Cybersecurity & Emerging Technology Specialist

Job Description

• Conduct thorough assessments throughout security-by-design phases, ensuring security requirements are appropriately defined, designed, and implemented throughout the system lifecycle in line with recognised security design principles and applicable ICT security policies, standards, and guidelines.

• Participate in scoping and reviewing ICT security tests, reviews, and audits to ensure security assurance is achieved.

• Analyse cybersecurity challenges and vulnerabilities associated with emerging technologies (including 5G, Quantum Computing, IoT and AI), assess potential risks posed by their adoption, and develop risk mitigation plans whilst coordinating their execution.

• Develop and operationalise adaptable frameworks to enhance cyber resilience of enterprise systems, ensuring these frameworks remain suitable for future technology advancements.

• Assist in designing, building, and supporting solutions for new security tools and technologies, testing their effectiveness in real-world scenarios to address identified vulnerabilities and threats from emerging technologies (such as AI solutions), and work closely with stakeholders to integrate innovative security solutions into existing systems and processes.

• Assess, research, and provide guidance on security design, architecture, and standards, review and recommend enhancements to security architecture, and provide security considerations and controls for policy development.

• Participate in consultations and conduct gap analysis against new requirements to ensure continual compliance with prevailing Singapore Government policies, assist in identifying and assessing gaps from audit, compliance activities, and security incidents, and develop corrective and preventive plans whilst tracking compliance gaps for management reporting.

• Work with stakeholders to ensure timely submission of regular reports such as cybersecurity scorecards and assist in driving cybersecurity awareness initiatives.

• Assist in managing curriculum planning and development, working with the Authority's internal stakeholders and appointed training partners to ensure quality curriculum design, and provide support on training matters, administrative duties, resource planning, and project management.

Job Skills

Technical Security Skills

• Deep understanding of security-by-design principles and methodologies
• Knowledge of ICT security policies, standards, and frameworks (ISO 27001, NIST, etc.)
• Experience with security architecture design and implementation
• Proficiency in conducting security assessments, audits, and gap analyses
• Understanding of vulnerability management and threat assessment

Emerging Technology Expertise

• Knowledge of cybersecurity implications for 5G, Quantum Computing, IoT, and AI technologies
• Ability to assess risks associated with new technology adoption
• Experience with AI security solutions and their implementation

Risk Management and Compliance

• Risk assessment and mitigation planning capabilities
• Knowledge of Singapore Government cybersecurity policies and compliance requirements
• Experience with audit processes and remediation planning
• Ability todevelop and track compliance metrics and reporting

Solution Development and Implementation

• Experience designing and building security tools and technologies
• Ability to test security solutions in real-world environments
• Skills in integrating new security technologies with existing systems
• Project management capabilities for security initiatives

Job Requirements

• A degree in Computer Science, Information Technology, or related Engineering fields;
• And/or cybersecurity/professional qualifications such as: 
  • (a) Certified Information Systems Security Professional (CISSP) or equivalent; 
  • (b) Certifications in education and/or instructional design and/or training and/or courseware development, such as Advanced Certificate in Training & Assessment (ACTA), Advanced Certificate in Learning & Performance (ACLP), or equivalent;
• And/or demonstrated work experience and domain expertise in cybersecurity fields, with a minimum of one (1) year of experience for Associate Consultant positions or three (3) years of experience for Consultant positions, in the following areas: 
  • (a) Cybersecurity Governance; 
  • (b) Cybersecurity Training Programmes; 
  • (c) Planning, development, and research of cybersecurity tools.