Last page update:
The APEC Secretariat is based in Singapore and operates as the core support mechanism for the APEC process. It provides coordination, technical and advisory support as well as information management, communications and public outreach services.
The APEC Secretariat performs a central project management role, assisting APEC Member Economies and APEC fora with overseeing more than 250 APEC-funded projects. APEC's annual budget is also administered by the APEC Secretariat.
The APEC Secretariat is staffed by 21 APEC Member Economies. In addition, professional staff fulfill specialist and support functions at the APEC Secretariat.
Key deliverables include:
- Ensure all the IT resources such as email, applications, servers, networks, end user computers are appropriately protected from internal and external cyber threats so that the staff can focus on their responsible work.
- Continuously analyze current cyber security intelligence, technologies, and vendors to identify areas of improvement.
- Prepare cost benefits analysis reports when security system or service upgrades are necessary, continuously analyzing vendors to ensure they offer the best possible service and value for the organization’s needs.
Responsibilities:
- Conducting penetration testing, simulating an attack on the system to find exploitable weaknesses.
- Developing and implementing security framework, policies, processes/procedures and guidelines.
- Maintaining security subject-matter expertise and keep abreast of best practices & trends.
- Managing vulnerability assessment.
- Oversight & resolution of security incidents.
- Responds to cyber security breaches, identifies intrusions and isolates, blocks and removes unauthorized access.
- Develop and implement programs to enhance corporate wide cyber security awareness.
- Creates and maintains standards, procedures, and documentation related to area of responsibility.
Ideal Candidate
- You possess a Degree/Diploma in Computer Science, Engineering or related field.
- You have at least 5 year experience, ideally within a IT Security role.
- Professional certification (e.g. CompTIA Security+, CISSP) is a plus.
- Familiarity with security frameworks (e.g. ISO/IEC 27001, NIST Cybersecurity framework) and risk management methodologies.
- Knowledge of patch management, firewalls, and intrusion detection/prevention systems, web security, end user security.
- Familiarity with public key infrastructure (PKI) and cryptographic protocols (e.g. SSL/ TLS)
- An analytical mind with excellent problem-solving ability.
- You have good interpersonal and communication skills and are adept at working with multiple stakeholders to drive desired outcomes.
- You are highly goal driven and work well in fast paced environments
- You are adaptable and thrive in changing environments
- You are a strong team player who can manage multiple stakeholders
Interested candidates please write in to : HR Recruit email: [email protected]