Senior / Cyber Security Engineer, Opportunity At NTU Main Campus, Singapore.

NTU’s Centre for IT Services manages the campus-wide IT Infrastructure and facilitate access to all Enterprise IT systems, as well as Learning systems and Digital Media.

Cyber Security which is part of Centre for IT Services is Responsible for the Cyber Security Governance, Risk, Compliance & Awareness, Architecture, Consultancy & Engineering, Security Monitoring, Incident Response, Threat Intelligence and Digital forensic investigation.

This role will be part of the Cyber Security Defense team. The role is expected to work with various teams throughout NTU to ensure feasible, compliant, and effective implementation in accordance to Cyber Security policies, standards, and procedures.

Responsibilities:

Security Administration

• Administer new and complex security programs for the organization.
• Analyze the impact of patches and updates on current system.
• Perform non-standard system /and network administration and configuration of security mechanisms.
• Configure authentication software and features of network devices as required to protect against security threats.
• Perform post- implementation troubleshooting of security software.
• Assist users in defining and clarifying their access rights and privileges.
• Coordinate complicated access control rights, permissions and escalated issues.
• Investigate unauthorized access incidents according to established procedures.

Security Engineering

• Design and develops and implement secure system architectures.
• Embed security principles into design of system architecture to mitigate the risks posed by technologies and business practices.
• Design artefacts, spanning design, development and implementation for enterprise systems that describe security principles and how it relates to overall enterprise system architecture.
• Performs routine activities related to periodic review and audit activities of security infrastructure and maintain documentation of security standards
• Well versed with cyber security standards, protocols and frameworks and work in compliance to International Security Standards.
• Structured and systematic in designing and implementing secure systems architecture.

Project Management

• Facilitate execution of projects within timeline and budget.
• Implement realistic project plans based on the understanding of project objectives and project scope.
• Utilize appropriate methods and tools to track and drive progress of project against set plans and timelines.
• Identify risks to the success of projects and take appropriate actions to manage them.
• Collaborate effectively with relevant internal and external stakeholders directly impacting the project.
• Deploy manpower, financial budgets, and relevant resources to different parts of the project for efficient and effective completion.
• Track project deliverables against project schedules, monitor costs, timescales and resources used and take basic corrective actions in case of misalignment.

Stakeholder Management

• Conduct stakeholder mapping to identify facets and nature of relationships with and between stakeholders.
• Manage stakeholders’ expectations and needs, based on the organization’s position and resources.
• Articulate each stakeholder’s role and responsibilities.
• Serve as the organization’s main contact point or representative for communicating with stakeholders, addressing queries, and providing clarifications.
• Represent the company’s interests when interacting with stakeholders.
• Engage stakeholders regularly to set and align expectations and activities as well as to exchange feedback.
• Coordinate partnerships with external stakeholders.
• Maintain communication channels with inter-organizational stakeholders and partners.

Requirements:

• Degree in Computer Science/Information Technology or related discipline
• At least 5 years of relevant working experience. (Candidate with less experience may be considered for the post of Cyber Security Engineer)
• Good understanding of cyber security architecture principles, applicable to perimeter defenses, emerging cyber threats, malware defenses, DLP, cryptography, public Cloud, etc.
• Experience in managing the implementation of cyber security projects, initiatives, and operationalize processes in concert with the relevant stakeholders and teams.
• Strong documentation and presentation skills.
• Independent and able to perform tasks with minimum supervision.
• Good understanding and knowledge of network and security technologies including public Cloud, VPNs, intrusion detection & prevention systems (IDS/IPS), firewalls, SIEM, antivirus.
• Certification in CISSP, GIAC will be advantageous.
• Display confidence in area of expertise and keen interest in learning new technology and approach.