**Job Description Summary**
The Information Security Manager (ISM) is the primary cybersecurity focal at the site. This role is responsible for implementing, sustaining, monitoring, and auditing cybersecurity controls; ensuring compliance with global, regional, and contractual requirements (e.g., CMMC, EASA Part-IS); and promoting a strong cybersecurity culture across the facility. The ISM bridges OT, IT, and cybersecurity, acts as first-level approver for security-related changes, and partners with site leadership and Digital Technology (DT) to continuously improve the site’s cyber posture.
**Job Description**
**Company Overview:**
Are you ready to see your career take flight? At GE Aerospace, we believe the world works better when it flies. We are a world-leading provider of jet engines, components, and integrated systems for commercial and military aircraft. We have a relentless dedication to the future of safe and more sustainable flight and believe in our talented people to make it happen.
**Site Overview:**
For more than 40 years, our advanced facilities in Singapore have led aerospace innovation across the Asia Pacific region. From automating processes to leveraging smart factory technologies, robotics, and additive manufacturing, GE Aerospace is shaping the future of aviation. Responsible for more than 60% of our global repair volume, our Singapore site is the largest site for engine component maintenance, repair and overhaul work. We can’t do this work without talented people like you.
Join us and be part of our journey to innovate and excel in the aerospace industry.
**Role Overview:**
Cybersecurity Implementation & Monitoring:
+ Lead the Site Cyber Implementation Team to deploy and sustain the Cyber Playbook and other corporate cyber standards.
+ Track site-level cyber activities and risks (e.g., CMMC/IA defects, EASA Part-IS, vulnerabilities, endpoint monitoring coverage) and maintain a site cyber action plan.
+ Report cybersecurity metrics in Shop MOR/Daily Management and provide updates to site and DT leadership.
+ Act as first-level approver for security-related change management requests (e.g., firewall rules, ports, OT/IT connectivity), ensuring changes are risk-assessed, documented, and compliant.
Auditing and Compliance:
+ Ensure the site complies with applicable cybersecurity regulations, standards, and contractual requirements (global, regional, and customer-specific).
+ Partner with relevant functions to support customer audits, regulatory inspections, and technical reviews.
+ Assist with root cause analysis, corrective actions, and clarifications during and after external and internal audits.
Incident Management:
+ Serve as the local support for cybersecurity incidents, coordinating with the Global Incident Response Team within Cyber and DT for triage, containment, and recovery.
+ Support incident response readiness, including communication of roles, escalation paths, and participation in drills.
+ Contribute to post-incident reviews and drive implementation of corrective and preventive actions.
Cybersecurity Culture and Continuous Improvement:
+ Actively promote cybersecurity rules and best practices within the facility.
+ Conduct presentations and training sessions for various departments to enhance cybersecurity awareness and ownership.
+ Use appropriate communication channels to disseminate cybersecurity information and expectations.
+ Engage with shop floor, OT, and cross-functional stakeholders (Operations, Quality, EHS, Compliance, Facilities, BISOs, DT) to embed cybersecurity into daily operations and projects.
**Ideal Candidate** :
+ The ideal candidate is having strong understanding of cybersecurity risk management in large enterprise environment. Having spent time managing audits and ensuring cyber controls are in place and working effectively.
**Required Qualifications:**
+ Bachelor’s or Master’s degree in Information Technology, Cybersecurity, Computer Science, Engineering, or a related field.
+ 5-7 years of experience in operational technology (OT) and cybersecurity, preferably in manufacturing, industrial, or critical infrastructure environments.
+ Strong knowledge of regulatory and standards requirements at regional and global levels (e.g., CMMC, EASA Part-IS, IA, and contractual cybersecurity obligations).
+ Proven ability to lead projects and manage cybersecurity initiatives, coordinating cross-functional teams and driving actions to closure.
+ Ability to travel 30% (once per month) to the site to ensure cybersecurity controls are operating effectively.
**Preferred Qualifications:**
+ Excellent communication and stakeholder management skills, with the ability to influence and explain complex topics to non-technical audiences.
By submitting your application for this position, you consent to the collection, use, and disclosure of your personal data by GE Aerospace and its recruitment partners, including Employment and Employability Institute Pte Ltd, for the purpose of i) employment facilitation and ii) data and statistical analysis. You may find out more information on the PDPA policies at https://www.geaerospace.com/careers/privacy and https://www.e2i.com.sg/pdpa/ .
At GE Aerospace, we have a relentless dedication to the future of safe and more sustainable flight and believe in our talented people to make it happen. Here, you will have the opportunity to work on really cool things with really smart and collaborative people. Together, we will mobilize a new era of growth in aerospace and defense. Where others stop, we accelerate.
**Additional Information**
**Relocation Assistance Provided:** No
GE Aerospace is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law.
Want jobs like this matched to you?
Swoopd scores fresh postings against your résumé so you only see the matches that matter.