[What the role is]
The Deputy Director of Cybersecurity Analysis and Operations Department leads the strategic and operational direction of MPA’s Maritime Cyber Assurance and Operations Centre (MCAOC), ensuring 24/7 protection of MPA digital systems. This executive role drives cyber defense for port operations, vessels, onshore IT/OT systems, and national maritime resilience, collaborating with industry, government agencies, and international partners to counter evolving threats.
[What you will be working on]
The key duties and responsibilities are to:
- Provide executive leadership for 24/7 MCAOC operations, including real-time threat monitoring, anomaly detection, incident response, and recovery for maritime IT/OT environments.
- Develop and execute security operations centre (SOC) strategy, integrating cyber threat intelligence, red teaming, threat hunting, and AI-driven analytics to safeguard port operations, vessels, and offshore assets.
- Establish and maintain cyber incident response frameworks, playbooks, and sectoral-level exercises (e.g., TTX simulations) for maritime critical information infrastructure (CII) protection.
- Oversee convergence of IT/OT cybersecurity requirements with Integrated Operations Centre, enterprise architecture, and CII owners for holistic risk management.
- Drive automation, SOAR, SIEM/EDR enhancements, and data linkages for early warning of cyber threats impacting navigational safety and business continuity.
- Lead investigations, vulnerability assessments, and remediation for MPA digital systems and CII partners, ensuring compliance with Singapore cybersecurity regulations and standards.
- Deliver executive dashboards and reports on SOC metrics (MTTD/MTTR), threat trends, and resilience posture to MPA CISO, leadership and national stakeholders.
- Foster partnerships with industry, research community, and international ports for information sharing and operational enhancements.
- Build and mentor a high-performing SOC team, emphasizing maritime-specific skills in OT/ICS security and Maritime Shipboard Operational Technology (MariOT) testbed training initiatives.
[What we are looking for]
- Background in Cybersecurity, Computer Science, or related field.
- 12–15+ years in cybersecurity, with 7+ years leading SOC operations.
- Deep expertise in IT/OT convergence, CII protection, red teaming, and incident management.
- Proficiency in SIEM, EDR, NDR, SOAR, threat intelligence platforms, and cyber tools.
- Strong executive communication for board-level reporting and crisis leadership.
- Experience in Singapore government/critical infrastructure cybersecurity.
Preferred Qualifications
- Certifications: CISSP, CISM, GIAC (GCIH/GCIA), or equivalent.
Key Success Indicators
- Enhanced MTTD/MTTR and zero major incidents impacting port operations.
- High team maturity, retention, and contributions to sectoral and national cyber exercises