Security Manager (2 years Contract)

We are seeking an experienced Security Engineer/Manager to strengthen the security of our enterprise systems, applications, and cloud platforms. In this position, you will lead efforts in security architecture reviews, threat modelling, risk assessments, and the review and analysis of vulnerability assessment and penetration testing reports, with a strong focus on cloud security across SaaS, PaaS, and IaaS environments. This role requires a blend of technical expertise, the ability to interpret and validate security testing outcomes, and strong collaboration skills to work with stakeholders in designing and implementing secure solutions.

• Perform security architecture reviews for on-premises, cloud (SaaS, PaaS, IaaS), and hybrid environments.
• Lead threat modelling exercises to proactively identify risks in system designs and application workflows.
• Conduct risk assessments and provide actionable recommendations aligned with business priorities and compliance standards.
• Support vulnerability assessments and penetration testing on web apps, APIs, networks, and cloud services.
• Partner with engineering and DevOps teams to design and implement secure cloud configurations (e.g., AWS, Azure, GCP).
• Establish and maintain security baselines for SaaS platforms and third-party integrations.
• Collaborate with stakeholders to ensure alignment with frameworks such as NIST CSF, ISO 27001, OWASP, and CIS Benchmarks.
• Support incident response investigations and post-incident remediation.
• Continuously monitor emerging security threats, vulnerabilities, and best practices in cloud security.

• Bachelor’s degree in computer science, cybersecurity, or a related discipline (or equivalent experience).
• 3–5+ years of experience in security engineering, threat modelling, or cloud security.
• Strong expertise in SaaS, PaaS, and IaaS security models, including shared responsibility frameworks.
• Proven ability to review and interpret penetration testing and vulnerability assessment reports, with familiarity in common tools (e.g., Burp Suite, Metasploit, Nessus, Nmap) and vulnerability management platforms.
• Familiarity with DevSecOps practices, CI/CD pipelines, and infrastructure-as-code (e.g., Terraform, CloudFormation).
• Experience in hardening and securing workloads on AWS, Azure, or GCP.
• Industry certifications preferred but not mandatory (e.g., OSCP, CISSP, CCSK, CCSP, CEH, GIAC).
• Excellent communication and problem-solving skills, with the ability to translate technical findings into business impact.
• Familiarity with implementing cryptographic solutions aligned with industry standards such as NIST, ISO/IEC, and FIPS 140-3.

• A dynamic and inclusive working environment committed to innovation and continuous improvement.
• Opportunities for professional development and career progression within a global engineering leader.
• Access to cutting-edge tools and technologies to support your work.
• A collaborative culture that values diverse perspectives and encourages creativity and initiative.

ST Engineering IHQ Pte. Ltd. is dedicated to providing equal employment opportunities and creating a workforce that reflects a variety of backgrounds, perspectives, and experiences. We warmly welcome applicants from all walks of life and are committed to cultivating an inclusive environment for all team members.

If you are passionate about information security and ready to take on a leadership role within a forward-thinking, globally respected organisation, we encourage you to apply for the Manager, GISO position at ST Engineering Hub.