Job Summary

The ideal candidate will be responsible for the implementation and maintenance of company’s systems from security perspective to detect and protect from potential cyber threats. This is a great opportunity for someone passionate about preventing data breaches, malware infections, and other cybersecurity incidents to make a significant impact.

 

Responsibilities

·       Conduct vulnerability assessments and penetration testing (VAPT) to identify and remediate security weaknesses in the systems and applications.

·       Primary contact for security alert monitoring and analyse network traffic for suspicious activity, including potential intrusions and unauthorized access attempts.

·       Design, implement and maintain security controls for AWS cloud environment, including IAM, S3, EC2 and other relevant services.

·       Collaborate with the Enterprise IT team to ensure secure configurations for containerized applications and serverless functions on AWS.

·       Automate security tasks and leverage AWS security best practices (AWS Well-Architected Framework) based on Security by Design approach.

·       Implement and maintain endpoint security solutions, including Antivirus/ Malware Protection, Vulnerability Management, Endpoint Detection and Response (EDR), and Data Loss Prevention (DLP).

·       Develop, maintain, and implement security policies and procedures to ensure compliance with industry regulations and best practices.

·       Investigate and respond to security incidents, including data breaches and malware infections.

·       Work collaboratively with IT and development teams to integrate and maintain security considerations into the software development lifecycle (SDLC) in AWS cloud environment.

·       Provide security awareness training to employees to promote safe computing practices.

·       Stay informed about critical security threats and implement mitigation strategies for container escapes and serverless injection vulnerabilities.

·       Stay up to date on the latest cyber threats and vulnerabilities relevant to the company’s technology environment.

 

Qualifications

·       Bachelor's degree in Computer Science, Information Security, or a related field (preferred).

·       Minimum of 5 years of experience in cyber security, with a focus on operations (network security, vulnerability management, etc.), governance & compliance.

·       Professional security certification (CISSP, CEH, CRISC, etc.) is strongly recommended.

·       Strong understanding of cloud security principles, threats, and vulnerabilities specific to AWS environments.

·       Experience with regulatory and data protection laws within Singapore.

·       Strong leadership skills with experience with cross-functional global teams and working with senior stakeholders.

·       Experience with security tools and technologies relevant to AWS, including implementing IAM roles, S3 bucket policies, and AWS security groups.

·       Experience with cloud-native security tools like SAST and DAST.

·       Experience with container technologies (Docker, Kubernetes) and serverless frameworks (AWS Lambda).

·       Excellent analytical and problem-solving skills.

·       Strong communication and interpersonal skills.

·       Ability to work independently and as part of a team.

Due to our limited capacity, we regret that only shortlisted candidates will be notified.