Security Engineer

Are you passionate about building great products? Do you want to redefine the way travellers explore the world? Keen to be part of this growth journey with a bunch of amazing people? Then Pelago is the place for you!
We are looking for ambitious and motivated talents who are excited about staying on the cutting edge of Technology and always keen on innovating new ways to drive growth and taking our startup to new heights.
WHO ARE WE? Pelago is a travel experiences platform created by Singapore Airlines Group. Think of us as a travel magazine that you can book - highly curated, visually inspiring, with the trust and quality of Singapore Airlines. We connect you with global, local cultures and ideas so you can expand your life.
We are a team of diverse, passionate, empowered, inclusive, authentic and open individuals who share the same values and strive towards a common goal!
WHAT CAN WE OFFER YOU?  - A unique opportunity to take end-to-end ownership of your workstream to deliver real value to users. - Platforms to solve real user problems concerning travel planning & booking with innovative products/services.- An amazing peer group to work with, and the ability to learn from the similarly great minds around you. - An opportunity to be an integral part of shaping the company’s growth and culture with a diverse, fun, and dynamic environment with teammates from different parts of the world.- Competitive compensation and benefits - including work flexibility, insurance, remote working and more!
WHAT WILL YOU BE DOING? As our Security Engineer, you will be responsible for building a robust, scalable, and proactive security program. You will work closely with engineering, operations, and leadership to secure our infrastructure, applications, and internal environments.
We’re seeking someone with strong hands-on expertise in SIEM, Security Policy development, Vulnerability Management, Security Operations (SOC), SAST/DAST testing, and Cloud Security.
WHAT EXPERTISE ARE MUST HAVES FOR THIS ROLE?- 5+ years of experience in cybersecurity, security engineering, or related roles, preferably in a cloud-native environment.- Solid understanding of networking, authentication, encryption, and access control principles.- Comfortable building programs from scratch with minimal direction.- Strong written and verbal communication skills — especially in documenting security practices and working with engineering teams.- Highly proactive, hands-on, and solutions-driven approach.
Good technical expertise in: - SIEM solutions (e.g., Splunk, Crowdstrike, Datadog, Sentinel)- Developing and operationalising security policies and standards.- Running vulnerability management programs.- SOC monitoring and incident response workflows.- Implementing and integrating SAST/DAST tools (e.g., Snyk, Veracode, Checkmarx, Burp Suite).- Securing cloud infrastructure (AWS) using native and third-party security tools.
WHAT EXPERTISE ARE GOOD TO HAVE FOR THIS ROLE?- Security certifications (e.g., CISSP, OSCP, AWS Certified Security Specialty).- Experience with DevSecOps practices and securing containerized applications.- Previous experience scaling security programs in a startup or hypergrowth environment.- Familiarity with regulatory frameworks like SOC 2 or ISO 27001If you’re as excited as we are in this journey, do apply directly with a copy of your full resume. We'll reach out to you as soon as we can!