You are responsible for software release approvals, in alignment with pre-determined software release criteria and archetypes developed in conjunction with Joint Digital and C4 (Command, Control, Communications, and Computers) Department. You will also provide consultation for Digital Ops-Tech Centre (DOTC) projects to ensure the code and architecture are Cyber Threat Risk Assessments (TRAs) compliant.

Principal Threat Risk Consultant
MINDEF
PermanentClosed
What the role is
What you will be working on
- Develop and execute a comprehensive cybersecurity strategy
- Analyse complex security issues and develop effective mitigation plans
- Develop and implement strategies to identify assets prone to cyber threats and attacks
- Conduct comprehensive assessments of the applications to uncover potential threats and vulnerabilities in the design, implementation, deployment or configuration of the application and systems
- Conduct in-depth analysis of existing threats and identify existing gaps in the current cybersecurity setup
- Provide advice on the design and implementation of security policies and controls on identified assets
- Conduct research on new and existing threats that may impact existing IT systems
- Recommend and develop approaches or solutions to problems and situations for which information is incomplete or for which no precedent exists
- Work in conjunction with other digital departments to determine software release criteria and archetypes that will guide the software release approval process
- Develop policies and frameworks for conducting cybersecurity risk assessments and compliance audits on products
- Identify potential threats that may affect applications and systems using the knowledge of the application and system vulnerabilities
- Run simulations on the systems to identify the possibilities of threats and extent of damage they could cause
- Prioritise and rate identified threats based on their severity
- Document new threats based on a core set of attributes to develop threat mitigation protocols
- Provide guidance on threat mitigation strategies and potential threats and cyberattacks to ensure current cybersecurity standards and setup are updated
Challenge(s)
- Consistently updated on the latest threat risk assessment criteria and to have an oversight into the code and architecture of all DOTC projects
What we are looking for
- At least 15 years of working experience in cybersecurity
- Experience in conducting security assessments, vulnerability management and incident response is advantageous
- Strong understanding of various cybersecurity domains, including network security, cloud security, application security and incident response
- Well-versed in local security laws and regulations
- Ability to adapt to changing situations/ environments and processes, while maintaining effectiveness under stressful conditions
- Excellent communication skills to influence both leadership and team members
Only shortlisted candidates will be notified.
About MINDEF
The mission of MINDEF and the Singapore Armed Forces is to enhance Singapore's peace and security through deterrence and diplomacy, and should these fail, to secure a swift and decisive victory over the aggressor.
The Defence Executive Officer (DXO) scheme is the non-uniformed career scheme of MINDEF that offers myriad opportunities in various job functions, such as corporate communications, cyber security, data analytics and visualisation, defence policy, finance, HR, psychology, and more. Embodying the same level of commitment towards defence, DXOs work together with their military counterparts to contribute to MINDEF/SAF’s mission and ensure Singapore's security and stability. United by this common cause, our lines of defence complement each other to secure the prosperity and progress of our nation.
About your application process
If you do not hear from us within 4 weeks of the job ad closing date, we seek your understanding that it is likely that we are not moving forward with your application for this role. We thank you for your interest and would like to assure you that this does not affect your other job applications with the Public Service. We encourage you to explore and apply for other roles within MINDEF or the wider Public Service.