Snr Exec / Assistant Manager (MDOTS), Facilities Management

Broad Function

Provide support to Facilities Management (FM) in monitoring building mechanical & electrical system/equipment, termed as Operational Technologies (OT), cybersecurity risk assessment and following up with cybersecurity deviation processes, including coordination of ongoing reviews of risk registrations to ensure appropriate controls to mitigate medical equipment from IT related risk. Work closely with FM and IT team to establish escalation processes for cyber incidents and develop contingency plans and recovery procedures. Focuses on policy implantation and controls.   

Key Responsibilities and Duties

Specific

• Participate and assist IT team and vendors for OT cybersecurity risk assessment. Facilitate and support deviation report process, including deviation report preparation, presentation, coordination of user endorsement and management authorisation, until receiving deviation approval from MOHH.  
• Work Independently to conduct cybersecurity risk assessment to identity IT related risk and determine appropriate controls to mitigate the risk after Hospital Opening.
• Document cybersecurity risk assessment report and review cybersecurity deviation at yearly basis.
• Monitor heath status and vulnerability of OT system/equipment and servers. Maintain a record of risk registration of OT system/equipment and ensure mitigation control for all IT related risk is implemented.
• Ensure OT system/equipment software to be the latest version when it is delivered and plan for patches and updates during equipment lifespan.
• Take part IT related project and provide necessary support.
• Work closely with FM peer colleagues, IT team and user when OT system/equipment has cyber incidents and ensure mitigation control is implemented before releasing equipment to user. 

General

• Provide FM/IT support to ensure medical equipment follow policy guideline and controls at any stage of equipment life cycle.    
• Perform all other tasks and duties as directed by AD, FM.

Job Requirements

• Degree in Computer Science, Information Technology related to cybersecurity field. Candidate with at least 2-3 years of healthcare with be advantage.  
• Degree in Engineering with at least 2-3 years of experience in network security and/or system security and/ or cybersecurity domain
• Experience with various security tools and products (Fortify, AppScan, Nessus etc.)
• Strong interpersonal skills, able to communicate effectively to different stakeholders with diverse backgrounds.
• Vigilant and systematic in identifying cybersecurity risks and enjoys analysing and investigating such issue.
• Strong leadership skills and good team player, able to communicate well both verbally and in writing.
• Familiar with cybersecurity standards, protocols and frameworks, and policy of MDOTS, HIM-ISP, etc.
• Demonstrate strong technical foundation and willingness to learn new technology and approaches.
• Required to be activated back on site to support cybersecurity and IT related incident management and investigation as necessary.  

Professional License (if any)

• Preferable if candidate possess certification such as OSCP, CREST, CEH, CISSP, AWS, CISA, CISM or any cloud service security specialty.

Please be informed that only applications submitted through NHG Career Webpage (corp.nhg.com.sg/Careers), WH Career Webpage (wh.com.sg/joinus), JobStreet Singapore (jobstreet.com.sg), Singapore Medical Association (sma.org.sg), Singapore Nurses Association (sna.org.sg), MyCareersFuture.sg, LinkedIn and WH appointed recruitment agencies will be considered. If you are accessing this job posting from another recruitment channel, please visit the official channels mentioned above.

Notes: If you’re interested with the above job, please click button [Apply the job @Company’s site] below to brings you directly to the company’s site.