Security Engineer

TMGM Singapore is a dynamic and rapidly growing startup within the global financial services industry. As part of a global company, TMGM Singapore offers a fast-paced, innovative environment with opportunities for growth and development.

We’re seeking a talented Security Engineer to join our team and play a vital role in protecting our systems, infrastructure, and data. In this role, you’ll be at the forefront of monitoring, investigating, and responding to threats, while also driving initiatives that strengthen our security posture. If you’re passionate about security, love problem-solving, and thrive in fast-paced environments, we’d love to hear from you.

Security Operations & Monitoring

• Monitor security alerts, logs, and incidents via SIEM tools and EDR platforms.
• Investigate security events and lead incident response activities.
• Maintain threat detection and prevention systems, including IDS/IPS, firewalls, and Zero Trust solutions.

Identity & Access Management (IAM)

• Implement and maintain RBAC, MFA, and least privilege access policies.
• Support integration of applications with SSO and SCIM where applicable.

Vulnerability & Risk Management

• Conduct regular vulnerability assessments and penetration testing.
• Remediate identified risks in collaboration with IT and development teams.
• Ensure compliance with frameworks such as SOC 2, ISO 27001, and GDPR.

Cloud & Network Security

• Apply security best practices across AWS, Azure, and other cloud platforms.
• Assist in the secure configuration of office network infrastructure, VPN, and Zero Trust access.

Policy & Governance Support

• Contribute to security policies, standards, and technical guidelines.
• Participate in security awareness training and phishing simulation programmes.

Collaboration & Projects

• Work alongside IT Operations to deploy and maintain security tools.
• Provide security expertise in projects, change management, and system upgrades.

• Minimum 3–5 years in security engineering or a related role, with proven success in incident response and security operations.
• Familiarity with ISO 27001, SOC 2, NIST, and GDPR.
• Proficiency with SIEM tools (Splunk, Microsoft Sentinel, ELK) and EDR platforms.
• Strong understanding of IAM, network security, and endpoint protection.
• Hands-on experience with AWS, Azure, or GCP.
• Knowledge of vulnerability scanning, remediation tools, and penetration testing practices.
• Strong problem-solving and analytical skills, with the ability to perform under pressure during incidents.
• Clear communication and stakeholder engagement abilities.

• Competitive salary and performance-based bonuses.
• Opportunities for career growth and development within a global company.
• Collaborative and inclusive work environment with exposure to cross-region operations.
• Health and wellness benefits.