. This means defining, reviewing, managing and in some cases executing cyber activities will all be part of the job scope (security management plans, requirements, risk assessments, vulnerability assessments, etc.)

**Key Responsibilities**:

- Overseeing and maintaining the cybersecurity process that includes defining the security activities in the project/product development lifecycle including plans, requirements, design, risk assessment, testing, vulnerability management, etc.
- Adopting the industry standards and methodologies for cybersecurity assessment and project development
- Aligning to, leveraging from and contributing to the GTS Cyber Security guidelines
- Assessing bids and bids requirements and incorporating those into design and cost options for projects
- Providing specialty engineering in the form of consultation services for project and product, and conducting risk assessments, and technical vulnerability assessments
- Interfacing with the Global Business Unit GTS for corporate guidance on use of industry standards, and following Thales group processes and policies

**Skills and Experience**:

- University degree in Engineering, Computer Science or equivalent work experience
- More than 8 Years of experience in cybersecurity architecture, design, risk assessment and development
- Expertise on project and software development lifecycle, gates and process oriented
- Good communication skills, with the ability to communicate effectively and succinctly with senior management about complex technical matters
- Ability to make public presentation and demonstration to customers
- Excellent writing skills, experience writing papers, and technical documentation
- Ability to ascertain the skills and competency of staff assigned
- Working experience with security standards: ISO 27001/2, NIST SP 800 series, IEC 62443 is an asset
- CISSP / GSEC / CISA security designation is an asset
- Product development, industrial engineering and industrial control systems expertise is an asset