Cybersecurity and Network Engineer (IT), A*STAR BII

The Cybersecurity and Network Engineer will be pivotal in identifying, evaluating, and sourcing new network and cybersecurity solutions. This role will then focus on overseeing the deployment of these solutions by external vendors, followed by their ongoing maintenance and operational management. You will ensure the secure and efficient functioning of our network infrastructure and systems, taking responsibility for proactive threat detection, incident response, vulnerability management, and ensuring compliance with security policies and industry best practices. A strong understanding of networking principles, cybersecurity frameworks, and a passion for staying ahead of emerging threats are essential.

Solution Sourcing and Strategy

• Research, evaluate, and recommend new cybersecurity and network solutions to enhance our security posture and network capabilities.
• Conduct market analysis to identify emerging technologies, vendors, and best practices relevant to our infrastructure and security needs.
• Develop business cases and justifications for new solution procurements.

• Manage and coordinate with external vendors throughout the lifecycle of solution deployment, from selection to post implementation review.
• Review and validate vendor provided designs, configurations, and implementation plans to ensure alignment with organizational security policies and network architecture standards.
• Oversee the successful integration of new solutions into the existing infrastructure.

• Perform ongoing maintenance, configuration, and optimization of network devices (routers, switches, firewalls, load balancers) and security systems (IDS/IPS, SIEM, EDR, antimalware, vulnerability scanners).
• Monitor network and system activity for suspicious behavior, security incidents, and unauthorized access, taking prompt action as needed.
• Conduct regular vulnerability assessments, penetration testing, and security audits to identify and address weaknesses post deployment.
• Develop and implement incident response plans, leading efforts to contain, eradicate, and recover from cyberattacks.
• Manage and maintain identity and access management (IAM) solutions.

• Develop, implement, and enforce cybersecurity policies, standards, and procedures.
• Ensure compliance with relevant industry regulations and frameworks (e.g., GDPR, HIPAA, ISO 27001).
• Conduct regular security awareness training for employees.

• Diagnose and resolve complex network and security issues efficiently.
• Perform regular system updates, patching, and configuration management for network and security devices.
• Maintain detailed documentation of network configurations, security policies, and incident response procedures.

• Collaborate with IT teams, developers, and other stakeholders to integrate security into all aspects of the infrastructure and software development lifecycle.
• Stay up to date with the latest cybersecurity threats, technologies, and best practices.

• Bachelor degree in Computer Science, Information Technology, Cybersecurity, Network Engineering, or a related field.
• Proven experience (3 to 5 years) in a cybersecurity and/or network engineering role, with a strong emphasis on solution sourcing, vendor management, and post deployment operational maintenance.
• Hands on experience with network devices (e.g., Cisco, Juniper, Fortinet, Palo Alto) and various security tools.
• Strong understanding of TCP/IP, routing protocols (BGP, ISIS, OSPF), VLANs, VPNs, and wireless technologies.
• Proficiency in configuring and managing firewalls, IDS/IPS, and other security appliances.
• Knowledge of common attack vectors, security vulnerabilities, and defensive strategies.
• Familiarity with scripting languages (e.g., Python, PowerShell) for automation and security tasks.
• Experience with operating systems (Windows, Linux, UNIX).
• Understanding of cryptography and secure communication protocols.
• Excellent analytical and problem solving skills.
• Strong communication and interpersonal skills, with the ability to explain complex technical concepts to non technical stakeholders, and effectively liaise with and manage external vendors.
• Ability to work independently and as part of a team in a fast paced environment.
• Detail oriented and highly organized.
• Proactive and eager to learn new technologies.

• CompTIA Security+
• CompTIA CySA+
• (ISC)² CISSP (Certified Information Systems Security Professional)
• Cisco CCNA, CCNP Security, or CCIE Security
• Certified Ethical Hacker (CEH)

The above eligibility criteria are not exhaustive. A*STAR may include additional selection criteria based on its prevailing recruitment policies. These policies may be amended from time to time without notice. We regret that only shortlisted candidates will be notified.