Lead/Senior Consultant, Attack Simulation Group (Industrial Control Systems), Cybersecurity Engineering Centre, CSA

CYBER SECURITY AGENCY OF SINGAPORE
  • Job Category
    Information Technology, Public / Civil Service
  • Contract type
    Permanent

Job Description

The Cyber Security Agency of Singapore (CSA) is the national agency overseeing cybersecurity strategy, operations, education, outreach, and ecosystem development.

About CSA

As Singapore harnesses technology to improve lives and livelihoods for all, it is imperative that our plans are built on a strong foundation of cybersecurity, without which we would be exposing ourselves to the multitude of threats that lurk in cyberspace.

The Cyber Security Agency of Singapore (CSA) was formed in 2015 and has been given the task of protecting Singapore’s cyberspace. It is part of the Prime Minister’s Office and is managed by the Ministry of Communications and Information. 

 

Responsibilities

As a Lead/Senior Consultant of the ASG (ICS), your key responsibility is to lead a team in the conduct of in-depth vulnerability assessment, penetration testing and red teaming of Industrial Control Systems. You are required to 

  • Understand key operating concerns of stakeholders and conduct attack simulation safely on ICS environments to provide cybersecurity assurance

  • Provide technical consultancy, report weaknesses and find creative means to remediate or mitigate them within the constraints of legacy ICS environments 

  • Manage team of specialists and oversee their ICS technical skills development, including your own managerial and technical competencies

 

Requirements

  • Knowledge with technical hands-on in ICS

    • Operations and processes

    • Architecture and design (PLC, SCADA, DCS, SIS, HMI, etc.) 

    • Networks (DNPS, Modbus, Profinet, OPC/UA, etc.) 

    • Products (ABB, Siemens, Rockwell, Honeywell, Yokogawa, etc.) 

    • Security References (IEC62443, NERC CIP, NIST ICS guidelines, etc.)

  • At least three years of engineering, operations or cybersecurity experience in CII sectors such as the Water, Energy or Transport (Land, Maritime and Aviation) sectors

  • Analytical, conceptualisation and problem solving skills

  • Good communications and interpersonal skills to relate to stakeholders’ concerns 

  • CRT/OSCP or equivalent certifications in penetration testing is desirable

 

If you share our passion to make a difference in the cyber security landscape, take up the challenge and apply now.

Please note that only shortlisted candidates will be notified

All applicants will be notified on whether they are shortlisted or not within 4 weeks of the closing date of this job posting


Closing on 19 Apr 2021