Senior Manager - Policy, Risk and Governance (Policy Risk & Capability Development)

Apply now »

Date: 5 Feb 2025

Location: SG

Company: Synapxe

Position Overview

Provide governance, policy and risk subject matter expertise in the Medical Device Oversight Committee program team to bring about successful delivery of initiatives to uplift the cybersecurity of medical devices and operational technology (MDOT) through its life cycle from pre-market availability to post-market policy and governance. Understanding the required initiatives to be built, you will develop the subsequent workplans, work with the relevant teams to ensure its subsequent implementation while reporting status until completion. To be successful, you will need to engage multiple stakeholders e.g. government, manufacturers, technology organizations, academia, healthcare institutions to drive for the required outcome.

Role & Responsibilities

  • Design for a common report format, solicit cooperation from clusters to provide content according to the format and build a central repository of risk assessment and policy compliance reports.
  • Identify the required controls needed to secure MDOT devices, considering the existing policies, industry practices and guidance. Build a cybersecurity controls library and guide the use of it for procurement, compliance adherence and risk assessment of MDOT devices.
  • Define MDOT vulnerability management, monitoring and detection requirements and support the design and evaluation of possible solutions.
  • Run / support cybersecurity campaigns, policies adherence program and innovation to increase compliance, risk posture and instill cyber risk awareness culture in making decisions.
  • Project manage and coordinate initiative(s) to ensure their successful implementation. This includes preparation of project materials, communication, activity & budget tracking, reporting of progress and highlighting potential dependencies and issues which could impact timelines and quality of deliverables.
  • Support to facilitate engagement and collaboration with various stakeholders in public healthcare, government and industry.
  • Engage and drive alignment with stakeholders including but not limited to MOH, Synapxe and MOHH entities’ CIOs, CISOs and other functional leaders.

Requirements

  • Bachelor’s degree in computer science or STEM Majors (Science, Technology, Engineering and Math) with over 8 years of experience.
  • Recognized industry leading certifications in relevant areas such as CISM, CRISC, CISSP, and GIAC certifications.
  • Desired Characteristics include:

Technical Expertise:

  • Experience in policy, standard and guideline implementation in cyber security and technology risk domain.
  • Strong technical writing and attention to details.
  • Working knowledge on well-recognized frameworks & standards such as IM8, NIST CSF, COBIT5/2019, and ISO27000 series.
  • Command a good understanding and experience in cyber security, risk management, and compliance concepts and processes.
  • Ability to consult and influence stakeholders on alignment of outcomes and desired technical solutions.
  • Ability to analyze, design, and develop a solution roadmap and implementation plan based upon a current versus future state.
  • Working knowledge of balancing security and business needs.
  • Knowledgeable on full range of services catalog within a cybersecurity function and able to discuss overall solution.
  • Experience in sustaining operational stability through various life cycle phases.
  • Able to lead early-stage customer interactions on cybersecurity design.

Business Acumen:

  • Adept at navigating the organizational matrix; understanding people's roles, anticipate obstacles, identify workarounds, leverage resources and rally teammates.
  • Understand how internal & external business model works and facilitate active customer engagement.
  • Able to articulate the value of what is most important to the stakeholders to achieve desired outcomes.
  • Able to produce functional area information in sufficient detail for cross-functional teams to utilize, using presentation and storytelling concepts.
  • Possess knowledge of cybersecurity services in portfolio and proficiency in discussing each area.

Leadership:

  • Demonstrate working knowledge of a large organization and cross-functional teams.
  • Anticipate obstacles, identify workarounds, leverage resources, rally teammates.
  • Strong interpersonal skills, including creativity and curiosity with ability to effectively communicate and influence across all organizational levels.
  • Proven analytical and problem resolution skills.
  • Ability to influence and build consensus with other stakeholders.

Apply Now

NOTE: It only takes a few minutes to apply for a meaningful career in HealthTech - GO FOR IT!!

#LI-SYNX13

#1823