IT Security Officer (Vulnerability Management)

About the Role

We are seeking an experienced IT Security Officer to support the organisation's cybersecurity and risk management initiatives. In this role, you will be responsible for monitoring, assessing, and coordinating the remediation of security vulnerabilities across IT systems and digital assets. You will work closely with technical teams and stakeholders to strengthen security posture and ensure timely risk mitigation.

Working Hours: Mon-Fri
Working Location: Central
Job Type: Contract
Salary Package: Up to $9,000 (basic) + AWS

Key Responsibilities

• Monitor and assess vulnerabilities identified through security monitoring and vulnerability management tools.

• Validate findings, analyse risk levels, and prioritise remediation activities based on business impact and exploitability.

• Collaborate with system owners and technical teams to coordinate and track remediation efforts.

• Manage vulnerability exceptions, risk acceptance processes, and remediation timelines.

• Prepare security reports, dashboards, and metrics for management and stakeholders.

• Identify trends, recurring issues, and opportunities to improve security controls and processes.

• Support the development and enhancement of cybersecurity policies, standards, and operational procedures.

• Contribute to continuous improvement initiatives relating to vulnerability management and exposure monitoring.

Requirements

• Degree in Computer Science, Information Security, Cybersecurity, or a related discipline.

• At least 3–5 years of experience in cybersecurity, vulnerability management, security operations, IT risk, or a related field.

• Strong understanding of vulnerability management, patch management, security risk assessment, and common security frameworks.

• Experience with vulnerability scanning and security assessment tools such as Tenable, Qualys, Rapid7, Censys, or equivalent.

• Familiarity with vulnerability scoring methodologies and risk prioritisation approaches.

• Knowledge of scripting or automation using Python, PowerShell, or similar technologies is an advantage.

• Strong analytical, problem-solving, and stakeholder management skills.

• Excellent communication skills with the ability to translate technical findings into actionable recommendations.

Preferred Certifications

Professional certifications such as CISSP, CISA, CRISC, OSCP, GWEB, Security+, or other relevant cybersecurity certifications will be advantageous.

By submitting your resume, you consent to the collection, use, and disclosure of your personal information per ScienTec’s Privacy Policy(scientecconsulting.com/privacy-policy).

This authorizes us to:

Contactyou about potential opportunities.

• Delete personal data as it is not required at this application stage.
• All applications will be processed with strict confidence. Only shortlistedcandidates will be contacted.

Elane YapTheng Yu- R1989397

ScienTecConsulting Pte Ltd - 11C5781