Total 4 security job vacancies in d20 bishan ang mo kio

Responsibilities:

• Designing, implementing, and managing security solutions to protect against cyber threats while ensuring seamless IT Infrastructure, Servers and Applications performance.
• Continuously optimize existing IT Infrastructure, Servers and Applications security policies and models, monitor and respond to threat detection event alerts and response handling, and enhance overall detection levels and coverage.
• Be responsible for vulnerability management (CVE, CVSS, OWASP Top 10), container, network & systems security, as well as cloud security tools and services
• Design, configure, and maintain firewalls, VPNs, intrusion detection/prevention systems (IDS/IPS), and other security devices.
• Monitor and analyze security events and logs to identify potential vulnerabilities and incidents.
• Threat Prevention & Incident Response: Identify, investigate, and resolve security breaches and incidents.
• Develop and implement strategies to mitigate identified risks and vulnerabilities.
• Ensure all compliance and security control functions are performed timely and orderly.
• Drive continuous improvement of procedures and processes related to cybersecurity process and operations monitoring.
• Conduct regular audits of IT Infrastructure, Servers and Applications security to ensure compliance with security policies.
• Maintain compliance with industry standards such as ISO 27001, GDPR, or SOC 2.
• Create and maintain detailed network diagrams and security documentation.
• Work closely with IT teams to ensure robust security integration across systems.
• Educate employees on security best practices and emerging threats.
• Manage tools like SIEM, antivirus solutions, IDS/IPS and DLP software.
• Stay updated with the latest technologies, trends, and vulnerabilities in cybersecurity.

Requirements:

• Bachelor’s degree in Computer Science, Information Technology, or a related field.
• Relevant certifications (e.g., CISSP, CEH, CCNP Security, Palo Alto PCNSA) are a plus but not mandatory.
• 7 to 12 years of experience in the designing, implementing, and managing of IT Infrastructure, Servers and Applications security according to industry standards such as ISO 27001, GDPR, or SOC 2.
• Expertise in one or more IT Security Engineering topics, such as Secure Browsing, PAM, PKI, or Multifactor Authentication.
• Proven ability to contribute to the development of architecture, concepts, and processes in IT security.
• Strong understanding of network protocols (TCP/IP, DNS, HTTP, etc.), firewalls, VPNs, intrusion detection / prevention systems (IDS/IPS), vulnerability management (CVE, CVSS, OWASP Top 10) and etc.
• Proficiency in firewall technologies (e.g., Fortinet, Palo Alto, Cisco ASA).
• Experience with vulnerability scanning tools and penetration testing.
• Experienced with cloud environments and cloud security principles. Knowledge in AWS/Azure cloud security tools and services.

Job Descriptions

• Maintain systems plus controls to protect unauthorized access, disclosure, modification and deletion of information through resources and computer networks.
• Support logs, categorizes, prioritizes, tracks, and routes:

1. Incidents reported by users or
2. Alarms raised by monitoring tools

• Interact directly with business technical specialist to guide on authentication, authorization and encryption solutions.
• Investigate known and suspected information security events and develop related reports.
• Conduct hardware and software security alerts as available.
• Resolve issues through responding IT threats and vulnerabilities.
• Conduct routine security risk analysis, evaluate business needs against collision, vulnerabilities and search resulting risks.
• Implement Change Request and Service Request.
• Perform patching on security equipment.
• To implement change request and service request.
• Apprised of the current state of computer security in place in the organization
• Technically proficient and up-to-date in basic computer security policies and practices
• Proactive in preventing Cyber-Security Incidenti.
• To perform technical security assessment for IT & Network components:

1. Vulnerability assessment,Penetration testing, Opportunistic Hacking, Web application security testing, Security source code review etc.
2. To monitor and track the identified vulnerability, issues and fix detected vulnerabilities to maintain a high-security standard.
3. Be familiar with browser, Web service, cloud security, mobile applications security, and operating system security conceptsiv. Understanding of leading vulnerability scoring standards and ability to translate vulnerability severity as security risk

• Perform forensic investigation if required
• Review all security logs.

Job Requirements

• Minimum 2 to 4 years IT relevant experience on security and 1-year experience in cyber security
• Preferably with Certifications such as CREST, OSCP and CISSP.
• With PenTest, Vulnerability Assessment & Risk Assessment experience
• Strong in technical skill
• Able to handle demanding service response and recovery turnaround
• Able to manage daily support tasks to meet stringent SLA requirements
• Excellent scheduling and multitasking skills
• Meticulous and process-oriented
• Good, hard-working attitude with ability to work well under pressure
• Good communication skills English (written, spoken)
• Good analytical skills with ability to work with others to resolve problems.
• Good organization skills, with ability to properly document and track information.
• Dynamic, customer oriented, experience working in a fast paced environment.
• Good Knowledge of following product will be advantageous:- Splunk, FireEye and Nessus Manage

Responsibilities:

• Integrating IT Infra and IT Application System to meet the project’s needs.
• Create detection use cases and fine tune detection rules to strengthen detection and reduce false positives.
• Identify and evaluate the risk to eliminate or mitigate risk in a computer system or network.
• Resolving technical problems as they arise.
• Inform System Manager about any problems with the current technical solutions being implemented.
• Support and coordinate, maintenance, patching, upgrade and troubleshooting of security systems.
• Assist in Cybersecurity project implementations to ensure that the application development team can deliver application solutions.

Skills and Qualifications

• At least Diploma in Computer Science, Software Engineering or equivalent with 3 years’ experience in Linux and/or Windows Server administration.
• Minimum 1 year Linux and/or Windows Server systems & security setup and deployment experience.
• Extensive knowledge and experience deploying with security product, eg: Tenable, Privilege Access Management, EDR, DAM, Endpoint Protection, etc.
• Experience deploying Critical IT infrastructure in Government Cloud Data Centre and/or on-prem setup.
• Experience in software engineering and system design architecture
• Knowledge and experience working with DevOps tools, Windows and VMWare.
• Strong knowledge of security, controls, privacy and compliance in the government services domain

Summary:

As a IT Security Engineer, you will provide IT security and vulnerability management support for a suite of business applications. You will support Corporate Business Systems, used by over 6,000 users to fulfill the agency’s mission to protect the nation’s Digital Way of Life and defend Singapore’s Critical Information Infrastructure (CII) to ensure the continuous delivery of essential services to all Singapore residents. You will be part of a 20+ person full-service application delivery team.

Job Description:

• Responsible for IT Security portfolio of a for large scale IT infrastructure implementation project. Develop, implement, integrate, administer, maintain, and enhance enterprise security services, technologies, and platforms. This includes, but is not limited to Vulnerabilities Assessment, Penetration Testing, Privileged Access Management, Dynamic Access Management, Identity Governance & Administration, Endpoint Detection and Response, and etc.
• Building of policies to enforce controls to meet business use cases
• Develop and communicate policies, procedures, standards, and controls to enhance the user experience, manage risk, and to ensure compliance with legal, regulatory, and contractual requirements;
• Develop automation scripts for patching or automating security administration, monitoring or reporting tasks using Perl, Python, etc
• Conduct tracking of patch management activities from initial reporting of vulnerabilities / availabilities of patches to successful remediation for servers and network routers/switches.
• Perform Daily Check/Schedule of weekly/monthly automated or ad-hoc MVMS vulnerability scan of Applications, Servers and Network routers/switches status. Troubleshooting and re-activation/re-scheduling of scanning if fail.
• Ongoing maintenance of Tenable MVMS asset inventory management for onboarding of new target systems and offboarding of existing targets systems to be scanned by MVMS.
• Perform signature update, Faults/Performance monitoring of the Nessus application.
• Test and update Endpoint Protection and EDR signatures. Extracting quarantined malware for reverse engineering. Creating and maintaining EDR blacklist.
• Conduct ad-hoc Malware IOC scan for servers upon emerging threat.
• Provide post go-live support i.e. maintain, troubleshoot, patch and update various security tools and scanners.
• Escalate issue to Principal Security Engineer for follow-up for severity 1, 2, 3 security vulnerabilities and configuration compliance.
• Conduct monthly/ad-hoc compliance audit scan for servers and routers/switches.
• Produce security reports and SOP documentation (Track vulnerabilities, produce security metrics reports, operating procedures, continuity documents and support Tactics, Techniques, Procedures updates).
• Present management reporting and dashboarding to stakeholders, with analysis of data and trends, and recommend next steps.

Requirements:

• At least Bachelor’s degree in Science or Engineering and 5 years’ relevant working experience in IT Security or Cyber Security, or equivalent experience; Working knowledge of several of the following areas is required: Understanding of business security practices and procedures; knowledge of current security tools available; hardware/software security implementation; different communication protocols; encryption techniques/tools; familiarity with commercial products, and current Cloud Technologies.
• At least one or two of the followings Professional and technical security certifications such as CEH, GIAC, CISSP, CISM, CCNA Security, GICSP, GSEC, SSCP and/or specific technology platform certifications e.g. CyberArk, Splunk, Carbon Black, Guardium, Imperva, SolarWinds and etc is preferred.
• Strong fundamental knowledge of SSH, TCP/IP, UDP, SSL, HTTP, HTTPS, PKI, DNS, and other common protocols.
• Familiar in at least any THREE (3) of the followings - Penetration Testing, Vulnerability Assessments, Compliance Scanning, Secure Code Review, DevOps/DevSecOps, cyber exercises, security awareness programmes.
• Familiarity with scripting for automating tasks using Perl, Python, etc.
• Hands on experience in operating and maintaining enterprise security tools such as Tenable Nessus vulnerability scanner.
• Experience with web application compliance scanning (BURP preferred).
• Familiarity with Privilege Access Management (PAM) tools such as BeyondTrust, SailPoint, ForgeRock, CyberArk, and etc. Familiarity with Dynamic Access Management (DAM) tools such as IBM Guardium, Imperva SecureSphere DAM and etc.
• 3+ years of hands-on experience in the PAM and DAM environment responsible for design, architecture, installation, and configuration of Base platform configuration, configuration of user onboarding and permission/role mapping, setup of folders and templates for various platforms, setup of Auto-Discovery functions, rules, and automation of account/secret placement, configuration of secret autorotation, check out/in, and JIT workflows, configuration of session proxying and recording, and migration of secrets from other platforms into the PAM & DAM solution.
• Advanced knowledge of security controls, audits, and configurations including Endpoint Detection and Response EDR tools such as VMware Carbon Black Endpoint, Crowdstrike Falcon and etc.
• Experience with Windows OS security setting/STIG reviews.
• Demonstrable experience with modern computing infrastructures such as AWS, Azure, GCP, OpenStack, etc. Familiarity with security testing on cloud environments is advantageous.