Total 18 process development engineer job vacancies in Legal / Public / Security category in singapore, North East

The AVP - Perimeter Security Build Engineer seats within the Perimeter Security Services Team, focusing on maintaining next generation, large scale perimeter security solutions for the enterprise globally. The purpose is to ensure the overall health and integrity of Citi’s network and perimeter defence.

In this role you will be responsible to work on various large scale security initiatives, establish and utilize processes for perimeter security lifecycle management, influence stakeholders and drive the general security posture along with various peer groups and organizations.

As an Perimeter Security Build Engineer you will

• Configure, deploy and integrate firewall and remote access infrastructure for Citi environment
• Work with aligned technology teams to ensure deployment and decommissioning of devices happen according to approved Citi standard build baselines
• Perform troubleshooting related to project rollouts
• Create and maintain documentation and reports for the configuration procedures & support checklists
• Perform process review, reengineering and standardization to ensure risk-free efficiency
• Work with perimeter security engineering and vendors on understanding and utilizing standard builds
• Participate in new product/solution testing and rollout

Ideal background

• 3+ years of experience with multiple security disciplines and understanding of perimeter security solutions and concepts
• Experience with Check Point, Juniper SSL and Palo Alto firewall solutions
• Unix / linux experience
• Advanced written and verbal English communications skills
• Stakeholder management skills, with ability to communicate with stakeholders of varying seniority across business and technical functions.
• University degree or certifications in a relevant cyber security / networking area

Benefits

• exposure to a broad range of investment technology businesses and products
• access to our world-class testing lab with physical hands on using hundreds of devices in the IT security ecosystem
• competitive compensation package
• access to Citi’s huge training database and subscription to external online trainings
• a socially active team and communities with diverse networking opportunities

Education:

• Bachelor’s degree/University degree or equivalent experience

This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.

As a Cloud Security Engineer, you will provide excellent technical guidance to customers adopting Google Cloud services. You will provide best practices on secure foundational cloud implementations, automated provisioning of infrastructure and applications, cloud-ready application architectures, and more. You will provide prescriptive guidance in ensuring customers receive the best of what Google Cloud Platform (GCP) can offer and you will ensure that customers have the best experience in migrating, building, modernising, and maintaining applications in Google Cloud. Additionally, you will work closely with Product Management and Product Engineering to drive excellence in Google Cloud products and features.

 Responsibilities:

Provide deep domain expertise in cloud security and be a trusted technical advisor to customers and solve complex cloud security & compliance challenges.

Work with customers to design and develop cloud security architectures and solutions to meet and exceed their security requirements, through deep dive discussions, strategic presentations/recommendations, and hands on implementation in Google Cloud environment.

Create and deliver best practices recommendations, tutorials, blog articles, sample code, and technical presentations adapting to different levels of key business and technical stakeholders.

Communicate effectively via video conferencing for meetings, technical reviews and onsite delivery activities.

Manage disparate senior stakeholders within customer environments to deliver consensus and drive positive customer outcomes on the Google Cloud platform.

Stay connected with the latest security trends throughout various industry verticals.

Travel regularly (up to 30%, although we also frequently use video conferencing) in-region for meetings, technical reviews, and onsite delivery activities.

Preferred Qualifications (PQs):

• At Least 7 years of security architecture and/or security engineering experience
• Hands on and deep knowledge of security principles.
• Demonstrated experience in Cloud Security delivered within the context of customer facing roles.
• Experience understanding attacks and mitigation methods, in two or more of the following: Network protocols and secure network design; Operating system internals and hardening; Web application security; Security assessments and penetration testing; Authentication and access control; Applied cryptography and security protocols; Security monitoring and intrusion detection, Incident response and forensics; Development of security tools, automation or frameworks.
• Strong practical experience securing Kubernetes and containerised workloads.

Proficio is an award-winning managed detection and response (MDR) services provider. We provide 24/7 security monitoring, investigation, alerting and response services to organizations in healthcare, financial services, manufacturing, retail and other industries. Take a video tour of our global network of 24/7 Security Operations Centers (SOCs).

 Proficio has been highlighted in Gartner’s Market Guide for Managed Detection and Response Services for the last five consecutive years. MSSP Alert ranks Proficio among the top 250 global Managed Security Services Providers (MSSPs).

 We have a track record of innovation. Proficio invented the concept of SOC-as-a-Service. We were the first MSSP to provide automated response services and are the only company in our space with a patent for cyber risk scoring and security posture gap analysis.

 Our typical client is a medium to large-sized organization that lacks the in-house resources to address the challenges of a rapidly changing threat landscape. The difficulty of hiring and retaining cybersecurity professionals are widely understood. Our prospective clients are also challenged to effectively harness technology and build hardened processes that reduce the risk of security breaches.

 While Proficio has developed a unified service delivery platform designed to meet the needs of the most demanding clients, what sets us apart is the quality and passion of our people. We believe the SOC of the Future will meld the creativity of human intelligence with the power of advanced technologies like AI.

 Proficio’s commitment to developing and promoting our team members is unparalleled in our industry. Most of our senior managers were promoted from within.

 SUMMARY

We are seeking an energetic Security Engineer II to serve as a technical resource and leader. This position has two components and supports both our team that Onboards new customers and our MSS team that manages security devices for our customers. 

Onboarding, 60% of this role:  this part of the position centers on security and availability of customer data as it is brought into the Proficio SIEM. The Security Engineer II will assist in working with new clients as they transition to our ProSOC service. This includes ensuring timely deployment of services, developing a personalized on-boarding strategy for each customer and auditing of systems reporting from the client to our Security Operation Center. 

MSS device configuration/maintenance, 40% of this role:  this part of the position will help ensure delivery of our Elastic Stack Managed Security Services to meet or exceed the defined service levels of our clients. The Security Engineer II will respond to customer requests and act as a trusted technical resource for our clients while striving to maintain high reliability and performance within our customer’s environments. This position also includes managing and optimizing overall IT infrastructure and systems used in the delivery of our Managed Security Services.

 Responsibilities

• Assist in the onboarding and implementation of ProSOC service and Managed Security Services solutions for Proficio clients across industries and geographic locations. 
• Act as a technical liaison between Proficio and its customers during the onboarding process.
• Review technical security posture (network, application, and database) for existing and newly acquired businesses or services.
• Perform security reviews and monitoring of the production environment. 
• Perform the installation and configuration of security monitoring tools in support of our ProSOC service.
• Use out of the box thinking as well as industry standard troubleshooting tools, such as, Wireshark, TCPDUMP, and other tools, to facilitate on-boarding of customer data sources.
• Work with senior staff to evaluate client security devices and make recommendations based on industry standards for security configurations.
• Assist Proficio engineering team with tasks related to the review and development of Managed Security Services related processes and procedures.
• Assist senior staff when they provide Subject Matter Expert (SME) services, engaging directly with clients to perform necessary research, answering questions and making recommendations based on industry standards and best practices.
• Participate in engineering team on-call rotation.

• A Bachelor’s degree in Information Systems, Business, Engineering, or a related field from an accredited institution OR equivalent experience
• 4-5+ years’ experience as a Network Engineer or Security Engineer working with a broad range of technologies
• Minimum 2+ years’ experience in Information Technology IT Security in a SOC or NOC environment working with a broad range of technologies highly preferred.
• Security certification required, such as, Security+ and Network+. Security certification such as SANS/GIAC, CISSP, CISA, CISM are a plus
• Basic Unix or Linux systems administration and command-line experience (Redhat/Linux, FreeBSD, Ubuntu, etc.).
• Experience with Windows Server security logs.
• Experience in the configuration and troubleshooting of IPSec VPN tunnels.
• Knowledge of network analysis tools, such as, Wireshark and TCPDump and SCP.

• Knowledge of UNIX and Windows environments as may pertain to Network and Security tasks including syslog, DNS, load balancers and BIND, BigIP command line on BSD, Windows Event Log.
• Hands-on experience installing, configuring and administering network and security devices, applications and systems
• General understanding of SIEM operations experience with Elasticsearch is a strong plus
• Managed Services experience preferred with a customer focused mindset that is willing to go above and beyond to satisfy a customer requirement absolutely required
• Experience performing vulnerability assessment and remediation using products such as Qualys, Nexpose or Nessus is a plus
• Proficient with Linux (scripting in Bash or Perl is required and Python is a plus)
• Vendor certifications from Palo Alto, Cisco, Juniper etc. are a plus
• Effective time task management skills.
• Strong communications skills, both written and oral
• Ability to participate in on-call rotation for after hours and weekend escalations

 At least 1 years’ experience configuring and/or using the following:

•  Security Management Systems (i.e. Tipping Point SMS, CheckPoint Security Management Server, Cisco Sourcefire Management Console, or JunosSpace)
• Firewalls (Cisco, Palo Alto, Checkpoint, Fortinet, Juniper SRX, or IPTables)
• IDS/IPS (Cisco AIP or Sourcefire, McAffee, Juniper or Tipping Point)
• Linux command line or similar operating system
• Experience with Vulnerability Management Tools
• Wireshark or other similar industry standard application
• Data Encryption using SSH, IPSEC VPN or TLS/HTTPS

• Opportunity to work in a progressive organization with structured training and roadmap for success

• Lunches and fun employee activities!
• Experience in one of the hottest IT industries today

Proficio is an EOE employer.

Assurity Trusted Solutions (ATS) is a wholly owned subsidiary of the Government Technology Agency (GovTech). As a Trusted Partner over the last decade, ATS offers a comprehensive suite of products and services ranging from infrastructure and operational services, authentication services, governance and assurance services as well as managed processes. In a dynamic digital and cyber landscape, where trust & collaboration are key, ATS continues to drive mutually beneficial business outcomes through collaboration with GovTech, government agencies and commercial partners to mitigate cyber risks and bolster security postures.

We are looking for a SOC Engineer (Shift) to join us in our mission to enhance Singapore’s competitiveness as a trusted ICT hub for citizens and businesses. This role will be a 2-year rolling contract employment.

A brief summary of your job responsibility:

• Act as Incident first responder, reviewing and verifying system alerts
• Perform security incident discovery, triage, and remediation plan coordination.
• Daily analysis of SIEM events to identify malicious events and define use-cases to alert the operations team on threat events.
• Identified and onboarded assets into SIEM with all necessary use cases, dashboards, and reports.
• Monitoring of security procedures and practices; recommend optimizations and improvements when gaps are identified
• Provide support on IDS, SIEM, vulnerability management systems (VMS) and advanced endpoint detection/prevention.
• Escalate security incidents using established policies and procedures
• Any other ad-hoc duties as assigned by the SOC Manager

To succeed in this role, you will ideally have:

• Experience with analysis of server, network and web security events.
• Working experience with SIEM and VMS support tools.
• Security certifications like SSCP and CISSP will be an added advantage
• ITILV4 foundation certified is preferred.
• Strong interpersonal communication skills, verbal and written.
• A team player and can also work on own initiative.
• Willing to work on 12-hour shift pattern.

Join us and discover a challenging and rewarding career with Assurity Trusted Solutions!

The remuneration package will commensurate with your qualifications and experience. Interested applicants, please click "Apply Now"

We thank you for your interest and please note that only shortlisted candidates will be notified.

By submitting your application, you agree that your personal data may be collected, used and disclosed by Assurity Trusted Solutions Pte. Ltd. (ATS), GovTech and their service providers and agents in accordance with ATS’s privacy statement which can be found at: https://www.assurity.sg/privacy.html or such other successor site.

• Annual Leave Benefits with additional perks such as Family Care and Birthday Leave.
• We promote a learning culture and encourage you to grow and learn.
• A competency framework is in place to help you grow your career with us.
• Contract Staff enjoys the same benefits as Permanent Employees.

Company:

Sopra Steria is a listed European tech leader specializes in Consulting, Digital Service, and Software. We have 60,000 employees worldwide located in different regions (Europe, North America and Asia), whereby Singapore is the HQ for APAC. EvaGroup Asia Pacific is part of Sopra Steria I2S APAC, in charge of Infrastructure, Cloud and Cybersecurity services.

Descriptions:

In this role, you will join a team of six members from Sopra Steria to support one of our government project. The scope of work includes:

1. Security Risk Assessment
2. Security Policies, Standards, Guidelines, And Procedures Review
3. Security Design
4. Application Security
5. Vulnerability assessment and
6. System Security Acceptance Testing

You will be an expert in the field of Cloud Security.

Responsibilities:

• Provide expertise in cloud security and be a trusted technical advisor and solve complex cloud security & compliance challenges.
• Design and develop cloud security architectures and solutions to meet and exceed their security requirements, through deep dive discussions, strategic presentations/recommendations, and hands on implementation in Cloud environment.
• Perform risk assessment for Cloud Computing Environment and Service
• Hands on and deep knowledge of security principles.
• Experience managing customer projects to completion, working with engineering teams, sales and partners.
• Experience architecting, developing, or maintaining secure cloud solutions.

• Minimum of 3 years of experience in Cloud Security (AWS will be highly advantageous)
• Strong understanding of security frameworks
• Fluent in spoken and written English
• Ability to work closely with international team in a professional manner
• Excellent verbal and written communication skills, including ability to solve complex technical situation and explain it clearly
• Relevant certifications, such as AWS Certified Security – Specialty (SCS-C01), Certified Cloud Security Professional (CCSP), Certified Information Systems Security Professional (CISSP), are a plus.

• Regular team buildings
• 18 leave days / year
• HSBC Insurance, GP, Dental, Optical
• Annual bonus
• Working hours: from 9am to 6pm, Monday to Friday
• Training and certifications paths

Solution Sales is on a journey to innovate across ServiceNow’s go-to-market (GTM), delight our customers, and fuel our unparalleled climb to $16B. We are moving fast, and with this rapid scale and dynamic growth we are hiring a strategic sales & GTM leader to drive growth, scale and consistency.  

The BDM Go-to-Market leader will spearhead market success for the Security Business. This role will focus on driving growth strategy, enhancing solution sales capabilities, and orchestrating cross-functional ecosystem efforts to build a robust sales pipeline and capture market opportunities. As a seasoned sales executive, you will apply your expertise to drive business growth in partnership with various cross-functional teams, including sales, specialist sales, product, marketing, partners, and other key stakeholders.  

This role offers a unique opportunity to make a substantial impact on the organization's growth and success. The ideal candidate is a proven sales & GTM leader with the ability to collaborate effectively, foster relationships, and demonstrate a keen intellectual curiosity that builds trust with senior leaders and stakeholders throughout the organization. The candidate must bring a combination of GTM expertise, deep product & market domain knowledge, and sales excellence to drive results.  

Key Responsibilities:  

• Develop and implement a comprehensive business development strategy with a specific focus on transformation initiatives.  Identify potential business opportunities and partnerships to support the company's growth objectives, leveraging market insights and industry trends.  
• Conduct thorough market research and analysis to identify emerging trends and transformational opportunities within the industry.  
• Collaborate with cross-functional teams to define and refine the company's value proposition and develop innovative solutions to address market needs.  
• Build and maintain strong relationships with key stakeholders, including clients, partners, and industry influencers.  
• Evangelize ServiceNow’s Service value proposition for major deals, partnerships, and strategic alliances, ensuring alignment with the company's overall transformation objectives.  
• Provide guidance and mentorship to the sales team, fostering a culture of excellence, collaboration, and continuous improvement.  
• Monitor and analyze market trends, competitive landscape, and customer feedback to inform strategic decision-making and enhance business development efforts.  
• Collaborate with the executive team to define and execute the company's overall growth strategy, incorporating transformational initiatives.  

We are seeking a highly skilled Security Engineer with extensive experience in managing, configuring, and upgrading a wide range of security technologies. The ideal candidate will possess strong technical expertise and excellent communication skills. This role requires a proactive individual who can effectively manage security incidents and ensure adherence to security policies and best practices.

Responsibilities:

· Manage, configure, and upgrade a diverse range of security technologies.

· Respond to fault alerts and customer escalations for managed security technologies.

· Troubleshoot product-specific technical issues within SLA, collaborating with internal teams and external vendors to resolve them.

· Escalate incidents and problems within SLA to internal technical teams or external product vendors.

· Prepare and submit incident reports for high-severity incidents.

· Respond to inbound Change Requests (CRs), Service Requests (SRs), and other queries within SLA.

· Perform regular configuration backups on managed security products.

· Plan and coordinate maintenance windows with clients for necessary software patching and version upgrades.

· Create and update technical documentation on managed security technologies.

· Generate monthly reports according to service scope requirements.

· Adhere to organizational and project security policies, procedures, and best practices.

· Serve as the primary point of contact to assist and advise clients on ICT security-related matters.

· Lead and support customers in security incident response and resolution.

· Demonstrate strong teamwork and leadership qualities.

· Maintain a customer-focused approach with excellent interpersonal skills.

· Bachelor’s degree / Polytechnic Diploma in Cyber Security, Computer Science, Information Technology, or Information Systems.

· Minimum of 5 years’ experience in IT infrastructure operation and/or support.

· Strong fundamental knowledge of IP networking (e.g., TCP/IP, routing) and operating systems (e.g., Windows, Linux).

· Excellent critical thinking and problem-solving skills with a passion for information security.

· Fluent in both written and spoken English, with strong interpersonal skills.

Responsibilities

• Bachelor’s degree in computer science, Information Security, or related field.
• Relevant certifications such as AWS Certified Security - Specialty or Certified Cloud Security Professional (CCSP) are a plus.
• Excellent communication skills and the ability to collaborate with diverse teams.
• Organised, independent and able to work with minimal supervision in a fast-paced working environment and adhere to organisational process and governance.
• Minimum five (5) years of relevant IT experience in deploying and managing application and services on cloud, including the design, development, implementation and/or management of the solution.
• Proven experience as a Cloud Security Engineer or similar role, with a focus on AWS cloud services
• Good knowledge in security
• Strong understanding of cloud platforms such as AWS, Azure, or Google Cloud.
• Proficient in security concepts related to infrastructure as code (IaC) and containerisation.
• Experience with security tools and technologies, such as Security Information and Events Management, Data Loss Prevention, Database Activity Monitoring, Data Security and Protection, Privileged Access Management, File Integrity Monitoring, Web Application Firewall, Intrusion Prevent etc

About Us

LiquidX Studio is a high-conviction, high-touch venture studio focused on building application layer companies within web3.

Pixelmon is One of the largest market-cap NFT collections in the gaming category. We are building out the first truly decentralised IP, first with games but moving to animation and other distribution channels. Innovative tokenomics, including fractionalised IP ownership and royalty sharing model.

We are based in Singapore and Malaysia with many of our team collaborating remotely from countries like New Zealand, Spain, Indonesia, and Brazil. With large backing from our recently raised funding round, we aim to create a unique experience with immersive gameplay and extensive lore that will wow all gamers.

These include, but are not limited to:

1. Building our IP through Non-Fungible Tokens (NFTs) and Fungible Tokens (FTs)
2. Creating engaging and innovative technology products to engage and support our Pixelmon community
3. Developing the web3 integration layer between our upcoming games and NFTs

About the Role

We are looking for a Senior Data & Security Engineer to join our dynamic team. The ideal candidate will assist in implementing and maintaining data security measures across our systems. This role involves working closely with senior engineers to ensure data protection, integrity, and availability.

What You Will Do

• Assist in implementing data security policies and procedures.
• Monitor and analyse security incidents and threats.
• Conduct vulnerability assessments and penetration testing.
• Participate in the development of security solutions and protocols.
• Provide support for data backup and recovery processes.
• Collaborate with other teams to ensure data privacy and compliance.

What You Will Bring

• Bachelor’s or Master’s degree in Information Security, Computer Science, or related field.
• 5+ years of experience in data security roles.
• Expertise in security tools and technologies (SIEM, DLP, IAM).
• Knowledge of regulatory requirements (GDPR, HIPAA, etc.).
• Experience with cloud security (AWS, Azure, GCP).
• Certifications such as CISSP, CISM, or GIAC are a plus.
• Solid understanding of networking concepts (TCP/IP, routing, switching, VPNs)
• Excellent analytical, problem-solving, and communication skills.

Who You Are

1. You thrive in a highly collaborative environment and can own complex projects, taking them from inception to completion.
2. You believe in supporting and guiding fellow and junior engineers through mentorship and coaching positively and encouragingly.
3. You love to learn and pick up new technologies and build production-grade products quickly.
4. You are familiar and comfortable with the fast-paced world of startups.
5. You are logical and able to communicate tradeoffs between technical options.
6. You are open-minded and willing to listen and distil different perspectives.
7. Plus Point: You have a demonstrable interest in crypto and DeFi 
8. Plus Point: You love and are actively gaming

Benefits and Why You’ll Love Working With Us

• We Listen. Your voice, ideas, and suggestions matters to us, as we continuously evolve 
• Our People. You’ll be working with a diverse, multicultural, international, talented, fun, supportive, and innovative people and teams. We are people you can be proud to work with
• On The Edge of Innovation. Working on the latest technological, social and financial trends that is web3 and blockchain
• Flat Organisation. our team is a community, we work together as a team from all levels in true decentralised spirit

Cyber Security, Associate Engineer

Salary: up to $4000+

Responsible in maintaining and improving the organization’s cybersecurity posture on an ongoing basis. S/he will work with external experts to implement security solutions, and work with vendors to monitor, detect and contain cybersecurity incidents to minimize impact to the organization.

Responsibilities

• Assist in the development of information security policies, processes / procedures and guidelines on an ongoing basis.

• Work with vendor to conduct security assessments and penetration tests.

• Identify security gaps, perform threat risk assessments in current setup and propose mitigating measures.

• Standardize and refine security incident response and escalation processes.

• Mitigate and contain threats when detected.

• Escalate security incidents and non-compliances on a timely basis.

• Work with IT infrastructure team to evaluate, implement and enhance the network perimeter security, endpoint security, SIEM.

• Monitor information security alerts triage, mitigate, and escalate issues as needed.

• Conduct information security awareness training.

• Provide security advisory to end users on regular basis.

• IT Security Management of various aspects, e.g. network security, server security, application security, end point security, email security, physical access security, logical access security, etc.

• Keep abreast of industrial IT security advancements and introduce appropriate security enhancements to IT infrastructure and systems.

• To perform daily monitoring of logs and review of security notifications and alerts, and assist on the assessment and reporting weekly trends, incidents and security events. Abnormalities found in the review of security events must be reported to the Cyber Security Manager.

• To provide daily technical support in terms of Cyber Security operations for Sophos Endpoint Protection, Cisco FTD Firewall, Advanced Email Threat Protection, Web Application Firewall, Cisco Email Security, DG DLP, Tenable SCCV, Splunk, Cisco Umbrella, etc.

• Attend to any other reasonable duties as assigned by the Senior Cyber Security & IT Governance Manager and IT Director.

Requirements

• Degree/ Diploma with min 2 years related work experience in cybersecurity management in Singapore.

• Good working knowledge of security risk management, security governance framework and compliance (IT Security Audit / log review), technical vulnerability management (vulnerability assessment, penetration testing), application security, security technologies (system hardening, IDS/IPD, firewall), security incident response and security assessment.

• Good command of written and spoken English.

• Excellent interpersonal and communication skills.

• Pro-active, independent, resourceful, able to work in a team environment and work independently with minimal supervision.

To apply:

Please email Resume in Microsoft Word format

Please state your Position/ positions applied on the “on TOP” of your resume.

Please state Available Commencement Date or notice period

Please state current and last SALARY and Expected Salary in your resume.

Please state Reasons for leaving current & previous Employment.

Your main missions and responsibilities will be:

• Rolling out Hotel Management Agreements and Hotel Franchise Agreements based on standard process
• Negotiating with owners and legal advisors of Hotel Management Agreements, and Hotel Franchise Agreements and all related documents
• Preparing and adapting template documents related to the management and franchising of hotels in different legal environments and jurisdictions
• Following-up on related legislation changes with the support of external advisors
• Cooperating with the compliance team in relation to KYC review process for hotel management deals and other related compliance matters
• Providing legal support to management operations teams
• Engaging with external legal counsel to address foreign jurisdiction legal matters (corporate legal requirements, due diligence, registration requirements, etc.)
• Ensuring documents are compliant with Accor Group policies & procedures and maintaining an understanding of the impact of any changes in Accor Group policies, organizational structure, and procedures
• Preparing and implementing branded residences related documentation based on standard process
• Ensuring and implementing due diligence in relation to Hotel Management Agreements and Hotel Franchise Agreements
• Liaising with Accor Group departments in relation to intellectual property matters
• Preparing and implementing technical support documentation regarding hotel development projects
• Liaising with other departments involved in the development and operation of hotels (e.g. IT, Technical, Distribution, Loyalty, Sales etc.)

Company Overview

Kiteworks’ mission is to empower organizations to effectively manage risk in every send, share, receive, and save of sensitive content. To this end, we created a platform that delivers content governance, compliance, and protection to customers. The platform unifies, tracks, controls, and secures sensitive content moving within, into, and out of their organization, significantly improving risk management and ensuring regulatory compliance on all sensitive content communication. Kiteworks is carrying its bold vision forward while maintaining strong profitability and growth. This is a perfect time to join the company as it moved into a high growth phase and there are many opportunities to make a meaningful contribution to its future.

The Role

We are looking for a highly driven, talented, and self-motivated Senior Applications Security Engineer to be part of our growing application security team. You will be part of a team that is up to date on emerging security vulnerabilities and threats, and works toward improving the security of our products and our CI/CD environment and process.

Key Responsibilities:

• Develop automation and security tools to enhance the security posture.
• Research, evaluate, and integrate new security technologies/tools within CI pipelines.
• Perform STRIDE threat modeling before each product release.
• Provide consultation in design and security reviews for new features.
• Conduct product code reviews with a security-focused lens.
• Execute white box security scans and implement system/application hardening measures.
• Document security fixes and support customer service with security advisories.
• Maintain comprehensive documentation and handle CVE filings.
• Analyze reported vulnerabilities, assess risks using CVSS methods, and determine impact.

Job Requirements:

• Bachelor’s or master’s degree in computer science or computer engineering, specializing in cybersecurity.
• at least 2 years of hands-on experience in cybersecurity roles.
• In-depth knowledge of common web application vulnerabilities and mitigation strategies.
• Proven ability to validate and implement security fixes; manage bug bounty reports effectively.

Key Skills and Experiences:

• Demonstrated expertise in integrating security measures into CI/CD pipelines using Jenkins, GitLab, etc.
• Proficiency in executing and interpreting results from SAST and DAST tools.
• Strong background in Linux system hardening and implementing CIS security standards.
• Proficiency in PHP and Python for security-related tasks.
• Hands-on experience with blue team responsibilities like DFIR and security hardening.
• Familiarity with AWS and Azure; additional experience considered advantageous.
• Security certifications (e.g., SANS) are highly valued.

Desired Attributes:

• Exceptional analytical skills coupled with a meticulous problem-solving approach.
• Excellent written and verbal communication skills.
• Proven ability to convey complex technical concepts to diverse audiences.
• Passionate about Kitework’s domain and mission.

Compensation/Perks

You will be rewarded with a competitive compensation package, including excellent benefits and stock options. Other benefits include: medical, dental, and 18-21 days annual leave

Technical Specifications:

• Good in providing solution by investigating and post-mortem analysis to resolve security violations.
• Experience in Information Security
• CISSP or Global Information Assurance Certification (GIAC) or equivalent.
• Performed asset and network discovery activities to ensure full coverage of vulnerability discovery.
• Good Experience in system and application vulnerability testing for Web servers, DB servers, Network devices Etc. using Nessus or Nexpose or other vulnerability Manager Tools.
• Good in monitoring security vulnerability information from vendors and third parties applications.
• Good in implementing policy audit for servers and workstations
• Prioritizing remediation activities with operational teams through risk ratings of vulnerabilities and assets.
• Research threats and vulnerabilities and, where appropriate, take action to mitigate threats and remediate vulnerabilities.
• In-depth knowledge of security systems and applications and a strong foundation in core area of security (e.g. OS hardening, Active Directory, DLP, network and perimeter).
• Good experience in configuring hardening guidelines and helped in maintaining baseline standards.
• Good experience in configuring CIS benchmarks on (Servers, Desktop & Network Devices)
• Configuring and monitoring of operational security infrastructure
• Good exposure to industry standards such as ISO 27001, PCI-DSS, with Audit experience in large enterprise/Service provider environment.
• Have good knowledge in web application security testing.
• Have a very good understanding about life cycle of Information Security Audit / VA
• Recommend, scheduled the security patches and other measures required in the event of a security breach.
• Monitor system logs, SIEM tools and network traffic for unusual or suspicious activity. Interpret such activity and make recommendations for resolution.
• Experienced in investigate and resolve security violations by providing post-mortem analysis to illuminate the issues and possible solutions.
• Good knowledge of Application exploitations and configuring alerts on SIEM
• Worked on installation, configuration management of security systems and applications, includes policy assessment, compliance tools, network security appliances and host-based security systems.
• ·Worked on monthly management reports, dashboards, documentation for security systems and procedures.
• Good in reporting unresolved network security exposures, misuse of resources or noncompliance situations using defined escalation processes.
• Good in training, mentoring and guiding for team members to use of security tools and resolve issues.
• Good in evaluating, implementing information security solutions to protect against potential threats for security violations
• Worked on incident response and architecture review processes.
• Managed and supported Endpoint Security/ ePolicy Orchestrator, Virus scan Enterprise, Data Loss Prevention, Host Intrusion Prevention and Endpoint Encryption.
• Have good knowledge on Data loss prevention and Endpoint Encryption tools.

Key Responsibilities:

• Develop and implement advanced cyber security architectures and solutions.
• Analyze and evaluate system security requirements to design secure networks.
• Collaborate with cross-functional teams to integrate security practices into all facets of the business.
• Conduct risk assessments and provide recommendations for enhancing system security.
• Stay updated with the latest cyber security threats and technologies.
• Develop technical solutions and tools to help mitigate security vulnerabilities.
• Provide technical guidance and support to other team members.
• Document and maintain records of security architectures and processes.

MUST HAVE:

• Bachelor’s degree in Computer Science or Information Technology or Cyber Security, or related field.
• Minimum of 3-5 years of experience in a cyber security architect or engineering role.
• Proven experience in designing and implementing secure network architectures.
• Strong background in network security, system security, and cloud security.
• Experience with common cyber security tools, standards, and protocols.
• Familiarity with industrial control systems and operational technology (OT) security is a plus.

WE VALUE:

• Strong technical skills in network and system security.
• Knowledge of current cyber security trends and threats.
• Excellent problem-solving and analytical abilities.
• Proficient in security technologies such as firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, etc.
• Good communication and collaboration skills.
• Ability to work independently and as part of a team.

• Bachelor’s degree in Computer Science, Information Security, or related field.

• Relevant certifications such as AWS Certified Security - Specialty or Certified Cloud Security Professional (CCSP) are a plus.

• Excellent communication skills and the ability to collaborate with diverse teams.

• Organised, independent and able to work with minimal supervision in a fast-paced working environment and adhere to organisational process and governance.

• Minimum five (5) years of relevant IT experience in deploying and managing application and services on cloud, including the design, development, implementation and/or management of the solution.

• Proven experience as a Cloud Security Engineer or similar role, with a focus on AWS cloud services

• Good knowledge in security

• Strong understanding of cloud platforms such as AWS, Azure, or Google Cloud.

• Proficient in security concepts related to infrastructure as code (IaC) and containerisation.

• Experience with security tools and technologies, such as Security Information and Events Management, Data Loss Prevention, Database Activity Monitoring, Data Security and Protection, Privileged Access Management, File Integrity Monitoring, Web Application Firewall, Intrusion Prevent etc

Key Responsibilities:

• Develop and implement advanced cyber security architectures and solutions.
• Analyze and evaluate system security requirements to design secure networks.
• Collaborate with cross-functional teams to integrate security practices into all facets of the business.
• Conduct risk assessments and provide recommendations for enhancing system security.
• Stay updated with the latest cyber security threats and technologies.
• Develop technical solutions and tools to help mitigate security vulnerabilities.
• Provide technical guidance and support to other team members.
• Document and maintain records of security architectures and processes.

MUST HAVE:

• Bachelor’s degree in Computer Science, Information Technology, Cyber Security, or related field.
• Advanced degrees (Master’s, PhD) or professional certifications (CISSP, CISM, CEH, etc.) in cyber security are highly desirable. Minimum of 3-5 years of experience in a cyber security architect or engineering role.
• Proven experience in designing and implementing secure network architectures.
• Strong background in network security, system security, and cloud security.
• Experience with common cyber security tools, standards, and protocols.
• Familiarity with industrial control systems and operational technology (OT) security is a plus.

WE VALUE:

• Strong technical skills in network and system security.
• Knowledge of current cyber security trends and threats.
• Excellent problem-solving and analytical abilities.
• Proficient in security technologies such as firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, etc.
• Good communication and collaboration skills.
• Ability to work independently and as part of a team.

At F5, we strive to bring a better digital world to life. Our teams empower organizations across the globe to create, secure, and run applications that enhance how we experience our evolving digital world. We are passionate about cybersecurity, from protecting consumers from fraud to enabling companies to focus on innovation. 
 

Everything we do centers around people. That means we obsess over how to make the lives of our customers, and their customers, better. And it means we prioritize a diverse F5 community where each individual can thrive.

Role Overview:

Our technologies are at the heart of modern applications that are enabling digital transformation across the globe! We give the world’s largest businesses, service providers, governments, and consumer brands the ability to securely deliver every app, anywhere—with confidence. We do this by working collaboratively in an innovative environment, helping each other succeed. We take extraordinary pride in being trusted advisers to our customers, offering the best solutions for their interests. If our mission and culture excite you, we would love to talk with you!

We are seeking a Distributed Cloud Support Engineer who is hardworking and committed to customer success. You are comfortable in both the Support and Engineering environments, translating internal Engineering communications into clear, concise directions for customers and partners. You are passionate about helping our customers tackle problems. You will provide support via phone, email, Slack and web portal. Support requests range in complexity from "how to" questions through involved debugging and forensic efforts when prioritizing operational issues. Visualizing problems remotely is key to being successful in this role along with excellent analytic and troubleshooting skills. You will have a significant career growth opportunity within a fast-paced SaaS company.

Sounds interesting? Read on!
 

What You’ll Do:

• Fix reported issues and advocate for the customer.

• Collaborate with sales and engineering teams to provide support to resellers, service provider and enterprise customers, as well as end users via telephone, e-mail, Slack and the web portal.

• Issue reproduction and concise documentation of solutions provided through technical notes, case studies and knowledge base articles.

• Critical issue management and customer assurance when handling reported issues.

• Coordinate fixes by engineering or Site Reliability Engineers (SREs) when required and relay appropriate information to our partners and customers.

• Provide recommendations on how to improve supportability, reliability, availability, and serviceability based on lessons learned through issue resolution.

• Training and enabling our service partners to ensure that they can sufficiently support customer issues.

What You’ll Bring:

• Bachelor’s degree in engineering or equivalent practical experience such as having 2 or more years of experience working in an operations environment or background in customer service/support and IT, network, or IT security incident management.

• Strong understanding of Networking and Layer 7 Protocols as well as experience in security product/solutions experience is preferred.

• Familiarity with Container technologies (Docker and Kubernetes) as well as public cloud experience with Amazon Web Services (AWS), Google Cloud Platform (GCP) and/or Microsoft Azure is preferred.

• Ability to read different scripting and automation (Python, Shell and Ansible).

• Knowledge of Data Representation types (XML, JSON and YAML) and Virtualization technologies.

• Phenomenal communicator with English, independent, collaborative and possess strong troubleshooting skills with the ability to prioritize and multitask when leading sophisticated technical issues.

• This role requires availability outside normal business hours with some travel may be required (less than 10%) to align with the distributed team or to respond to critical security events.

What You’ll Get:

• Hybrid working mode

• Career growth and development opportunities  

• Recognitions and Rewards

• Employee Assistance Program

• Competitive pay, comprehensive benefits, and cool perks

• Culture of Giving Back

• Dynamic Diversity & Inclusion Interest Groups

Apply if you believe your own unique capabilities can contribute to the success of this role and our organization!

#LI-BH1

The Job Description is intended to be a general representation of the responsibilities and requirements of the job. However, the description may not be all-inclusive, and responsibilities and requirements are subject to change.

Please note that F5 only contacts candidates through F5 email address (ending with @f5.com) or auto email notification from Yello/Workday (ending with f5.com or @myworkday.com).

Equal Employment Opportunity

It is the policy of F5 to provide equal employment opportunities to all employees and employment applicants without regard to unlawful considerations of race, religion, color, national origin, sex, sexual orientation, gender identity or expression, age, sensory, physical, or mental disability, marital status, veteran or military status, genetic information, or any other classification protected by applicable local, state, or federal laws. This policy applies to all aspects of employment, including, but not limited to, hiring, job assignment, compensation, promotion, benefits, training, discipline, and termination.  F5 offers a variety of reasonable accommodations for candidates. Requesting an accommodation is completely voluntary. F5 will assess the need for accommodations in the application process separately from those that may be needed to perform the job. Request by contacting accommodations@f5.com.

• Bachelor’s degree in Computer Science, Information Security, or related field.
• Relevant certifications such as AWS Certified Security - Specialty or Certified Cloud Security Professional (CCSP) are a plus.
• Excellent communication skills and the ability to collaborate with diverse teams.
• Organised, independent and able to work with minimal supervision in a fast-paced working environment and adhere to organisational process and governance.
• Minimum five (5) years of relevant IT experience in deploying and managing application and services on cloud, including the design, development, implementation and/or management of the solution.
• Proven experience as a Cloud Security Engineer or similar role, with a focus on AWS cloud services
• Good knowledge in security
• Strong understanding of cloud platforms such as AWS, Azure, or Google Cloud.
• Proficient in security concepts related to infrastructure as code (IaC) and containerisation.
• Experience with security tools and technologies, such as Security Information and Events Management, Data Loss Prevention, Database Activity Monitoring, Data Security and Protection, Privileged Access Management, File Integrity Monitoring, Web Application Firewall, Intrusion Prevent etc