IT and Cyber Security Manager

Conveying, loading, palletising, packaging, sortation and distribution – BEUMER Group is a leader in the engineering and manufacturing of high-tech intralogistic systems for global markets. Our employees differentiate themselves by their ability to provide innovative solutions to our customers that incorporates a high-level of industry knowledge and a strong commitment to consistently and continuously expand their skills and knowledge. We fully support these high standards through a supportive teamwork structure, a mutual respect, and a working culture based on trust that fosters stability and security for all of our employees. Our common goal is to implement outstanding and innovative projects worldwide.

A member of BEUMER Group, located in Singapore BEUMER Group Singapore Pte. Ltd. is strategically located at the Singapore Changi International Airport, one of the busiest airports in the world. We have more than 200 employees working in our various business segments such as Airport systems, Logistics and Customer Support.

The IT and Cybersecurity Manager is a key management role responsible for establishing, maintaining, and overseeing the comprehensive IT and Operational Technology (OT) security posture of the T3 Baggage Handling System (BHS). This role ensures strict compliance with international standards (like ISO/IEC 27001) and applicable Singapore laws (like the Cybersecurity Act 2018) and actively manages cybersecurity risks throughout the operation and maintenance lifecycle. This position reports to Operation and Maintenance (O&M) Manager – Customer Support.

KEY TASKS & RESPONSIBILITIES:

The Cybersecurity Manager performs or coordinates a wide array of activities, often working directly with the LTSS team to provide necessary resources and expertise.

1. Infrastructure & System Management 

• Maintain high-availability IT infrastructure for baggage handling systems across on-premises and hybrid environments. 
• Oversee proactive monitoring, maintenance, and upgrades to ensure high availability and performance. 
• Manage server environments (Windows, Linux, VMware/Hyper-V), including patching, backups, and disaster recovery. 
• Maintain IT asset inventory, configuration, and lifecycle management to meet operational and regulatory requirements
• Oversee system updates, upgrades, and configuration management to minimize downtime and optimize performance. 
• Ensure full documentation of system architecture, configurations, and change logs for audit readiness.

1. Cybersecurity Program Management & Compliance:

• Manage the comprehensive IT and Cybersecurity Programme (such as ISO/IEC 27001 Information Security Management System - ISMS) and coordinate resources to fulfil all security activities.
• Ensure alignment of the program with the latest ISO/IEC 27001 standard, the Aviation Cybersecurity Code of Practice (ACCoP), and the Cybersecurity Code of Practice (CCoP) requirements.
• Oversee and coordinate all activities for the certification, maintenance, and renewal of the required ISO certifications for the entire contract lifecycle.
• Ensure that operational processes adhere to established ISO and security guidelines, preventing any deviation from certified processes.
• Support compliance efforts regarding the Cybersecurity Act 2018 provisions, especially if the BHS is designated as "critical information infrastructure" (CII).
• Review and update the comprehensive risk register at least annually or following changes in the operating environment or threat landscape.

1. Security Operations and Incident Response:

• Manage and coordinate activities related to event and incident management.
• Immediately notify the Superintending Officer from the Customer (S.O.) of any cybersecurity incident relating to the CII or any Connected System.
• Provide timely updates to the S.O. and cooperate fully with the LTSS team to handle, manage, and resolve all security incidents.
• Ensure prompt implementation of immediate corrective measures, such as software patches and virus/malware removal, to restore the system to a clean, secured, and operational state.
• Support the S.O.'s required incident response procedures, ensuring that all personnel are briefed on reporting processes.
• Ensure that all audit trails (e.g., network, application, system, and security logs) are kept for a minimum of twelve (12) months to assist in future investigation and access control monitoring.

1. Maintenance, Monitoring, and Audits:

• Coordinate system updates and upgrades, including Patch Management.
• Oversee and facilitate regular software and firmware updates for all relevant hardware (e.g., servers, network switches, PLCs).
• Ensure the security of the System and Facilities by generating and coordinating the review of security logs and reporting any found security violations to the S.O.
• Support Security Testing and Assessment activities, including:
• Security Vulnerability Assessment (annually).
• Penetration Testing (annually).
• Threat Hunting exercises (at least once every twenty-four months).
• Adversarial Attack Simulation (Red/Purple Teaming exercises).
• Support and coordinate resources for all periodic audits and security reviews conducted by the S.O. or appointed third-party auditors.
• Ensure that all discovered vulnerabilities are addressed and resolved within the timeframe agreed upon by the S.O.

1. Design and Planning:

• Ensure the BHS design and architecture comply with secure design principles, including Defense-in-Depth, Least Privilege Principle, and Zero-Trust Principle.
• Collaborate on the development and adherence to the 15-year Technological Roadmap and Obsolescence Management Plan.
• Coordinate the integration of the BHS central logging system with the S.O.’s corporate Security Information and Events Management (SIEM) solution.
• Minimum Qualifications and Experience
• The position requires a strong technical and management background specific to critical infrastructure environments.

• Degree in Computer Engineering and/ or relevant technology education in computer networking and security.
• A minimum of 5 years of relevant experience in managing, operating, and testing Information Technology (IT) and Operational Technology (OT) systems of similar scale.
• Strong knowledge of baggage handling systems, SCADA, and industrial control systems is a plus.
• Proven experience in vendor management, compliance, and cross-functional collaboration.
• Knowledge in MS Office, MS Project, MS Visio
• Familiarization with SIEM solutions (e.g. IBM Qradar), Network monitoring tools (e.g. Whatsup Gold) as an advantage

Functional skills:

Required Certifications (Must possess at least one of the following):

• ISC2 Certified Information Systems Security Professional (CISSP)
• ISACA Certified in Risk and Information Systems Control (CRISC)
• ISACA Certified Information Security Manager (CISM)
• GIAC Certified Intrusion Analyst (GCIA)
• GIAC Certified Incident Handler (GCIH); or
• Qualified ISO/IEC 27001 Lead Implementer / Lead Audit

Soft Skills:

• Communication and interpersonal skills
• Problem-solving and decision-making
• Conflict resolution
• Adaptability and flexibility
• Time Management