Requirements:
- Security analysis and vulnerability mining capabilities, including binary analysis capabilities (mobile, PC), and common web vulnerabilities/binary vulnerability mining techniques.
- Have data analysis and algorithm modeling capabilities, discover the security risks and threats of several external attacks through data mining, and have strong experience in anti-cheating and offensive and defensive confrontation.
- Perform regular vulnerability assessments and scans using industry-standard tools.
- Identify and document security vulnerabilities in systems, applications, and networks.
- Evaluate the severity and potential impact of identified vulnerabilities.
- Prioritize vulnerabilities based on risk and criticality to the organization.
- Collaborate with IT and development teams to develop and implement remediation plans.
- Track the progress of remediation efforts and ensure timely resolution of vulnerabilities.
- Provide guidance and support for vulnerability mitigation strategies.
- Continuously monitor systems for new vulnerabilities and emerging threats.
- Maintain detailed records of vulnerabilities, remediation actions, and timelines.
- Prepare and present regular vulnerability management reports to senior management.
Requirements
- Bachelor’s degree in Computer Science, Information Security, or a related field.
- 3+ years of experience in vulnerability management, information security, or a related role.
- Strong understanding of vulnerability assessment tools and techniques (e.g., Nessus, Qualys, Rapid7).
- Experience in Microsoft DLP, Proofpoint and Forcepoint.
- Experience with security frameworks and standards (e.g., NIST, ISO 27001, CIS).
- Knowledge of network and system security principles, firewalls, intrusion detection systems, and other security technologies.
- Excellent analytical and problem-solving skills.
- Strong communication and interpersonal skills.
- Ability to manage multiple tasks and priorities in a fast-paced environment.
- Relevant certifications such as CISSP, CEH, CISM, or CompTIA Security+.
- Knowledge of scripting and automation tools to enhance vulnerability management processes.
- Business level Mandarin speaking is required as the candidate will be required to liaise with Mandarin stakeholders, vendors and counterparts on daily basis.
Sumit Sambhi
EA License No. – 23C2060
EA Registration No. - R1330510
Disclaimer: The company is committed to ensuring the privacy and security of your information. By submitting this form, you consent to the collection, processing, and retention of the information you provide. The data collected (which may include your contact details, educational background, work experience and skills) will be used solely for the purpose of evaluating your qualifications for the position you're applying for. Your data will be stored securely and retained for the duration necessary to fulfill our hiring process. If you are not selected for the position, your data will be kept on file for a limited period in case future opportunities arise. You have the right to access, correct, or delete your data at any time by contacting us at Quess Singapore | A Leading Staffing Services Provider in Singapore (quesscorp.sg)