About the Client
Our client is one of the reputed MNC firms in Singapore
Responsibilities
· To develop, manage and maintain the security, administration, configuration, troubleshooting, automation of security analysis of solutions.
· To develop, maintain, and execute infrastructure as code scripts and playbooks to automate deployment and maintenance tasks to ensure the availability, reliability, and efficient operation of the enterprise systems.
· Responsible for the evolution of application security functions and services. The position demands someone who is highly technically competent, detail oriented, and driven to stay current with evolving technologies.
· Supporting compliance efforts related to secure SDLC processes and infrastructure.
· Ability to perform technical due diligence on platforms and solutions when limited or no documentation is available.
· Ability to grasp wide range of technologies from IOT, Edge, Datacenter, and cloud to offer solutions.
· Ability to effectively communicate with both technical and non-technical peers and business stakeholders, as well as executive level management.
· Ability to lead the remediation of application vulnerability screening and results of penetration testing.
· To provide deep subject matter expertise across multiple disciplines including IT infrastructure, security, business application and system integration.
· Security and Privacy (Skills)
· Knowledge of secure coding best practices and security framework standards: NIST, COBIT, ISO.
· Experience architecting solutions that comply with compliance regulations such as: PCI, GLBA, SOX, Basel III
· Experience implementing controls for privacy legislation such as: HIPAA, COPPA, FCRA, GLB and GDPR
Skills/Requirement
Must have Skills:
- Bachelor’s degree in Information Technology/Computer Science/Engineering
- 10 -15 years of relevant work experience
- Proven experience of working in AppSec within DevOps or DevSecOps groups
- Experience in developing processes that produce artifacts that support security and compliance requirements.
- Ability to design and implement secure automation solutions for development, testing, and production environments.
- Experience in supporting multiple agile teams across various platforms, environments, and instances.
- Experience of implementing security best practices and configuration management
- Ability to employ infrastructure-as-code to increase automation, scalability, and reliability.
- Experience in cloud based containerized environments (Kubernetes, Docker)
- Deep technical experience of securing, monitoring, and maintaining infrastructure for in-house developed applications.
- Expertise in 3rd party library security scanning, static code scanning, code hygiene, dynamic code scanning.
- Experience in leading the organization’s application security tooling, problem intake and remediation process.
- Knowledge of container security, AWS EKS, Azure AKS, Helm
- Knowledge of IAM, cloud trail, guard duty, WAF, SDLC practices, basic scripting skills
- Experience with common programming and scripting languages, such as Golang, Ruby, C/C++, C#, Python, JavaScript, Bash
- Familiar with designing solutions to complex technical issues and working with other technology or cyber security experts, including architects and vendors.
- Resolves any technical problems discovered by DevOps, development, or testers and any internal clients.
- Familiar with cloud offerings including, but not limited to, Alibaba, Amazon Web Services, Azure, and Google Cloud Platform.
- Knowledge of Agile software development principles, Continuous Integration and Deployment (CICD), and DevOps
- Knowledge of software vulnerabilities and remediation (OWASP/SANS CWE)
- Experience implementing identity strategies and application integrations including LDAP, Kerberos, SAML, OAuth, OpenID Connect
- Experience in developing secure configurations across Integration APIs, GraphQL and deployment on API Gateways such as Azure APIM GW, Axway/Mulesoft API GW etc.
Interested candidates, who wish to apply for the above position, please send in your resume to [email protected]
We regret to inform that only shortlisted candidates will be contacted
PERSOLKELLY Singapore Pte Ltd
EA License No. 01C4394
EA Registration No. R1547247 (Jyothi Chandrakanth Kamath)
This is in partnership with Employment and Employability Institute Pte Ltd (“e2i”). e2i is the empowering network for workers and employers seeking employment and employability solutions. e2i serves as a bridge between workers and employers, connecting with workers to offer job security through job-matching, career guidance and skills upgrading services, and partnering employers to address their manpower needs through recruitment, training and job redesign solutions. e2i is a tripartite initiative of the National Trades Union Congress set up to support nation-wide manpower and skills upgrading initiatives. By applying for this role, you consent to e2i’s PDPA.
The information contained in this e-mail and any accompanying documents may contain information that is confidential or otherwise protected from disclosure. If you are not the intended recipient of this message, or if this message has been addressed to you in error, please immediately alert the sender by reply e-mail and then delete this message, including any attachments. Any dissemination, distribution or other use of the contents of this message by anyone other than the intended recipient is strictly prohibited.
By sending us your personal data and curriculum vitae (CV), you are deemed to consent to PERSOLKELLY Singapore Pte Ltd and its local and overseas subsidiaries and affiliates collecting, using and disclosing your personal data to prospective employers/companies based in any country for purposes of evaluating suitability for employment, conducting reference checks, administering employment related services and such other purposes stated in our privacy policy. Our full privacy policy is available at www.persolkelly.com.sg. If you wish to withdraw your consent, please drop us an emailto let us know. Please feel free to contact us if you have any queries.
All parties involved in any form of workforce engagement are to strictly adhere to prevailing regulations and laws that govern local fair employment practices, and to invest reasonable efforts in building a strong Singaporean core workforce, recruit and select candidates based on merit and prohibit discrimination based on age, race, gender, religion, marital status and family responsibility or disability. For more information, please refer to MOM and TAFEP websites.
**********************************
