Jobfoundry
Jobfoundry
SMRT

Manager, SMRT Rail Cybersecurity Centre (SRCC)

SMRT
Public Transport & Rail OperationsSingapore, SGOnsitePosted 3 weeks ago
Apply Now

About the role

AI summarised

The Manager of the SMRT Rail Cybersecurity Centre (SRCC) leads cybersecurity initiatives to protect Singapore's rail transit infrastructure from digital threats. This role involves overseeing security operations, managing incident response, developing security policies, and coordinating with stakeholders to ensure the resilience and integrity of rail systems. The position requires expertise in cybersecurity frameworks, risk management, and operational technology (OT) security within critical national infrastructure.

TransportOnsite

Key Responsibilities

  • Lead and manage the SMRT Rail Cybersecurity Centre (SRCC) team and operations
  • Develop, implement, and maintain cybersecurity strategies, policies, and procedures for rail systems
  • Oversee real-time monitoring, threat detection, and incident response for operational technology (OT) and information technology (IT) environments
  • Conduct regular risk assessments, vulnerability scans, and penetration testing on rail infrastructure
  • Coordinate with internal stakeholders, government agencies, and external partners on cybersecurity matters
  • Manage cybersecurity incidents from detection through containment, eradication, and recovery
  • Ensure compliance with national cybersecurity standards, regulations, and audit requirements (e.g., CSA, PDPA)
  • Lead cybersecurity awareness training and education programs for rail staff
  • Manage vendor relationships and evaluate third-party cybersecurity solutions
  • Report cybersecurity posture, risks, and metrics to senior management and the SMRT Board

Requirements

  • Bachelor’s degree in Computer Science, Information Security, Engineering, or a related technical field
  • Minimum 8 years of progressive experience in cybersecurity, with at least 3 years in a leadership or managerial role
  • Proven experience in operational technology (OT) security, industrial control systems (ICS), or critical infrastructure protection
  • Strong knowledge of cybersecurity frameworks such as NIST, ISO 27001, IEC 62443, and MITRE ATT&CK
  • Experience with SIEM, IDS/IPS, endpoint detection and response (EDR), and network security tools
  • Certifications such as CISSP, CISM, CISA, or GIAC (e.g., GICSP, GRID) are highly preferred
  • Familiarity with rail, transportation, or utility sector operations and regulatory environments
  • Excellent communication and stakeholder management skills, with ability to convey technical risks to non-technical audiences
  • Ability to work under pressure during cybersecurity incidents and lead crisis response efforts
  • Valid Singapore work pass or citizenship; local candidates preferred due to security clearance requirements