Senior Manager / Manager (Cybersecurity) – Governance & Policy

You will support the Chief Information Security Officer (CISO) and the Office in the formulation of cybersecurity policies, standards and guidelines in the healthcare sector, ensuring Healthcare providers and Health Data Intermediaries fulfill their regulatory obligations under Health Information Act (HIA) and accompanying Cybersecurity requirements. You will be working in a fast-paced and dynamic environment that would require the ability to manage multiple priorities and stakeholders at the same time.

1. Formulate and review healthcare cybersecurity policies, standards and guidelines, aligning them to relevant Whole-Of-Government (WOG), Ministry of Health (MOH), government authorities (e.g. CSA, SPF, PDPC), and contextualized to the healthcare operating environment. 2. Support CISO Office as Healthcare Sector Lead on governance and management reporting, especially for NEHR (CII reporting). 3. Serve as the distribution channel for prompt dissemination of cybersecurity information and intelligence from CSA across the healthcare sector, whilst staying current on cybersecurity risks and technology developments for adoption and sharing within the organisation and sector. 4. Supervise and manage policy and technical officers, including staff development, work oversight, and provide guidance on cybersecurity policy and governance matters to build team capability.

Key Competencies Required: • Thinking Clearly & Making Sound Judgements – Strong analytical and critical thinking abilities to support the crafting of sound policy recommendations; ability to grasp timelines, operating context and ground realities. • Learning & Putting Skills into Action - Possesses the drive and curiosity to learn and apply new skills, knowledge and new ways of working. • Improving & Innovating – Ability to seek continual improvements, and to innovate and experiment while managing the risks involved. • Working Effectively with Stakeholders – Ability to mobilise and rally partners and stakeholders towards a collective purpose. • Tertiary qualifications, with qualifications in cybersecurity, IT and engineering fields as an added advantage • Certification in cybersecurity would be an added advantage • Attended cybersecurity training covering overall cybersecurity, risk assessment, infrastructure/application/network security, computer forensic or ethical hacking. • At least 7 years of work experience in the healthcare industry and/or cybersecurity • Strong policy or strategic planning background, with prior experience in leading policy formulation and implementation or support strategic plan as an added advantage • Strong understanding of national and sectoral priorities, and healthcare operating environment • Strong interpersonal skills and ability to work with different groups of stakeholders as well as develop close relationships with key decision makers • Strong leadership qualities with proven ability to lead and manage a team of policy, operations and technical officers • Strong communication and writing skills with ability to work independently and as a team • Proactive, driven and able to manage and deliver on multiple projects concurrently, with good time management skills • Analytical, with innovative and creative mindset • Strong interest in cybersecurity As part of the shortlisting process for this role, candidates may be required to complete a medical declaration and/or undergo further assessment.