Responsibilities

  • Be the integrator and key point of contact for cyber security policies, standards, guidelines and control libraries development and maintenance while facilitating engagement and collaboration with various stakeholders in public healthcare sector.
  • Be the voice for the team from a sectoral cyber security perspective when evaluating stakeholders’ requirements, expectation, and interaction.
  • Drive cybersecurity policies adherence program and innovation to instill cyber risk awareness culture in making decisions.
  • Evaluate evolving risk trend, posture and changing threat landscape and take a proactive approach to ensure our policies, standards, guidelines and control libraries remain relevant and fit-for-purpose.
  • Maintain effective working relationships with peers, stakeholders, and regulators to seamlessly integrate the policy adherence into the overall strategic objectives and activities of the sector.
  • Demonstrate your domain expertise; you are expected to further your own knowledge and improve productivity of your colleagues with activities such as creating learning content, presenting, and supporting a continuous learning culture.

Requirements

  •  Bachelor’s degree in computer science or STEM Majors (Science, Technology, Engineering and Math) with over 15 years of experience.
  • Recognized industry leading certifications in relevant areas such as CISM, CRISC, CISSP, and GIAC certifications.    Experience in policy, standard and guideline implementation in cyber security and technology risk domain
  • Solid technical writing and attention to details.
  • Working knowledge on well-recognized frameworks & standards such as IM8, NIST CSF, COBIT5/2019, and ISO27000 series
  • Command a good understanding and experience in cyber security, risk management, and compliance concepts and processes.
  • Ability to consult and influence stakeholders on alignment of outcomes and desired technical solutions.
  • Ability to Analyze, design, and develop a solution roadmap and implementation plan based upon a current vs future state.
  • Working knowledge of balancing security and business needs
  • Knowledgeable on full range of services catalog within a cybersecurity function and able to discuss overall solution.
  • Experience sustaining operational stability through various life cycle phases. 
  • Able to lead early-stage customer interactions on cybersecurity design.
  • Adept at navigating the organizational matrix; understanding people's roles, anticipate obstacles, identify workarounds, leverage resources and rally teammates.
  • Understand how internal & external business model works and facilitate active customer engagement.
  • Able to articulate the value of what is most important to the stakeholders to achieve desired outcomes. 
  • Able to produce functional area information in sufficient detail for cross-functional teams to utilize, using presentation and storytelling concepts.
  • Possess extensive knowledge of cybersecurity services in portfolio and proficiency in discussing each area.
  • Ability to influence and build consensus with other stakeholders.