Position Summary
The Security Engineer plays a critical role in helping to design, implement and maintain various security tools that together form a layered defence against cyber threats.
Key Responsibilities
- Security Tools EngineeringWork with vendors to drive security projects end-to-end to implement effective security protection for the organisation.
Ensure that each security tool is well designed, thoroughly tested and properly operationalised.
Serve as a subject matter expert for various security domains.
Collaborate with stakeholders to ensure that security projects do not cause a negative impact to other systems and users.
Keep on top of developments in cyber threats and advances in security protection and establish roadmaps to continuously improve the security posture of the organisation.
Establish secure design patterns for applications to follow a well-defined template to ensure application security.
- Security by DesignServe as a subject matter expert for security design for projects within the organisation.
Evaluate existing security posture and recommend enhancements.
- Risk Management and ComplianceEnsure compliance with relevant regulatory requirements and industry standards.
Assist in security audits and assessments.
- Collaboration and CommunicationCollaborate with cross-functional teams to integrate security principles into technology processes and solutions.
Conduct security awareness sessions.
Requirements
- Degree in Computer Science, Computer Engineering or Information Security related fields.
- At least 5 years’ experience in security engineering, with deep expertise in one or more security domains.
- At least 3 years’ experience in leading security projects end-to-end.
- Security certifications such CISSP, CISM, CCSP, CISA, AWS Certified Security - Specialty are highly desirable.
- Experience in Security Engineering for Cloud workloads is an added advantage.