Assistant Manager, Cyber Security

Responsibilities

• Oversee and manage the security requirements designed and built into systems, ensuring alignment with Certis’ security policies and standards.
• Identify security design gaps and recommend effective enhancements.
• Review and align security architecture, frameworks, and standards with the organisation’s business goals.
• Collaborate with Line 1 teams to ensure compliance and maintain the cybersecurity posture of the organisation.
• Conduct cyber awareness training and red-teaming exercises to assess and reinforce staff compliance with cybersecurity policies.
• Provide regular updates to the ISO27001 Steering Committee on the organisation’s security status.

Ideal Candidate

• A degree in Computer Science, Information Systems, Engineering, or a related field.
• At least 3 years of experience supporting IT operations (applications, network infrastructure, databases, or systems servers), with a strong focus on enterprise IT security and risk assessment.
• Proven experience with cloud security services (e.g. AWS, Azure).
• Strong understanding of both IT and enterprise business processes.
• Knowledge of cybersecurity frameworks and standards such as NIST, ISO27001, CSA Security-by-Design, the Personal Data Protection Act (PDPA), and Essential 8.
• Familiarity with cybersecurity tools and technologies (e.g. SIEM, SOAR, VA, OWASP).
• Professional certifications such as CISSP, CISM, CISA, or CCSP are highly desirable.
• Analytical mindset with strong communication skills; able to work independently and collaboratively across teams.