Enable job alerts via email!
Penetration Test & Vulnerability Assessment Specialist
Government Technology Agency
Singapore
On-site
SGD 60,000 - 80,000
Full time
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A public sector agency in Singapore is seeking a cybersecurity specialist skilled in penetration testing and vulnerability assessment. This role involves assessing cybersecurity for government initiatives, conducting tests on IT assets, and developing tools to enhance security. Candidates should hold a relevant degree and demonstrate a passion for cybersecurity. Additional certifications or practical experience in penetration testing will be a plus. The position offers opportunities for professional development in a collaborative environment.
Benefits
Qualifications
- Knowledge of web application, system, and infrastructure architecture required.
- Passionate about cybersecurity.
- Familiarity with scripting languages such as Python or Perl is a plus.
Responsibilities
- Conduct penetration testing and vulnerability assessments.
- Develop customized tools for penetration testing.
- Support stakeholders in remediating security risks.
Skills
Education
Tools
GovTech is the lead agency driving Singapore’s Smart Nation initiatives and public sector digital transformation. As the Centre of Excellence for Infocomm Technology and Smart Systems (ICT & SS), GovTech develops the Singapore Government’s capabilities in Data Science & Artificial Intelligence, Application Development, Smart City Technology, Digital Infrastructure, and Cybersecurity. At GovTech, we offer you a purposeful career to make lives better where we empower our people to master their craft through robust learning and development opportunities all year round. Play a part in Singapore’s vision to build a Smart Nation and embark on your meaningful journey to build tech for public good. Join us to advance our mission and shape your future with us today! Learn more about GovTech at tech.gov.sg.
Do you want to play a critical role in securing our smart nation initiatives by uncovering weaknesses in various domains of cybersecurity programs even before the real threat actors come to play? And are you up to race against the real threat actors before organisations are compromised?
We are seeking a cybersecurity specialist in penetration testing & vulnerability assessment to join our Cyber Security Group’s Red Team. You will be part of the team that helps to protect our government’s assets from cyber-attacks. In addition, you will also have the opportunities to be involved in assessing the cybersecurity aspects of new developments in our smart nation initiatives, and demonstrate ability to quickly assimilate to knowledge in new technologies. As part of this team, you will perform penetration testing and vulnerability assessment that span across infrastructure, web application, mobile application, source code security review, etc. This role will also involve you in carrying targeted Adversary Simulations.
- Conduct Penetration Testing (PT), Vulnerability Assessment (VA) and Source code security review on IT assets
- Support in the documentation offindings, analysis, report preparation and presentation
- Develop customised tools to conduct PT and VA
- Support stakeholders such as security engineers and developers in providing guidance to remediate security risks from security testing and assessments
- Support stakeholders such as security engineers and developers in providing guidance in design and security controls in application, infrastructure, network, etc.
- Develop Application Security related awareness programme/training/courses to uplift application security capabilities and competencies of GovTech officers
- Familiar with security principles, policies and industry best practices
- Degree in Information Security, Computer Science/Engineering, IT, or equivalent
- Passionate in cybersecurity
- Good understanding of web application, system and infrastructure architectureGood communication & presentation skills
- Collaborative and team player, self-motivated, creative and versatile
- Penetration testing-specific certifications such as GPEN, CREST, OSCP is an advantage
- At least 1-year hands-on experience performing PT/VA
- Familiar with scripting language, for example, Perl, Python, VBscript, Javascript or Powershell, Ruby
- Public disclosure of vulnerabilities or relevant awards/participations from Capture-The-Flags (CTF) competitions
- Experience using tools such as Nexpose/Nessus, BurpSuite, Metasploit, etc.
- Experience in security risk assessments on application, infrastructure, network, etc.
GovTech is an equal opportunity employer committed to fostering an inclusive workplace that values diverse voices and perspectives, as we believe that diversity is the foundation to innovation.
Our employee benefits are based on a total rewards approach, offering a holistic and market-competitive suite of perks. These include leave benefits to meet your work-life needs and employee wellness programmes. We champion flexible work arrangements (subject to your job role) and trust that you will manage your own time to deliver your best, wherever you are, and whatever works best for you.
Learn more about life inside GovTech at go.gov.sg/GovTechCareers.
Stay connected with us on social media at go.gov.sg/ConnectWithGovTech.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
