Security Engineer, InfoSecurity (1-year contract)

EDB - SG SINGAPORE, Singapore

Apply now Apply later

About Economic Development Board
EDB is the lead government agency responsible for planning & executing strategies to enhance Singapore's position as a global business centre and grow the Singapore Economy. We dream, design and deliver solutions that create value for investors and companies in Singapore. Through that, we attract economic opportunities and jobs for the people of Singapore and help shape our country's economic future.

What the role is

As part of the IT Info Security team, the Security engineer will support Cyber and Data security programs, IT security operations, IT compliance and risk management to protect the organization’s systems, business applications and data against cyber threats.

  • Focusing on Cyber and Data Security domain, you'll facilitate and support the assessments, implementation and operations of Cyber and Data security programs and initiatives.
  • IT security operations - you'll support the daily operations, incident response, security testing, vulnerability assessments, security monitoring, awareness and trainings, reporting, lead and participate in project initiatives to protect the organizations datasets and enhancement of security posture.
  • IT compliance and risk management - you'll support the facilitation of audits and risk assessments of IT systems. Ensuring security compliance, the management and maintaining of effective cyber and data security procedures.

What you will be working on

  • Support Cyber and Data Security programs, assessment, implementation, and operations.
  • Support security operations and leverage on existing and emerging methods to detect security intrusions or violations.
  • Support and maintain SOC centric engineering and technical solutions to address changing trend landscape and increasing demand for automation in cyber security monitoring and incident response.
  • Perform Incident Response to detect and report incidents. This includes the analysis of incidents’ root causes, and implementation of mitigation and/or prevention processes and policies.
  • Support the review of IT risk assessment and treatment techniques that can effectively identify, pre-empt, and mitigate significant security loopholes and weaknesses for system and technology to support business initiatives through in-depth analysis to identify and manage cybersecurity risks, threats, and vulnerabilities.
  • Support IT related audit & compliance assessments and provide recommendations to remediate issues discovered through the assessments.
  • Monitor and track cybersecurity risk mitigation.
  • Keep abreast of latest cybersecurity developments and practices and apply the necessary to the organisation.  

What we are looking for

To meet the challenges of this role, you must have/be:

  • Bachelor’s degree in Computer Science, Information Security or a related field preferred.
  • Over 3 years of experience in the Information Security field with hands-on experience in IT security project management.
  • Hands-on experience in implementing, managing and support of Cyber and Data security tools such as WAF (Imperva Incapsula), AWS native security tools (Guard duty, Security Hub etc), SIEM (Splunk), Vulnerability Assessment (Nessus) & Code Scan, Threat Hunting (Carbon Black EDR), DLP (MacAfee), IAM, AIP etc.
  • Understand components and services of both on-premises and commercial cloud environments, such as AWS, Azure, and GCP, including their native security tools and architectures for effective security monitoring.
  • Experience in supporting IT security incidents, security testing and security operation. 
  • Experience in supporting IT audit, risk assessments and recommend relevant appropriate mitigation controls for issues discovered through the assessments with documentation.
  • Experience in the development, review, and maintenance of IT Cyber and Data Security related SOPs and policies.
  • A cohesive, effective team player and communicator with positive and eager to learn attitude.
  • Problem solving skills, with strong analytical and able to work under pressure. 
  • Knowledge and ability to effectively leverage generative AI tools and technologies to enhance productivity, problem-solve, and innovate across various work tasks.
  • Certifications in CISSP, CISM, CISA, CCSP,CEH or GIAC would be advantageous. 
  • Singaporean.

We review applications and interview on a rolling basis. Applicants can expect to receive an application outcome within 8 weeks of application date.

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  1  1  0

Tags: Audits Automation AWS Azure Carbon Black CCSP CEH CISA CISM CISSP Cloud Compliance Computer Science EDR GCP Generative AI GIAC Government agency IAM Incident response Monitoring Nessus Risk assessment Risk management SIEM SOC Splunk Vulnerabilities

Perks/benefits: Career development

Region: Asia/Pacific
Country: Singapore

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.