AVP, Cyber Threat Exposure & Vulnerability Management, COO Office

at  GIC Investment

Location:Singapore, SG
Job Function: Chief Operating Officer’s Office
Job Type: Permanent
Req ID: 16184
GIC is one of the world’s largest sovereign wealth funds. With over 2,000 employees across 11 locations around the world, we invest in more than 40 countries globally across asset classes and businesses. Working at GIC gives you exposure to an extraordinary network of the world’s industry leaders. As a leading global long-term investor, we Work at the Point of Impact for Singapore’s financial future, and the communities we invest in worldwide.

WHAT IMPACT CAN YOU MAKE IN THIS ROLE?

You will be empowered to be at the top of your game by providing strategic partnership, and innovative technology solutions that supports GIC’s vision of being a tech-driven, global, long-term investment firm.

WHAT WILL YOU DO AS A CYBER THREAT EXPOSURE & VULNERABILITY MANAGEMENT SPECIALIST?

• Manage a comprehensive cyber threat exposure and vulnerability management program. This includes vulnerability and penetration testing (VAPT program and vulnerability operations.
• Monitor and manage emerging threats using the threat exposure management lifecycle (scope, discover, prioritise, validate and remediate).
• Participate in the design, testing and implementation of relevant security controls to achieve a fully integrated and automated practice over time
• Provide governance on threat exposure, vulnerability remediation and emerging threats
• Collaborate with stakeholders to align security practices with organisation goals
• Manage cyber security vendors
• Solicit, manage feedback, and understand unique business requirements to strengthen our security posture or balance risk in the controls
• Collaborate with relevant departments to ensure security measures are integrated into all aspects of the business
• Develop and manage relationships with industry community such as FS-ISAC, relevant local or regional cyber security organisations or industry peers
• Assist in audit, regulatory and incident reporting matters where relevant
• Establish a culture of collaboration, excellence, and teamwork
• Keep up to date with industry and technology trends and breaking news that may be relevant to keep GIC secure

WHAT QUALIFICATIONS OR SKILLS SHOULD YOU POSSESS IN THIS ROLE?

• Bachelor’s degree in computer science, Information Security, or a related field.
• At least 3-5 years of experience working in a threat exposure and vulnerability management function or similar.
• Experience with deep and/or broad cyber capabilities such as incident response, threat intelligence, breach and attack simulation, penetration testing, offensive security, and security operations.
• Strong analytical and practitioner skills, combined with excellent written and verbal communication skills.
• Ability to break down complex problems and articulate them clearly to a non-technical audience.
• Relevant certifications in SANS, OffSec or other relevant credentials
• Knowledge of cybersecurity organization practices, operations, risk management processes, principles, architectural requirements, engineering, threats and vulnerabilities, including incident response methodologies.
• Ability to work independently and as part of a team in a fast-paced, dynamic environment.