Cybersecurity Engineer - Cloud Security (Cyber Operations & Technology)

Company description:

Synapxe is the national HealthTech agency inspiring tomorrow's health. The nexus of HealthTech, we connect people and systems to power a healthier Singapore.

Together with partners, we create intelligent technological solutions to improve the health of millions of people every day, everywhere. Reimagine the future of health together with us at www.synapxe.sg

The Security Lead Engineer will be part of Security Operations team providing KTLO support and maintenance of endpoint protection, vulnerability management, perimeter security, cybersecurity improvement projects, incidents, and audit exercises. Limited on-call availability including nights, weekends and public holidays may be needed on ad-hoc basis. The lead engineer will be expected to handle project security operations independently in collaboration with other teams and departments. Cybersecurity review of COTS software for the organization will also be part of the added responsibilities.

Monitor security systems

• Perform audits, reviews, and security control assessment of security operations based on company policy and in accordance to agreed schedules
• Perform security infrastructure health-checks and analyze trending of security patterns
• Harness native tools within the cloud provider space and analyze security event data to identify suspicious and malicious activity for further investigation and escalation
• Provide feedback and expert advice to project team on improving security posture of the supported project environments
• Document processes related to security monitoring
• Prepare and disseminate regular monthly reports to project stakeholders

Maintain security operations

• Conduct requirement analysis for the development / implementation of new systems and for enhancements to existing systems.
• Implement security controls and improvements for assigned projects
• Evaluate potential solutions and make recommendations to resolve business problems
• Create response procedures and document security processes and procedures
• Maintain security infrastructure systems (WAF, NGFW, Endpoint Protection, Cloud-native services, servers)
• Suggest and implement new security features as they become available to cloud platforms
• Schedule and execute security reviews with project stakeholders in accordance with internal security policies
• Maintain security posture of the project as a KTLO security engineer
• Support activities such as application deployments, technology refreshes and system patching
• Out-of-hours support will be required at certain times to support maintenance windows and off-hours activities (patching and upgrades)

Respond to security incidents

• Review security incident alerts based on type and severity for escalation and investigation
• Assist with establishing procedures for handling potential security incidents
• Provide status updates during the life cycle of an incident
• Support the maintenance and update of business recovery/contingency plans and/or procedures

Provide project support

• Respond to project team requests for technical assistance
• Set clear user expectations on cybersecurity issues
• Update users on changes in status during issue resolution
• Provide expert opinion to project stakeholders as a cybersecurity SME

Department and organization-level activities

• Point-of-contact for any queries or questions sent in by various stakeholders within the organization
• Support software review effort as an organization-wide responsibility

• At least 5 years' of experience in the Security Operations field
• Strong knowledge and experience in End User Computing, Server, Network and Cybersecurity
• Strong experience in supporting Windows, Linux, vulnerability scanning tools, firewalls, and WAF
• Strong experience in cloud-native security platforms and services from AWS or Azure
• Knowledge of patch management for OS and security products (Palo Alto, Fortinet, RedHat, Windows)
• Strong knowledge of endpoint protection (Symantec Endpoint Protection, Crowdstrike)
• Familiarity with vulnerability assessment tools and techniques (Tenable, Crowdstrike)
• Cybersecurity certification is a plus, including but not limited to (Fortinet, Palo Alto, CISSP, CCSP, ITIL)
• Strong Interpersonal and communication skills
• Familiarity with CI/CD principles, Devops, DevSecOps is a plus.
• Familiarity with CI/CD and automation tooling (Jenkins, Azure DevOps, Ansible, AWS Cloudformation) is a plus

NOTE: It only takes a few minutes to apply for a meaningful career in HealthTech - GO FOR IT!!

The Security Lead Engineer will be part of Security Operations team providing KTLO support and maintenance of endpoint protection, vulnerability management, perimeter security, cybersecurity improvement projects, incidents, and audit exercises. Limited on-call availability including nights, weekends and public holidays may be needed on ad-hoc basis. The lead engineer will be expected to handle project security operations independently in collaboration with other teams and departments. Cybersecurity review of COTS software for the organization will also be part of the added responsibilities.