Engineer (Cybersecurity)

  • Job Category
    Information Technology, Public / Civil Service
  • Contract type

Job Description

Reporting to the Head (Air Navigation Services Cybersecurity), we are seeking esteemed individuals to be part of the team responsible to drive the establishment of cybersecurity strategies, frameworks and standards for the Air Navigation Services Group (ANS Group) in CAAS.

Your responsibilities include:
• Establish and maintain the cybersecurity strategies, frameworks, control processes and procedures to maintain and enhance the cybersecurity posture of ANS systems
• Maintain oversight of ANS cybersecurity and provide regular management reporting and analysis of current cybersecurity status of ANS systems
• Collaborate with industry partners to drive the establishment of new cybersecurity architecture to meet future ANS operational goals
• Conduct reviews to identify cybersecurity gaps in existing ANS systems and recommend appropriate controls to improve the ANS cybersecurity posture
• Review and provide consultancy related to the cyber-security implementations of ANS Systems, including the cybersecurity design and architecture
• Work closely with the project and system engineers for compliance with national and international cybersecurity standards and requirements
• Conduct investigations into ANS cybersecurity breaches to determine the cause of the incidents and work closely with the system engineers to resolve the incidents, participate in post-incident reporting and propose enhancement to the systems and infrastructure to close any security gaps
• Coordinate internal and external audit needs/issues and participate in technical discussions and internal audit
• Maintain relevant security documentation and updating of the ANS Group's overall security programme, including planning, co-ordinating and conducting relevant training for cybersecurity and assurance to raise and maintain cybersecurity awareness in the ANS Group
• Keep abreast of the latest industry cybersecurity practices and technologies as well as emerging threats and vulnerabilities

• Trained in Computer Engineering and/or Electrical and/or Electronic Engineering and/or Information Technology (Networking) and/or Computer Science and/or Engineering (Computing/ Telecommunication) or equivalent
• At least 8 years of relevant experiences in system project implementation and cybersecurity compliance and/or cybersecurity work experiences in infrastructure or network implementation
• Possess good experience in managing cyber-security projects, preferably having gone through project implementation lifecycle

Closing on 19 Apr 2021