We are seeking for skilled IT Security engineer - Cybersecurity with 2 - 4 years of experience or fresh graduates encouraged to apply
- Senior Cybersecurity Engineer (min with 4-year experience)
- Cybersecurity Engineer (min with 2-year experience)
Job Requirements:
Operating Hours:
Mon – Thu: 8.30am – 6pm
Fri: 8.30am – 5.30pm
Note: Engineer is expected to standby to work after office hours, weekends, and public holiday.
Scope of Work:
For Security & Vulnerabilities Assessment and Remediations Management
- Engineer shall perform vulnerabilities assessment based on the vulnerabilities identified by Customer Cyber Security team and any other security vendors.
- Engineer shall work closely with Customer Cyber Security team and/or any other security vendors to provide the remediation and/or workaround solution to close the vulnerabilities.
- Engineer shall test the remediation and/or workaround solution in the development environment first before deploying the remediation
to production.
- Engineer shall prioritise and resolve all the vulnerabilities according to customer remediation timeline.
- Engineer shall perform the necessary coordination with various parties for impact analysis, schedule for downtime, patching and any other related.
- Engineer is required to provide the necessary documentation on vulnerabilities remediation before implementation on production.
- Engineer is required to provide the necessary fall-back plan if the implementation fail on production.
- Engineer is required to raise the necessary ticket for implementation and schedule for downtime.
- Engineer is required to provide the necessary monthly report on vulnerabilities assessment, remediation schedule, status etc.
- The software products within the scope are as follows:
i. Solaris OS
ii. Linux OS (Oracle Linux, RedHat Linux, other Linux variations)
iii. Windows OS
iv. Hypervisor such as Nutanix, VMware Esxi, Vxrail, Microsoft Hyper-V and Azure, Oracle VM for x86 and Sparc
v. Web Server (Apache and IIS)
vi. OpenSSL
ICT Infrastructure Project Delivery and System Administration
- Engineer shall ensure smooth rollout of customers projects.
- Engineer to provide technical support for the project coordination, implementation, and rollout work of all customer projects.
- Engineer to provide IT consultancy services which includes but not limited to providing technical advice for the infrastructure services required for the setup, configuration, and commissioning of the customer projects.
- Engineer shall ensure all systems are well maintained.
- Engineer is expected to function as part of customer team in providing 24x7 operation support for system implementations arising from system changes, patches and security vulnerabilities fixes.
- To ensure the reliability and good working condition of the systems, the Engineer is expected and not limited to perform the following maintenance tasks.
- Periodic OS/firmware evaluation and recommendation exercises to recommend standard versions of OS/firmware for various intranet hardware platforms; quarterly for extranet and internet hardware platforms. The exercises shall cover security aspects, availability aspects, as well as pitfalls on operational aspects.
- Prepare, coordinate and execute the OS/firmware patching/upgrading of computer devices in accordance to the schedule and frequency stipulated by customer.
- Perform basic housekeeping tasks such as server configuration, backup, daily syslog/alert monitoring, health check, ORCA trend charts monitoring, etc.
- Monitor server performance via customer’s existing monitoring tools or scripts.
- Engineer assigned shall undertake to collect/review relevant statistics that may facilitate troubleshooting, capacity planning and performance tuning. Such statisticsshall be made available to customer either on a monthly or on a per-need basis should exceptions arise. The proactive measures that apply and are not limited to are as follows:
- Network performance indicators – network load, utilization etc.
- Hardware resource performance indicators – CPU, memory, etc.
- Continual assessment on overall performance & network health collectively to identify potential bottlenecks by looking at resource and traffic profiles.
- Performance indicators shall be reflected in a section within the monthly reports for ease of reference and discussions.
- Reviews of server setup to support Capacity Planning purposes shall be carried out every 6 months.
- Condition of current server performance
- Proposal to enhance or tune the server for better performance
- Updates of firmware and hardware releases that may affect the eventual performance and upgrade path of the components – such information as imminent obsolescence, End-of-Sales and End-of-Support status must be communicated to customer.
Requirement:
- Degree/Diploma in Information Technology/Computer Science or equivalent
- Working experience in Network Security
- Knowledge of Networking, firewall and other security technology.