1 Year Contract Bank Cybersecurity Engineer

Direct Responsibilities

• Manage Security solutions to protect the Bank’s IT Security Infrastructure from Cyber threats. This includes Intrusion Detection / Prevention systems, Firewalls, Cryptography Systems & WAF.
• Design and implement the security principles for hosting the web applications.
• Design, validate, implement and document end-to-end processes workflows on security implementations.
• Review and development of security framework, information security policies, processes / procedures and guidelines on an ongoing basis
• Identify Security gaps, perform threat risk assessments in current setup and propose mitigating measures and react to Cybersecurity resilience.
• Undertake new security projects to improve security controls, efficiency, and ease of use without compromising compliance needs.
• Review and re-affirm the security controls for the application go-live and enforce them in respective platforms including the virtual environment.
• Proficient in handling the web security Zero-day vulnerabilities and must have expert skills in Cyber Security operations.
• Must be expert in analyzing web security policies / signature-based updates and assess the risk for the Banking applications.
• Handle internal customer inquiries with firewall consultation and troubleshoot technical issues effectively.
• Communicate with external vendors over technical support and for solutions for new projects.
• Proactively identify areas of improvement and implement fixes and solutions to automate / fine-tune the processes with new or existing tools.
• Lead incident response activities for detecting and recovering from Cyberattacks.
• Perform vulnerability assessments and recommend solutions for security gaps.
• Monitor network for suspicious activities and anomalies that are emerged as part of Web Application platform.
• Monitor and adhere IT Governance principles & controls related to Cybersecurity Architecture.

Job Requirements:

• Min Bachelor’s degree in Computer science or a related field.
• At least 8 years of experience in the IT Security domain.
• Proficient in Microsoft office products, Tufin suite, Micro-segmentation, Web application firewalls, IPS / IDS platforms.
• Strong fundamental understanding of Internet Security and Critical Controls.
• SME in the WAF platforms, especially in the F5 Advanced WAF and VMware AVI NG WAF(MOD Sec).
• Guide the engineers on the WAF operational activities, along with handling Network Security Team BAU activities & projects.
• Must good in analyzing and reviewing the IPS policies on the Cisco Firepower Threat Defense systems (FTD), Fortiguard and Fortinet security control features.
• Expert in handling the zero-day vulnerabilities and mitigate the web based attacks by custom scripts / iRules.
• Act as SPOC for the cyber drill / BAS(Breach & Attack Simulation) activities and co-ordinate with infrastructure teams and report the vulnerabilities for the review.
• Analyze the web security events and revival session with the application teams in strengthening the security policies.
• Hands on experience in Illumio Zero Trust, Checkpoint R81.10, Fortigate Firewalls and must be good in understanding NAC principles.
• Must be good in packet capture analysis and Firewall rule coding principles and Rule compliance.

Interested applicants, please send your resume to [email protected]

Ivy Tham Yi Ru

EA Personnel No. R1104692

Recruit Express Pte Ltd | EA No 99C4599