Cyber Security Engineer (Singapore) - Onsite

Key Responsibilities:

1. Design & Implement Security Solutions: Architect and deploy secure systems, networks, and infrastructure that align with business needs and compliance requirements.
2. Vulnerability & Threat Management: Lead efforts to detect, analyze, and remediate vulnerabilities across systems and applications.
3. Incident Response: Serve as a technical lead during security incidents, providing forensic analysis and remediation guidance.
4. Security Architecture & Engineering: Develop and maintain secure design principles and standards for IT infrastructure and application development. Independently resolve design and functionality challenges with minimal guidance. Operate autonomously with minimal supervision and act as a subject matter expert (SME) for the tools/products.
5. Tooling & Automation: Implement and manage security tools (SIEM, IDS/IPS, endpoint protection, etc.) and automate routine tasks for efficiency.
6. Compliance & Audit Support: Support internal and external audits by ensuring systems meet regulatory and policy requirements (e.g., ISO 27001, SOC2, NIST). Possess a minimum of 2 years of hands-on experience with two or more cybersecurity tools/areas such as EDR, XDR, MDR, Vulnerability Management, PAM, AM, DLP, SIEM, UEBA, WAAP, DDOS, WAF, IDS, and IPS.
7. Mentorship & Collaboration: Guide junior team members and work closely with DevOps, IT, and development teams to embed security into the SDLC. Aid in the implementation and coordination with other stakeholders within the organization.
8. Security Monitoring & Analytics: Enhance detection capabilities and improve visibility through log analysis, threat hunting, and continuous monitoring.
9. Security Engineering Support: Assist with installation, upgrading, patching, and maintenance of security tools. Support evaluation and proof of concept (POC) of security products/tools.
10. Security Policy and Protocols: Develop and implement security policies and protocols for tools. Serve as SME for several security products/tools.
11. Installation Support: Install, upgrade, patch, migrate, and maintain security products on various platforms including Windows, Linux, or Containers.

Required Qualifications:

• Bachelor's or Master's degree in Computer Science, Information Security, or related field.
• 4-10 years of experience in cybersecurity or information security roles, focusing on engineering.
• Strong understanding of network security, encryption, firewalls, proxies, IDS/IPS, VPNs, and endpoint security.
• Proficiency with cloud platforms (AWS, Azure, GCP) and securing cloud-native environments.
• Experience with scripting or programming (Python, Bash, PowerShell, etc.).
• Familiarity with security standards and frameworks (e.g., NIST, MITRE ATT&CK, ISO 27001).
• Excellent problem-solving, communication, and documentation skills.

Preferred Certifications:

• CISSP, OSCP, GIAC (GSEC, GCIH, GPEN), or similar
• AWS/Azure/GCP Security Specialty Certification
• CEH, CISM, or CRISC