Applications Manager, Cyber Security

Singapore DHL Express req79303 06/06/2019
Apply

Overall Role Purpose

The key purpose of this role is to provide functional input for the Application Security framework, ensuring the development and management of application security policies, standards and regulations, best practice guidelines and support tools in line with the DP DHL security policies and DHL Express IT strategy, ensuring implementation of fit for purpose application security program globally.

Accountabilities

  • Define implementation needs for security in all projects and drive implementation globally
  • Drive global awareness trainings and implementation of the Enterprise Global Application Platform Security Seal standard.
  • Provides regular reporting to Chief Information Security Officer and IT Executive Committee to ensure appropriate visibility to existing and new application vulnerabilities
  • Ensure appropriate risk mitigation actions and plans are developed by Business IT team, IT Services team and its IT service suppliers
  • Represent the DHL Express Information Security and Data Protection organization and serve the entry point for the application security assessment, risk assessment and treatment process for customers
  • Participate in Information Security forums to ensure approach is up-to-date with leading edge industry thinking
  • Report the effectiveness of Application Security to the Management team with explicit focus on high risk / high impact assessments and actions being taken for mitigation
  • Provide guidance and direction to the Audit function on potential information risk exposures
  • Coordinate application security assessment activities with entities within Express and external suppliers/customers
  • Provide input to the design and development of management practices and solutions selected from the information security risk treatment plan
  • Perform Information Security Exemption Management for high or critical risks jointly with business partners
  • Maintain an Information Security reporting plan for the areas within his/her responsibility
  • Analyze IT Systems/Application in regards to confidentiality, integrity and availability
  • Support risk owners in identifying and assessing threats to IT systems and technologies
  • Implement a systematic and structured application security risk assessment process
  • Ensure application threat and vulnerability evaluations are conducted periodically
  • Identify and evaluate periodically information security controls and counter-measures to mitigate risks to acceptable levels
  • Integrate risk, threat and vulnerability identification into life cycle processes (for e.g. development, procurement, service design)
  • Report significant change(s) in application risk to appropriate levels of management and follows-up to ensure remediation

Desired Skills and Qualifications

  • Minimum 8 to 10 years in a relevant information security role, within a multi-national, multi-cultural environment
  • Minimum 5 years’ experience in leading and implementing application security management processes and frameworks
  • Minimum 5 years’ experience in application security testing (static/dynamic penetration test,  active threat hunting experience is advantageous)
  • Proven experience in implementing application security policies and risk mitigation actions
  • Broad understanding of IT security and its impact on the business
  • Strong stakeholder management, proven experience in developing and managing all defined communication channels/stakeholder groups
  • Strong written and communications skills
  • Sound analytic and reasoning skills
  • Seasoned professional in Secure Software Development Lifecycle
  • Demonstrate in-depth knowledge of IT Security practices and methodologies

Educational Qualification

  • Bachelor’s degree in relevant disciplines
  • Relevant information security accreditation (e.g. CEH, CISSP, CISM, CISA,CRISC or equivalent experience)

Facts and Figures

  • Business Unit

    DHL Express Singapore

  • Employment Type

    Permanent Full-Time

  • Work Permit Required

    Yes

Apply