As a Senior Cybersecurity Consultant of the Cybersecurity Engineering Centre (CSEC) IoT, OT and IIoT Security team, you will be responsible to assist the Team Lead in driving agile efforts on how to secure emerging technologies (IoT, OT, edge computing, 5G, threat analytics) that support Singapore’s digitalisation initiatives, namely Strategic National Projects (encompassing domains like Digital Identity, Smart City, Connected Vehicles), and also broader digitalisation trends (covering Consumer IoT, Industrial IoT, Medical IoT).

Responsibilities • Lead strategic foresight, risk analysis and horizon scanning of advancements in IoT technologies to anticipate and mitigate potential cybersecurity risks. Support the standardisation of risk responses and the development of governance frameworks to secure IoT/OT/IIoT deployments • Lead and execute research into relevant domains, identifying emerging threats, vulnerabilities, and technological trends with potential cybersecurity impact. This includes defining research objectives, methodologies, and ensuring the rigor and quality of research outcomes to inform strategic decision making. • Conduct analysis and strategic assessments of national cybersecurity strategies, policies, and initiatives, identifying gaps, overlaps, and opportunities for improvement in addressing evolving cyber threats in the IoT environment. • Lead the development of strategic reports and presentations that articulate research findings, strategic analyses, and actionable insights for diverse stakeholders, including technical teams and the senior leadership. • Lead and project manage cybersecurity research project and programs, including scope development, vendor, timeline management, budget and resource allocation. • Collaborate effectively with multidisciplinary teams and external partners to advance research objectives, share knowledge, and contribute to a culture of innovation and continuous improvement in cybersecurity. • Provide mentorship and guidance to junior team members, fostering their professional development and contributing to the growth of the cybersecurity research capabilities within the organisation. • Contribute to the development of ad-hoc innovative IoT/IIoT/OT cybersecurity solutions.

Requirements • At least five to eight years of experience working in IoT/OT/IIoT environment, such as manufacturing, energy, healthcare or transportation. Specialisation in IoT/OT/IIoT is preferred • Bachelor degree in computing, Computer Science, Computer Engineering, Information Systems, Electrical/Mechanical Engineering, Data Analytics or related field • CISSP, GICSP, IEC62443 or equivalent certifications would be an advantage. • Good understanding of IoT/OT/IIoT domains, not limited to: - Secure Communications, e.g. MQTT, CoAP, OPC UA - Cryptography - Structured Text and Ladder Logic - Function Block Diagrams - Industrial Control systems (ICS) and SCADA • Familiar with security principles, policies, relevant standards and frameworks, not limited to IEC62443, ISO/IEC30141, NIST guidelines and CSA CCoP • Good understanding key threats affecting the IoT/OT/IIoT domains • Technically hands-on and curious about inner workings of technology • Strong analytical and conceptualisation skills • Good communications and interpersonal relationship skills • Driven and capable to work independently. Resourceful, responsible, motivated and able to work independently as well as in a team If you share our passion to make a difference in the cyber security landscape, take up the challenge and apply now. All applicants will be notified of whether they are shortlisted or not within four weeks of the closing date of this job posting. For any issues with the application, you may drop your resume with us at csa_recruit@csa.gov.sg. Note: CSA will be shifting to Punggol Digital District (PDD) in year 2026.

About the Cyber Security Agency of Singapore Established in 2015, the Cyber Security Agency of Singapore (CSA) seeks to keep Singapore’s cyberspace safe and secure to underpin our Nation Security, power a Digital Economy and protect our Digital Way of Life. It maintains an oversight of national cybersecurity functions and works with sector leads to protect Singapore’s Critical Information Infrastructure. CSA also engages with various stakeholders to heighten cyber security awareness, build a vibrant cybersecurity ecosystem supported by a robust workforce, pursue international partnerships and drive regional cybersecurity capacity building programmes. CSA is part of the Prime Minister’s Office and is managed by the Ministry of Digital Development and Information. For more news and information, please visit www.csa.gov.sg