Jobfoundry
Jobfoundry
Changi Airport Group

Title: Cybersecurity Specialist

Changi Airport Group
BusinessSingaporeFull-time2 weeks ago
Apply Now

About the role

AI summarised

Cybersecurity Specialist role at Changi Airport, responsible for defending airport systems and infrastructure from cyberattacks. Duties include vulnerability assessment, applying security controls, integrating secure development practices, incident response, and staying updated on threats. Requires a degree in IT or related field, 5+ years experience, and preferred certifications like CISSP or CISM.

BusinessFull-time6400

Key Responsibilities

  • Assess the cybersecurity aspects of design proposals for different systems, applications and infrastructure.
  • Source, manage and oversee external service providers for annual vulnerability assessment and penetration testing.
  • Recommend and apply suitable security measures based on industrial best practices, security standards and guidelines (e.g. OWASP Top 10, NIST, CIS).
  • Contribute to the development and maintenance of security policies, procedures, configurations and standards aligned with ISO 27001.
  • Join in internal audits and reviews to ensure the efficiency of the ISMS or security controls.
  • Integrate OWASP Top 10 recommendations throughout the software development lifecycle (SDLC), focusing on secure coding practices and secure design principles.
  • Work with developers to identify and fix security vulnerabilities in applications.
  • Review logs to detect malicious activity and data breach.
  • Coordinate with contractors, security vendors and internal CAG teams to isolate incidents, identify root cause, and implement mitigation or recovery procedures.
  • Keep abreast of the latest threats, vulnerabilities, mitigation techniques, and new technologies through training, industry publications, and conferences.

Requirements

  • Good degree in Information Systems/Technology, Computer Engineering, Computer Science, Information and Communications Technology (ICT) or related field.
  • Preferably candidates with CISSP, CISA, CISM, CompTIA Security+ or equivalent professional certifications.
  • Preferably candidates with a solid knowledge of cybersecurity principles and best practices.
  • At least 5 years of relevant work experience managing contractors and designing cybersecurity solutions to meet guidelines and standards.
  • Experience in preparing tender specifications for vulnerability assessment, penetration testing, and creating SOPs for security incident response.
  • Proficiency in security tools, logs extraction methods and technologies.
  • Has a curious mind to proactively detect potential cyber threats and develop measures to address them.
  • Excellent analytical and problem-solving skills.
  • Strong communication and collaboration skills.
  • Ability to work independently and as part of a team.