Senior Cybersecurity Engineer

What the role is GovTech is the lead agency driving Singapore’s Smart Nation initiatives and public sector digital transformation. As the Centre of Excellence for Infocomm Technology and Smart Systems (ICT & SS), GovTech develops the Singapore Government’s capabilities in Data Science & Artificial Intelligence, Application Development, Smart City Technology, Digital Infrastructure, and Cybersecurity. At GovTech, we offer a purposeful career to make lives better where we empower our people to master their craft through robust learning and development opportunities all year round. Play a part in Singapore’s vision to build a Smart Nation and embark on your meaningful journey to build tech for public good. What you will be working on Develop and maintain risk management frameworks, policies, and procedures. Monitor and challenge the effectiveness of risk controls implemented by First Line of Defence (1LOD). Conduct independent risk assessments and report findings to senior management for proactive resolution. Automate risk assessment process using AI tools. Explore automated tools to extract data from systems to perform second‑line IT compliance checks more effectively to ensure adherence to organisational and regulatory standards. Continuously improve IT compliance processes and procedures for greater efficiency and effectiveness. Support training and awareness programs on risk and compliance topics. Develop, implement, and enforce security and compliance protocols, policies, and procedures. Provide guidance on integrating security practices into software development and IT operations. Stay updated on cybersecurity trends, threats, tools, and compliance requirements, ensuring policies remain aligned with standards and regulations. Lead initiatives like ISTD Compliance Day and IT Audit 101 to coach teams on complying with standards. Mentor and guide junior staff, fostering their professional development and ensuring they understand and adhere to security and compliance requirements. Centrally review IM8 policies to ensure alignment with standards and regulations. Seek approval on any deviations from IM8 policies and document the justification for deviations. What we are looking for Degree in Computer Science, Information Systems, Engineering or equivalent. Strong interpersonal and stakeholder management skills. Ability to work with cross‑functional, multi‑disciplined team to formulate, institute and monitor security policies and procedures. At least 8 years of experience related to information security and solid grasp of ICT operations, security policies, business processes and the relationship between them. Knowledge of IT security management principles and practices. Experience in one or more of the following areas will be an advantage: policy compliance and governance, risk assessment, solutioning, network design, application development, IoT, cryptography, hardware design protection, mobile application/device management, cloud hosting design and implementation in AWS/Azure/Google, DevSecOps consulting, design and implementation of CI/CD pipelines, etc. Knowledge and experience of IM8/NIST/ISO 27001/2 policies/standards. Good understanding of both IT and business processes and the relationship between them. Equal Opportunity Employer GovTech is an equal opportunity employer committed to fostering an inclusive workplace that values diverse voices and perspectives, as we believe that diversity is the foundation to innovation. Benefits Our employee benefits are based on a total rewards approach, offering a holistic and market‑competitive suite of perks. These include leave benefits to meet your work‑life needs and employee wellness programmes. We champion flexible work arrangements (subject to your job role) and trust that you will manage your own time to deliver your best, wherever you are, and whatever works best for you. Senior level: Mid‑Senior level | Employment type: Full‑time | Job function: Information Technology. #J-18808-Ljbffr