*GOV* IT Security Specialist

• Working Hours: Mon-Fri (Hybrid)
• Location: Central
• Remuneration: Up to $11,000 + AWS

We are seeking an IT Security Specialist to provide cybersecurity support across on-premises and cloud environments. The role focuses on system security, monitoring, compliance, risk assessment, and governance to ensure the protection and resilience of IT systems.

• Perform system security reviews, hardening checks, and risk assessments based on recognised benchmarks (e.g. CIS Benchmarks).
• Develop, review, and maintain system hardening baselines, standards, and Standard Operating Procedures (SOPs).
• Conduct periodic compliance reviews and follow up on remediation of identified security gaps.
• Monitor and respond to security alerts including phishing attempts, malware detections, and endpoint security incidents.
• Support vulnerability assessments, penetration testing activities, and audit engagements, including responding to audit RFIs.
• Review Cloud Security Posture Management (CSPM) findings across cloud and hybrid environments and assess alert validity.
• Track remediation progress, ensure timely follow-up, and elevate unresolved security issues where necessary.
• Provide security recommendations and risk-based assessments to system owners and infrastructure teams.
• Advise on security controls for new systems, projects, and enhancements.
• Manage governance and compliance tools, including updating remediation status and approved exceptions.
• Prepare periodic security reports highlighting risks, outstanding issues, and overall security posture.
• Support security awareness initiatives and user briefings to strengthen organisational security practices.

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum 4 years of relevant IT security experience, including exposure to cloud and on-premises environments.
• Experience in security assessment, vulnerability management, and security monitoring.
• Familiarity with CSPM, SIEM/log analytics, and endpoint security tools.
• Possession of at least one recognised security certification (e.g. CISSP, CISM, CRISC, CISA) is preferred.
• Good communication skills in spoken and written English.

By submitting your resume, you consent to the collection, use, and disclosure of your personal information per ScienTec’s Privacy Policy (scientecconsulting.com/privacy-policy).

This authorizes us to:

Contact you about potential opportunities.

Delete personal data as it is not required at this application stage.

All applications will be processed with strict confidence. Only shortlisted candidates will be contacted.

Aloysius Tan Sheng Rong - R22110441
ScienTec Consulting Pte Ltd - 11C5781