To support the operationalisation of the national certification and labelling schemes (Common Criteria for IT security products, Consumer Internet-of-Things, Medical Devices, etc.) which include the maintenance of the policy & standards, conducting the security evaluation and labelling of products. Through these schemes, Consumers, Enterprises and Industry will have access to a wider pool of more secure devices, which will help to enable a safer and more secure cyberspace that underpins our national security, power a digital economy, and protect our digital way of life, so that Singapore can capture the benefits of a more connected world safely.
Consultant/Senior Consultant (Cybersecurity Labelling Scheme & Common Criteria)
Cyber Security Agency of Singapore
Contract
Closing on 31 Dec 2024
What the role is
What you will be working on
Responsibilities
National Certification and Labelling Scheme Body
• To operationalise and deliver the strategic outcomes for the schemes as set forth by CSA management.
• To keep up with the latest revisions and requirements of the Common Criteria.
• To support the development of new schemes to meet the demands of the ecosystem, while maintaining existing schemes (consumer IoT, medical devices, or based on emerging technologies).
• To review test reports from the Approved Testing Laboratories to ensure that the conclusions are consistent with the test evidence presented and that the scheme security evaluation/assessment methodology have been correctly applied.
Government, Industry, and Consumer Engagement
• To educate the users (public, clinicians, public/private healthcare institutions) to embrace the usage of the labelling scheme, to bring about a positive change in their mindset to be more cybersecurity conscious.
• To engage developers (aka manufacturers) to embrace and adopt cybersecurity in their devices, thus enabling them to better meet the requirements of the schemes and provide better secured devices and a wider pool of device categories.
• To perform landscape studies, consumer surveys, as part of identifying key product categories, key potential industry partners to broaden the reach and effectiveness of the schemes.
Tools and Techniques for the Consumer IoT and Medical Devices, and other emerging areas.
• To equip, operate and maintain the evaluation laboratory to facilitate security testing in the areas of consumer IoT and medical devices.
• To perform research and development of new attack techniques to improve testing efficiency, as well as the survey of the landscape of developments within various technical domains.
• To explore other applicable emerging areas for CLS (mobile, software-as-a-service, artificial intelligence, etc.)
What we are looking for
Requirements
• Master/ Bachelor degree in Computer Science, Information Systems, Mathematics, or relevant discipline.
• Working experience in the field of cybersecurity. Specialisation in Cybersecurity Testing is preferred.
• At least 4 to 6 years of working experience for Consultant role; at least 7 to 10 years for Senior Consultant role with at least 3 years of supervisory experience.
• Professional Qualifications such as OSCP, CEH or equivalent certifications would be an advantage.
• Technically hands-on and curious about inner workings of technology.
• Strong analytical and conceptualisation skills.
• Good communications and interpersonal relationship skills.
• Team player who is driven and capable to work independently. Resourceful, responsible, motivated and able to work independently as well as in a team.
• Creative, able to think out of the box.
If you share our passion to make a difference in the cyber security landscape, take up the challenge and apply now.
All applicants will be notified of whether they are shortlisted or not within four weeks of the closing date of this job posting.
For any issues with the application, you may drop your resume with us at csa_recruit@csa.gov.sg
About Cyber Security Agency of Singapore
About the Cyber Security Agency of Singapore
Established in 2015, the Cyber Security Agency of Singapore (CSA) seeks to keep Singapore’s cyberspace safe and secure to underpin our Nation Security, power a Digital Economy and protect our Digital Way of Life. It maintains an oversight of national cybersecurity functions and works with sector leads to protect Singapore’s Critical Information Infrastructure. CSA also engages with various stakeholders to heighten cyber security awareness, build a vibrant cybersecurity ecosystem supported by a robust workforce, pursue international partnerships and drive regional cybersecurity capacity building programmes. CSA is part of the Prime Minister’s Office and is managed by the Ministry of Digital Development and Information. For more news and information, please visit www.csa.gov.sg