Fatfish Internet Group
Country : Singapore
  • Full-time

Cyber Security Lead

Kryptos-X, a leading crypto exchange in Singapore is seeking a regional cybersecurity lead to drive the cybersecurity program for the organization.

Responsibilities

  • Responsible to lead and design the cybersecurity protection, management framework, strategies, governance, guidelines and best practices for the organization; 
  • Work closely with the various cross-functional teams to establish, formulate, and monitor the security policies, standards and procedures in line with the organization's cybersecurity directions; 
  • Responsible to facilitate in the forum discussion to establish the cybersecurity goals and to develop appropriate cybersecurity risk assessment and risk acceptance; 
  • Provide analyses to validate established security requirements and to recommend additional security requirements to ensure systems comply with applicable cybersecurity requirements and security controls;
    • This includes security risk assessments, control framework and security design of the projects against Information & Communication Technology (ICT) security policies and standards; 
  • Write, develop, edit and manage Cybersecurity Policy Framework publication schedules for internal releases to various audiences with appropriately written content;    
  • Lead in the implementation of enterprise cybersecurity improvement programs; 
  • Review, endorse, align and ensure cybersecurity compliance with proper risk management and migration plans; 
  • Provide advisory and technical consultancy on the appropriate cybersecurity solutions and technologies to be deployed; 
  • Engagement with industry and conduct technology scans on the latest information security products and technologies. 

Requirements

  • Degree in Computer Science, Information Systems, Engineering; 
  • 10 years of working experience in designing and implementation of Cloud, crypto and application security, policies and procedures, protection and management framework; 
  • Extensive experience in the development and implementation of solutions for protecting information systems and assets with focus on implementation and continuous monitoring of IT Security controls; 
  • Detailed knowledge on Cloud security control requirements, technology processes, security policies, standards, controls, and risk measurements; and best practices; 
  • Hands-on experience with:
    • App level security: web server security, Captcha usage, multi-factor authentication
    • SSL/TLS security: server-side algorithm updates, known vulnerability management, third-party transmission management
    • Domain security: SPF and DNSSEC records management, WAF configuration and management
  • Good communications and emotional intelligence, with the ability to build effective, productive working relationships with both business program and technical managers​; 
  • Pre-empt any risks and mitigate any threats or problematic areas proactively; 
  • Data driven decision making with a competitive spirit to achieving excellence;
  • Strong personality and yet personable to build and enrich relationships within the organization; 
  • Excellent communication, presentation, planning and organization skills. 
  • At least one of the following security certifications: CISM, CISA, CISSP. 
  • S/he needs to work with internal teams to obtain an in-depth understanding of cybersecurity requirements in order to manage security related vendors and establish best-practice policies and procedures. 
  • The role requires an ability to create security frameworks, identify/review/select required vendor solutions and operate day-to-day security related operations.

Salary

6300 - 6800 SGD

Total applicants :4 Job posted 17 days ago Total Views : 118 Unique Views : 117 Today Views : 7


Submit Application