Cybersecurity Engineer - IT Security Operations

Assurity Trusted Solutions (ATS), a subsidiary of the Government Technology Agency (GovTech), has been a reliable partner for over a decade, providing a comprehensive array of products and services. Our offerings include infrastructure and operational services, governance and assurance services, and managed processes. In the ever-evolving digital and cybersecurity landscape, where trust and collaboration are paramount, ATS is dedicated to achieving mutually beneficial outcomes by working closely with GovTech, various governmental agencies, and commercial partners to reduce cyber risks and enhance security measures.We invite skilled professionals to join our team as Cybersecurity Engineers, specifically those with a solid foundation in Security Operations (SecOps). Successful candidates will be employed under a direct contract until November 30, 2028.Key Responsibilities:Develop and uphold cybersecurity standards, procedures, configurations, and rules for systems and services as part of our dedicated team.Conduct security exercises, including table-top and simulation drills, to validate security procedures.Engage in security incident response, analyzing alerts, coordinating with system operators, identifying threats, and performing initial triaging before escalating to senior security responders.Coordinate Indicators-Of-Compromise (IOC) scanning and compile reports from various system operators to provide consolidated updates to stakeholders.Conduct vulnerability assessments using both automated and manual tools, and recommend actionable remediation strategies. Understand published vulnerabilities and their corresponding security patches in relation to deployed systems, and perform risk assessments.Monitor and communicate security patch releases for various products, and participate in security patch assessments using standards like the Common Vulnerability Scoring System (CVSS), contextualized within the deployed environment.Present findings and reports to stakeholders regarding vulnerability scans, security testing outcomes, security incidents, and the overall security posture of systems.

About the CompanyJoin a leading multinational information technology firm headquartered in Singapore, recognized as the largest Systems Integrator in the country.Project Overview:Be part of a dynamic team within the Cybersecurity Operations Command Centre, dedicated to providing critical 24/7 threat monitoring, prevention, analysis, and intelligence services to esteemed clients.Key Responsibilities:Deliver 24/7 Level 1 network monitoring support following established Standard Operating Procedures (SOP) and IT Service Operations training.Engage in rotational 12-hour shifts (8 AM to 8 PM, 8 PM to 8 AM), including necessary public holidays.Perform daily, weekly, and scheduled checks using automated tools to initiate vulnerability scans and assess the status of network routers and switches according to SOP.Diagnose issues on failure, reactivate and reschedule scans as needed.Escalate security vulnerabilities beyond Level 1 to Security Engineers for further action.Monitor patch management activities daily and report on vulnerabilities and patch availability for successful remediation.Utilize available tools to track and escalate outstanding vulnerabilities to relevant stakeholders and the internal security team for remediation.Maintain an updated asset inventory for onboarding new systems and decommissioning existing ones for scanning.Conduct monthly and ad-hoc compliance audits for servers and routers/switches.Escalate security compliance-related issues identified during audits to Security Engineers.Execute ad-hoc scans of servers upon detection of emerging threats.

Assurity Trusted Solutions is hiring a Cybersecurity Operations Specialist to help protect Singpass and related digital services. This position centers on improving security measures and responding to potential threats in a collaborative setting. Role overview The Cybersecurity Operations Specialist monitors systems for suspicious activity, detects possible threats, and responds promptly to incidents. The role also involves ensuring that all activities align with security policies and comply with industry standards. Key responsibilities Monitor digital services, with a focus on Singpass, for cybersecurity threats and incidents Detect and respond to security events to minimize risk Work with teams across the organization to identify vulnerabilities Support the implementation of protection strategies and controls Maintain compliance with established security policies and relevant industry standards Collaboration This role works closely with cross-functional teams to strengthen the security posture of Singpass and other digital platforms. Teamwork and clear communication are essential for identifying risks and deploying effective solutions.

Join our dynamic team at xcellink as a Mid-Level Cybersecurity Engineer. In this pivotal role, you will utilize your technical skills to protect critical information systems and facilitate secure operations across our organization.Key ResponsibilitiesConduct security assessments and penetration testing to identify vulnerabilities and develop threat models.Implement and automate security tools within CI/CD pipelines to enhance security measures.Respond to security incidents and provide education on secure coding practices to developers, ensuring adherence to security standards and regulations.Collaborate with IT and other departments to promote and implement security best practices.Stay informed about emerging cybersecurity trends, threats, and technologies.Monitor security systems and assist in incident response efforts.Evaluate current cybersecurity protocols and propose improvements to strengthen security posture.Document findings, procedures, and recommendations comprehensively.Mentor and guide junior cybersecurity engineers within the team.

Join Assurity Trusted Solutions (ATS), a subsidiary of the Government Technology Agency (GovTech), as we lead in the ever-evolving landscape of cybersecurity. With a decade of experience, we offer an extensive range of products and services, including infrastructure and operational services, authentication, governance, and assurance services, all aimed at fostering trust and collaboration in the digital world.We are seeking a Senior Cybersecurity Engineer specializing in Architecture and Solutioning. The ideal candidate will be well-versed in Network Security or Device/Endpoint Management and will be engaged in a contract capacity.Key Responsibilities: Act as the subject matter expert (SME) in Cybersecurity. Conduct thorough Threat Risk Assessments across applications, cloud infrastructure, and enterprise systems. Utilize structured methodologies (e.g., STRIDE) for Threat Modelling, integrating MITRE ATT&CK effectively. Lead and collaborate with multi-disciplinary teams to implement cyber security controls across various environments, including cloud and on-premises. Provide insights for configuring and improving security detection and response tools (e.g., SIEM, VA, NDR, XDR, EDR) for enhanced operational efficiency. Evaluate new technologies and validate their security through lab setups and proofs of concept (PoC). Draft and specify technical security clauses for project tenders. Analyze, document, and present security findings and recommendations to stakeholders. Work with governmental bodies to define security requirements and collaborate with industry partners to implement functional capabilities. Ensure compliance with secure software development lifecycle practices, maintaining high coding standards and delivering quality products. Qualifications: Minimum of 5 years of experience in the cybersecurity domain. Proven experience in managing, deploying, and maintaining security infrastructure. Ability to manage contractors and collaborate effectively with cross-functional teams. Experience in conducting comprehensive security assessments, including threat modelling, vulnerability assessments, and penetration testing. Up-to-date knowledge of cybersecurity tools, technologies, and standards (e.g., OWASP and MITRE ATT&CK). Strong communication and interpersonal skills. Self-motivated with logical and analytical thinking abilities.

Assurity Trusted Solutions (ATS), a proud subsidiary of the Government Technology Agency (GovTech), has established itself as a leading provider of comprehensive cybersecurity solutions over the last decade. We deliver a wide array of services that include infrastructure management, operational support, authentication services, governance, and assurance. In an ever-evolving digital landscape, where trust and collaboration are paramount, ATS collaborates closely with GovTech, various government agencies, and private sector partners to effectively mitigate cyber risks and enhance security frameworks. As an Offensive Cybersecurity Engineer, you will be pivotal in executing collaborative security testing engagements, and you may also undertake independent projects that focus on security assessments. Job Summary:Conduct thorough Vulnerability Assessment and Penetration Testing (VAPT) across various systems, networks, and applications, catering to both small-to-medium enterprises (SME) and large-scale enterprise environments.Perform detailed source code and host configuration reviews to ensure compliance with industry best practices and security standards.Generate detailed technical documentation that outlines identified vulnerabilities, impact assessments, risk evaluations, and actionable remediation strategies.Stay updated on the latest threat landscapes, emerging vulnerabilities, and industry trends to continually enhance the organization’s VAPT capabilities.Provide expert cybersecurity consultancy, offering strategic recommendations to improve customers’ overall security posture.Assist in the development of technical methodologies and standards to uphold excellence within the VAPT delivery teams.

Role Overview ncs3 is hiring a Security Engineer in Singapore. This role focuses on protecting digital assets and maintaining the integrity of company systems. The Security Engineer works with teams across the organization to build and maintain security measures. Main Responsibilities Design and implement security controls for systems and infrastructure Conduct risk assessments to identify and address vulnerabilities Respond to security incidents and support investigations Collaborate with other teams to improve security practices Promote security awareness throughout the organization About the Team The Security Engineer will join a group focused on strengthening defenses and building a culture of security awareness at ncs3.

Join our team as a Network and Security Engineer where you will play a pivotal role in safeguarding our network infrastructure. You will be responsible for designing, implementing, and maintaining security measures to protect sensitive data and ensure the integrity of our network systems. Collaborate with cross-functional teams to develop and enforce security policies, conduct risk assessments, and respond to security incidents.

Sopra Steria is seeking a Senior Cybersecurity Operations Specialist based in Singapore. This position plays a key role in defending company systems and data from a range of cyber threats. Collaboration with various teams across the organization is central to the work, as is the ongoing development and oversight of security frameworks that protect digital assets. What you will do Take the lead in securing systems and sensitive data from both emerging and established cyber risks Partner with cross-functional teams to design, implement, and maintain security frameworks Guide the development and enhancement of incident response strategies Contribute to projects and initiatives that reinforce the company’s security posture Role overview This role centers on proactive protection and continuous improvement. The Senior Cybersecurity Operations Specialist will help shape and enforce security practices, ensuring that Sopra Steria remains resilient in the face of evolving cyber challenges.

Join Assurity Trusted Solutions (ATS), a proud subsidiary of the Government Technology Agency (GovTech), where we have been a trusted partner for over a decade. Our mission is to provide an extensive range of products and services, including infrastructure and operational services, authentication services, as well as governance and assurance services. In a rapidly evolving digital landscape, we are committed to fostering trust and collaboration with GovTech, government agencies, and commercial partners to effectively mitigate cyber risks and enhance security postures.We are seeking a passionate and experienced Senior Cybersecurity Engineer, specializing in Endpoint Protection and Endpoint Detection and Response, to join our dynamic team!Your Key Responsibilities: Lead the implementation of enterprise security infrastructures, focusing on Endpoint Protection (EPP) and Endpoint Detection and Response (EDR), which includes contractor management, design validation, and test acceptance. Develop and maintain comprehensive security policies for EPP and EDR to monitor compliance and detect potential security threats. Engage with stakeholders to translate business, technology, and security requirements into actionable roadmaps for EPP/EDR enhancements and rollouts. Oversee ongoing maintenance of enterprise security infrastructures to ensure service and security posture reliability. Provide consultancy for threat and risk assessments throughout the system lifecycle, from implementation through to maintenance. Establish and maintain disaster recovery procedures, and conduct security breach drills. Assist in managing security incidents, focusing on containment and recovery processes. Plan and participate in security operations to ensure adherence to defined information security policies and standards, while adapting to evolving security threats.

Team: Information SecurityPosition Overview:Join Squarepoint Capital as a Senior Information Security Engineer, where you will leverage your expertise to enhance our security posture. In this critical role, you will provide expert guidance and implement improvements across essential domains including network, cloud, data, and system security. You will serve as the escalation point for Security Operations, effectively analyzing and resolving complex security issues. Key responsibilities include overseeing security for vital IT projects, leading threat modeling for intricate systems, auditing for security vulnerabilities, and developing automated capabilities to continuously assess the effectiveness and resilience of our controls. This role presents a unique opportunity to spearhead security initiatives and influence our security roadmap. A high degree of self-motivation and proactivity is essential for success in this position.Enhance security measures across core areas such as network and system security, email security, cloud security, and data protection.Act as a security advisor for IT projects, ensuring compliance with security requirements and risk mitigation.Manage and optimize security tools, ensuring effective deployment and maintenance.Lead the design and development of security solutions and architectures protecting critical assets.Provide second-line support to Security Operations.Conduct threat modeling and risk assessments to identify vulnerabilities and execute proactive mitigation strategies.Oversee relationships with the Managed Detection and Response (MDR) provider, ensuring service efficiency and continuous enhancement.Implement initiatives from the security roadmap, aligning with business goals and emerging threats.Collaborate with cross-functional teams to elevate security awareness and integrate security into business processes.

Job Summary: Join us as a Trend Micro Engineer, where you will be instrumental in enhancing our IT security framework and operational efficiency. Your expertise will focus on utilizing the comprehensive suite of Trend Micro products, including Apex One, IMSVA, IWSVA, Server Protect, Email Security, and Cloud App Security, while integrating them with Microsoft Deployment Toolkit (MDT). By leveraging Trend Micro DDAN, Control Manager, and Apex Central, you will ensure robust threat intelligence and centralized management, thereby guaranteeing the secure, reliable, and optimized performance of our clients' IT infrastructure post-implementation.Key Responsibilities:Product Expertise and Deployment:Serve as the resident expert on Trend Micro and MDT products.Deploy, configure, and manage Trend Micro solutions to enhance IT operations.Continuous Monitoring and Maintenance:Utilize Control Manager and Apex Central for ongoing operational monitoring.Conduct routine maintenance, updates, and patches to address vulnerabilities.Incident Response and Problem Solving:Lead responses to cybersecurity threats and technical challenges using Trend Micro DDAN.Deliver immediate resolutions to minimize disruptions and boost operational efficiency.Security Policies and Compliance Management:Devise and implement stringent security protocols across all IT systems.Ensure compliance with regulatory standards and internal policies, using Trend Micro solutions for data protection and threat prevention.Reporting and Data Analysis:Create detailed reports on security incidents, system performance, and compliance status.Provide actionable insights and recommendations to optimize systems and mitigate risks.Collaboration and Training:Work closely with IT teams and various departments to promote secure and efficient operations.Facilitate training sessions on Trend Micro product functionalities, cybersecurity best practices, and effective system utilization.

Assurity Trusted Solutions (ATS), a wholly owned subsidiary of the Government Technology Agency (GovTech), is committed to being a trusted partner in enhancing digital security. Over the past decade, ATS has provided a comprehensive array of products and services including infrastructure and operational services, authentication services, governance and assurance services, and managed processes. In an ever-evolving digital and cyber landscape, ATS emphasizes trust and collaboration, working alongside GovTech, government agencies, and commercial partners to effectively mitigate cyber risks and strengthen security measures.As an integral part of the application security core competency within the Development & Innovation for Technology ProducTisation & Operations (DITTO) department, you will play a pivotal role in shaping the application security landscape of our organization.Your responsibilities will encompass providing expert consultancy and support to application teams in areas such as security assessments, DevSecOps practices, and security training and awareness initiatives, aimed at elevating the application security competency and standards within our organization.Key Responsibilities: Design and implement the application security roadmap to enhance security practices across the organization. Establish secure application development practices, standards, and guidelines, fostering a culture of security within application teams. Oversee application security processes and maintain an automated source code scanning platform. Conduct secure code quality reviews and perform application penetration testing and vulnerability assessments. Assist with various application testing and delivery methodologies, including CI/CD. Educate and empower developers on secure coding practices across multiple programming platforms such as Java, C#, PHP, etc., and guide them in writing security acceptance criteria in user stories. Train application teams to develop security unit tests and carry out secure coding assessments. Collaborate with the DevOps team to enhance security within the CI/CD pipeline. Qualifications: A minimum of 3-5 years of combined experience in software development, application security, and cloud computing (e.g., Azure, AWS). Proficient in conducting manual secure source code reviews across at least one of the following programming platforms: Java, PHP, JavaScript, C#, Android, or iOS, utilizing both waterfall and Agile methodologies. Experience in threat modeling, with the ability to create threat profiles for application projects to identify, assess, and mitigate application security risks. Familiarity with mobile and web application programming interfaces (API) architecture, including REST, SOAP, SSL/TLS. Knowledge of industry security best practices such as OWASP Top 10 and OWASP Application Security Verification Standard. Experience with using SAST tools for secure code analysis.

Assurity Trusted Solutions (ATS), a subsidiary of the Government Technology Agency (GovTech), has been a reputable partner in the cybersecurity domain for over a decade. We provide an extensive range of services including infrastructure management, operational services, governance, assurance, and managed processes. In an ever-evolving digital landscape where trust and collaboration are paramount, ATS is committed to fostering secure environments through partnerships with GovTech, government agencies, and commercial stakeholders, effectively mitigating cyber risks and enhancing security frameworks.Key Responsibilities:GRC Leadership & Second Line of DefenceLead the governance of risk and compliance (GRC) within our team, shaping our approach to managing risks across various products and platforms.Function as the second line of defence for ICT risk and controls, providing an independent review of risk management, control design, and their effectiveness.Collaborate closely with the Product team to incorporate practical security measures and compliance protocols into daily operations.Security Plan Governance and AutomationOversee the governance and standards for Security Plan submissions across CIOO and product teams, ensuring templates, minimum evidence expectations, and quality benchmarks are maintained.Evaluate Security Plans and supporting documentation, assess control coverage and implementation maturity, and recommend approvals to stakeholders.Implement automation as an ongoing audit mechanism:Work with product and platform teams to establish automated checks for Security Plan evidence.Utilize automated checks to identify gaps, anomalies, and missing evidence, driving remediation efforts with product teams.Monitor and report on KPIs related to Security Plans, including control coverage, consistency, cycle times, and defect rates across CIOO and product teams.ICT Audit and Evidence ManagementDevelop, implement, and manage workflows for ICT audit, risk management, and findings reporting.Organize and maintain documentation and knowledge repositories as the definitive source for:ICT audit plans, scopes, and proceduresControl descriptions and standard evidence templatesCentralized repositories of audit evidence and Security Plan materialsPlan and conduct thematic and product-level ICT audits under the CISO’s guidance, independently verifying:Completion of required tasksReliability and sufficiency of evidence provided by product teams

Adventus is a leading Information and Communications Technology (ICT) Solutions and Services Provider with a significant global presence.Our mission is to empower organizations to drive transformative change by utilizing intelligent applications of innovative solutions and essential services, enabling them to excel in an increasingly competitive marketplace.With a robust network of technology partners, unparalleled domain expertise, and a unique value proposition, we consistently strive to exceed our customers' expectations.

At Assurity Trusted Solutions (ATS), a subsidiary of the Government Technology Agency (GovTech), we pride ourselves on being a trusted partner in navigating the complexities of the digital and cyber landscape. For over a decade, we have provided a diverse range of products and services, including infrastructure and operational services, authentication solutions, governance, assurance services, and managed processes. Our collaborative efforts with GovTech, government agencies, and commercial partners focus on mitigating cyber risks and enhancing security postures for our clients.As a Senior/Lead Offensive Cybersecurity Engineer, you will lead a dynamic team in innovative security testing initiatives or exercise your expertise as an independent security consultant. Your role will be pivotal in ensuring our clients receive the highest level of security assurance.Job Summary:Oversee comprehensive Vulnerability Assessment and Penetration Testing (VAPT) initiatives across various systems, networks, and applications, serving a diverse clientele, from small businesses to large enterprises.Guide source code and host configuration reviews to ensure clients' systems meet industry best practices and security standards.Develop detailed technical documentation outlining identified vulnerabilities, their impacts, risk assessments, and actionable remediation strategies.Manage relationships with key customer stakeholders.Assist in defining engagement scopes and services tailored to clients’ needs and goals.Keep abreast of the latest threat landscapes, emerging vulnerabilities, and industry advancements to enhance the organization’s VAPT capabilities.Provide expert cybersecurity consultancy services, offering recommendations to improve clients’ security postures.Establish technical methodologies and standards to ensure excellence within VAPT delivery teams.Mentor junior offensive cybersecurity engineers during engagements to foster team development.Review technical outputs and reports to maintain consistent quality standards.

MORROW HEALTHMORROW Health stands as Singapore’s premier integrated fitness and recovery hub, committed to fostering healthier and more resilient lifestyles through intentional daily habits. Grounded in the principles of lifestyle medicine, MORROW Health seamlessly integrates physical activity, nutrition, restorative sleep, stress management, avoidance of risky substances, and social connection through structured programs and purpose-built environments that facilitate sustainable lifestyle changes. With a strong emphasis on evidence-based practices and data derived from wearables and lifestyle inputs, MORROW Health empowers its members to identify patterns, cultivate consistency, and maintain accountability—transforming insights into actionable steps that support long-term vitality and clarity without the need for medical intervention.Position Overview: Reporting directly to the CTO, the Head of Cybersecurity and IT is responsible for overseeing global IT operations, cybersecurity measures, and compliance protocols. This role involves establishing and providing hands-on IT and cybersecurity solutions, creating standard operating procedures (SOPs) and policies, and leading a dedicated team of IT and cybersecurity engineers, helpdesk staff, and compliance associates.

About ClickHouseRecognized in the 2025 Forbes Cloud 100 list, ClickHouse stands out as a pioneer in the cloud industry, delivering exceptional real-time analytics, data warehousing, observability, and AI workloads. With a customer base exceeding 3,000 and an astounding annual recurring revenue (ARR) growth of over 250% year-over-year, we are at the forefront of innovation.The recent $400 million Series D funding round underscores our rapid growth and has attracted major clients including Capital One, Lovable, Decagon, Polymarket, and Airwallex, joining the ranks of renowned brands like Meta, Cursor, Sony, and Tesla.Join us on our mission to revolutionize data utilization in businesses and be a part of our exciting journey!The Security Team at ClickHouse is dedicated to enhancing security across applications, cloud environments, and enterprises. We seek a seasoned security engineer who is hands-on and passionate about advancing modern security methodologies and tools, specifically in detection and incident response.

Join our innovative team as an Infrastructure Security Engineer, where your expertise will be invaluable in designing, building, and maintaining robust infrastructure security services. You will play a vital role in ensuring the reliability, availability, and security of our infrastructure platform by implementing advanced automation, effective monitoring, and rapid incident response strategies. A strong understanding of IT architecture, cybersecurity practices, and site reliability engineering (SRE) is essential, along with analytical skills to troubleshoot and resolve security incidents efficiently.

Join Adventus as an Associate Cybersecurity Engineer and play a vital role in protecting our information systems and networks. You will collaborate with a team of cybersecurity professionals to implement security measures, conduct vulnerability assessments, and respond to incidents, ensuring the integrity of our data and infrastructure.