MANAGER/DEPUTY/ASSISTANT MANAGER, TICKETING SYSTEM & GOVERNANCE
[LTA-PT] MANAGER/DEPUTY/ASSISTANT MANAGER, TICKETING SYSTEM & GOVERNANCE
Land Transport Authority
Fixed TermsClosed
What the role is
What you will be working on
Become a catalyst for effective system ownership and operations as a Ticketing System officer!
Are you passionate about optimising public service delivery? Join our team and take a lead role in enhancing ticketing system, improving commuters experiences and driving cyber security and data protection operations as per industry standards within public transport ticketing system.
You will work on the following:
(1) Cybersecurity and Data Protection Governance:
• As ticketing system owner, you will oversee and enforce cybersecurity and data protection policies, standards, and procedures aligned with ISO 27001, NIST, PCI-DSS, PDPA and other relevant standards.
• Collaborate with internal technical cyber security team and contractors to monitor the effectiveness of cybersecurity and privacy controls of IT infrastructure, cloud services, networks and applications in ticketing system.
• Establish key metrics (KPIs) on cyber security and data protection and
periodically report to senior management
(2) Compliance and Risk Management:
• Support internal and external audits and assessments related to cybersecurity
and data protection.
• Maintain a register of risks related to information security and data protection,
and track mitigation plans.
• Collaborate with technical cyber security teams to ensure internal delivery teams and third-party service providers meet security and privacy requirements for ticketing system.
• Oversee data protection measures and access controls of ticketing system.
(3) Incident Management:
• Manage cybersecurity and data protection incidents including detection, analysis, containment, eradication, and recovery.
• Drive root cause analysis and ensure implementation of corrective/preventive actions.
• Review incident management report and post-incident reports.
• Coordinate with required stakeholders for incident response, business continuity and disaster recovery.
(4) Awareness and Training:
• Collaborate with technical cyber security team to implement cybersecurity and data privacy awareness programs, including phishing simulations and incident response tabletop exercises.
• Support staff training on cyber security, secure data handling, breach prevention, and compliance obligations.
Are you passionate about optimising public service delivery? Join our team and take a lead role in enhancing ticketing system, improving commuters experiences and driving cyber security and data protection operations as per industry standards within public transport ticketing system.
You will work on the following:
(1) Cybersecurity and Data Protection Governance:
• As ticketing system owner, you will oversee and enforce cybersecurity and data protection policies, standards, and procedures aligned with ISO 27001, NIST, PCI-DSS, PDPA and other relevant standards.
• Collaborate with internal technical cyber security team and contractors to monitor the effectiveness of cybersecurity and privacy controls of IT infrastructure, cloud services, networks and applications in ticketing system.
• Establish key metrics (KPIs) on cyber security and data protection and
periodically report to senior management
(2) Compliance and Risk Management:
• Support internal and external audits and assessments related to cybersecurity
and data protection.
• Maintain a register of risks related to information security and data protection,
and track mitigation plans.
• Collaborate with technical cyber security teams to ensure internal delivery teams and third-party service providers meet security and privacy requirements for ticketing system.
• Oversee data protection measures and access controls of ticketing system.
(3) Incident Management:
• Manage cybersecurity and data protection incidents including detection, analysis, containment, eradication, and recovery.
• Drive root cause analysis and ensure implementation of corrective/preventive actions.
• Review incident management report and post-incident reports.
• Coordinate with required stakeholders for incident response, business continuity and disaster recovery.
(4) Awareness and Training:
• Collaborate with technical cyber security team to implement cybersecurity and data privacy awareness programs, including phishing simulations and incident response tabletop exercises.
• Support staff training on cyber security, secure data handling, breach prevention, and compliance obligations.
What we are looking for
• Knowledge in computer science, engineering or information technology, cyber security is preferred.
• Experience in managing cyber security and data protection operations and incident management.
• Strong understanding of information security and data protection principles, ISO 27001, PDPA, PCI-DSS Security Standards and cloud security standards.
• Preferably has cyber security and/or data protection recognized certifications such as CISSP, CISA, CISM, ISO27001, CIPP
• Strong incident response, crisis management capabilities, good communication, situational awareness and stakeholder management skills.
• Ability to analyze complex problems and recommend practical solutions.
• Experience in managing cyber security and data protection operations and incident management.
• Strong understanding of information security and data protection principles, ISO 27001, PDPA, PCI-DSS Security Standards and cloud security standards.
• Preferably has cyber security and/or data protection recognized certifications such as CISSP, CISA, CISM, ISO27001, CIPP
• Strong incident response, crisis management capabilities, good communication, situational awareness and stakeholder management skills.
• Ability to analyze complex problems and recommend practical solutions.
About Land Transport Authority
The Land Transport Authority (LTA) is a statutory board under Ministry of Transport that spearheads land transport developments in Singapore. We are seeking dynamic, energetic, highly motivated, passionate and qualified professionals to join us.
Many opportunities & challenges await those who are keen on an exciting career to realise our commitment to envision & implement an integrated transport system.