Job Description - Cybersecurity Team Lead (Crowdsourced Vulnerability Discovery Programme) - Part-Time
About the Role
We are partnering with a leading public sector organisation to hire a Cybersecurity Team Lead to oversee the day-to-day operations of a Crowdsourced Vulnerability Discovery Programme (CVDP).
This is an exciting opportunity for an experienced cybersecurity professional to lead a team responsible for managing vulnerability reports submitted through coordinated vulnerability disclosure and bug bounty initiatives. You will play a critical role in validating vulnerabilities, driving operational excellence, improving triage processes, and collaborating with internal stakeholders, security researchers, and system owners to strengthen the security posture of critical government systems.
If you have a strong background in offensive security, vulnerability management, or bug bounty programmes and enjoy leading technical teams, this role offers an excellent opportunity to make a meaningful impact in national cybersecurity.
Key Responsibilities
Lead and manage a team of cybersecurity triage specialists, ensuring vulnerability reports are assessed accurately, efficiently, and within established service levels.
Oversee day-to-day triage operations, workload planning, resource allocation, quality assurance, and team performance.
Perform hands-on vulnerability validation, analysis, and triage during high-volume periods or when handling complex technical cases.
Serve as the technical escalation point for vulnerability validation, risk assessment, severity classification, and remediation recommendations.
Mentor, coach, and develop junior team members by providing technical guidance and promoting best practices in vulnerability analysis and documentation.
Review, enhance, and maintain standard operating procedures (SOPs), workflows, triage processes, and supporting operational tools.
Develop automation scripts and workflow enhancements using technologies such as Python and workflow automation tools to improve operational efficiency and reporting.
Collaborate with government agencies, application owners, infrastructure teams, and external security researchers to coordinate vulnerability verification, remediation, and responsible disclosure activities.
Analyse vulnerability trends, identify recurring security issues, and prepare technical reports, dashboards, presentations, and management updates.
Support continuous improvement initiatives and undertake additional responsibilities to achieve programme objectives.
Requirements
Essential Skills & Experience
Degree in Cybersecurity, Computer Science, Information Technology, or a related technical discipline.
Strong experience in cybersecurity operations, vulnerability management, penetration testing, bug bounty programmes, or vulnerability disclosure initiatives.
Demonstrated experience leading or mentoring technical teams.
Strong understanding of vulnerability assessment, validation, severity classification, and security risk analysis.
Hands-on experience analysing web application, infrastructure, or network security vulnerabilities.
Experience developing automation scripts using Python or similar scripting languages.
Excellent analytical, troubleshooting, and problem-solving skills.
Strong written and verbal communication skills with the ability to communicate technical concepts to both technical and non-technical stakeholders.
Proven stakeholder management skills with the ability to collaborate across multiple teams and organisations.
Preferred Skills
Experience working with Bug Bounty Programmes (BBP), Vulnerability Disclosure Programmes (VDP), Vulnerability Rewards Programmes (VRP), or similar coordinated vulnerability disclosure initiatives.
Experience supporting government agencies, financial institutions, or other highly regulated environments.
Familiarity with vulnerability management platforms, workflow automation tools, and ticketing systems.
Experience presenting technical findings to senior management and stakeholders.
Knowledge of secure software development practices, common attack vectors, and industry security frameworks.
Experience driving process improvements, workflow optimisation, and operational automation.
Certifications
The following certification is required:
Offensive Security Certified Professional (OSCP)
Additional cybersecurity certifications such as CISSP, CEH, GPEN, GCIH, GWAPT, or equivalent will be advantageous.
All information will be kept strictly confidential. Only shortlisted candidates will be contacted.
Talent Pulse was founded on a simple but often overlooked truth: successful hiring does not end at placement—it begins with fit.In today’s complex and fast-moving organisations, hiring leaders based solely on credentials or experience is no longer enough. Misalignment in expectations, team dynamics,...
All Job Ads are subject to GrabJobs’s Terms of Service. We allow users to flag postings that may be in violation of those terms. Job Ads may also be flagged by GrabJobs moderation team. However, no moderation system is perfect, and flagging a posting does not ensure that it will be removed.
Be the first to receive the latest Back End Developer Part-Time Jobs in Singapore.
Setup your job alert:
By activating job alerts, I agree to GrabJobs Terms & Privacy Policy. I can unsubscribe to job alerts anytime.
Skip
GrabJobs is the no1 job portal in Singapore, connecting you to thousands of jobs fast!
Find the best jobs in Singapore, apply in 1 click and get a job today!