AVP, Cybersecurity Engineering Specialist (Cloud Security and Data Loss Prevention)

The Technology Group (TG) is a key enabler to keep our business moving forward and is constantly exploiting state-of-the-art information technologies to enhance GIC’s ability to be the leading global long-term investment firm. We aim to provide users with empowering and transformational capabilities, and to create an inclusive, innovative and integrated work environment.

We are looking for a suitable candidate for the role of AVP, Cyber Security Engineering (Cloud security and Data Loss Prevention).

The individual will report to the Head of Cybersecurity & Systems Security Engineering, which is one of the key functions under Cyber Security, Information & Technology Risk (CSITR) division of Technology Group.

Responsibilities:

• Identify and recommend improvement areas in existing enterprise security architecture, to keep GIC protected against evolving cyber security threats
• Align and balance business requirements with cyber security, information and technology requirements, based on the organization’s risk appetite
• Evaluate, perform proof-of-value/proof-of-concept, design, build and implement enterprise-class cyber security systems
• Develop integrated security operating models and documentation to ensure operational efficiency, cost effectiveness, scalability and sustainability
• Act as a domain expert and trusted partner in CSITR; work closely with stakeholders in Technology Group and Business Groups, on cyber security engineering related matters

Requirements:

• With a Bachelor’s Degree in Information Technology, Computer Engineering or equivalent.
• Minimum 7 years in Cyber Security or Information Security, preferably in financial services or asset management industries.
• Hands-on experience in implementing and operationalizing cloud security solutions (IaaS, PaaS, and SaaS) and also data loss prevention solutions.

• Ability to do scripting and coding, with proficiency in Python or similar programming languages.
• Professional qualification in cloud technologies, such as Amazon Web Services and Azure certification.
• Familiar with cyber security products such as SIEM, threat intelligence, security incident response and forensic investigation tools, anomaly analytics tools, endpoint protection tools, etc would be advantageous.
• Ability to be versatile and inquisitive, having strong attention to details, possesses a analytical mind and outstanding problem-solving skills.
• Desire to learn, working in a diverse environment, interacting with multiple teams and functions to support strategic goals.
• Professional qualification in information security, such as CISSP / CISM / CEH will be advantageous.