IT Security Engineer

Singaporean only

Role Overview

The IT Security Engineer will be responsible for implementing, operating, and supporting security controls for mission-critical systems within a secured environment.

This role covers both:

Day 1 Security (Build / Project Implementation)

Day 2 Security (Operations / Production Support)

The Security Engineer will work closely with Security Leads, Infra, System, and Software teams to ensure compliance with government security policies and standards.

Key Responsibilities

Day 1 – Project / Implementation Security

1. Security Implementation & Engineering

Implement security architecture and controls as designed by Security Leads/Architects

Support system, application, and infrastructure security configurations

Assist in threat modelling and risk assessment activities

Translate security requirements into technical implementation across platforms

2. Compliance Support

Support compliance with:

IM8 / Government security policies

Whole‑of‑Government (WOG) security requirements

PDPA (where applicable)

Assist in preparation and documentation for:

Security Risk Assessments (SRA)

Vulnerability Assessments (VA)

Penetration Testing (PT)

Maintain security documentation and evidence for audits

3. DevSecOps & Secure Development

Implement and maintain security tools in CI/CD pipelines:

SAST, DAST, SCA, container scanning

Monitor and triage findings, and work with developers on remediation

Support secure coding practices and DevSecOps adoption

Assist in API security, secrets management, and secure communications setup

4. Security Testing Support

Support coordination and execution of VA/PT activities

Track vulnerabilities and ensure timely remediation

Assist in documenting findings and closure evidence

Support system security certification and go-live requirements

5. System & Platform Hardening

Implement and maintain security hardening for:

Operating systems

Middleware and databases

Kubernetes and containers (RBAC, secrets, network policies)

Support configuration of:

API Gateways

WAF

Authentication and authorization mechanisms (OAuth2, mTLS)

Day 2 – Operations / Production Security

1. Incident Response

Support investigation, containment, and remediation of security incidents

Perform log analysis and assist in root cause analysis (RCA)

Work with SOC and internal teams during incidents

Follow and improve incident response playbooks

2. Vulnerability & Patch Management

Perform regular vulnerability scans and monitoring

Track and verify patching and remediation activities

Escalate high-risk vulnerabilities and propose mitigation controls

3. Security Monitoring

Monitor alerts from SIEM and security tools

Assist in tuning detection rules and dashboards

Ensure logging and monitoring coverage across systems

4. Audit & Compliance Support

Support audit preparation, evidence collection, and remediation tracking

Maintain security records and documentation

Assist in reporting security posture and issues

5. Access Control Administration

Support implementation of:

RBAC

MFA

Privileged Access Management (PAM)

Perform user access reviews and ensure least privilege

Required Qualifications & Experience

Mandatory

Degree in Computer Science / Cybersecurity / Information Security or equivalent

3–7 years of IT experience in cybersecurity or infrastructure security

Experience supporting security in projects or production environments

Familiarity with Singapore Government security policies (IM8 preferred)

Hands-on experience with:

Kubernetes / Docker security

IAM and access control

Security tools (SAST, DAST, SIEM, vulnerability scanners)

CI/CD and DevSecOps practices

Basic knowledge of network security, application security, and cloud security

Preferred Certifications

CEH, CompTIA Security+, or equivalent

Other certifications (e.g., CISSP Associate, GIAC, AWS/Azure Security) are advantageous

Key Competencies

Strong technical troubleshooting and problem-solving skills

Ability to follow security standards and implement controls effectively

Good communication skills with technical and non-technical teams

Detail-oriented with strong documentation skills

Collaborative team player with willingness to learn