Cybersecurity Penetration Test Specialist

Join our dynamic team at csit as a Cybersecurity Penetration Test Specialist. In this role, you will be responsible for identifying vulnerabilities in our systems and applications through rigorous testing and analysis. Your expertise will help us strengthen our security posture and protect our digital assets. You will work closely with cross-functional teams to ensure compliance with security standards and best practices.

Join csit as a Senior Cybersecurity Penetration Test Specialist and play a crucial role in safeguarding our digital assets. You will lead penetration testing initiatives, identify vulnerabilities, and enhance our security posture. Your expertise in ethical hacking and threat modeling will be instrumental in developing robust security strategies.

Join Assurity Trusted Solutions (ATS), a proud subsidiary of the Government Technology Agency (GovTech), dedicated to fostering secure digital environments. Over the past decade, ATS has partnered with GovTech, government agencies, and commercial enterprises to deliver an extensive range of security solutions, ensuring resilience against cyber threats. We are seeking a talented Penetration Testing Engineer to engage in our continuous security validation initiatives. This role offers a unique platform to collaborate with fellow cybersecurity experts who share a commitment to innovation and excellence. Key Responsibilities:Design and implement automated security validation frameworks and pipelines.Conduct continuous security testing across a variety of IT environments.Execute manual penetration tests for intricate scenarios and edge cases.Analyze security validation findings to pinpoint weaknesses in defensive measures.Develop and uphold testing methodologies grounded in the latest threat intelligence.Generate detailed reports and strategic recommendations for enhancing security protocols.Work alongside security teams to improve detection and prevention strategies.Document testing procedures and maintain an up-to-date knowledge base of security validation techniques. Qualifications:The ideal candidate will possess:A degree in Cybersecurity, Information Security, Computer Science, or a related discipline, complemented by relevant certifications (e.g., OSCP, SANS, or cloud security credentials).A minimum of 4 years of experience in offensive security or a related field, preferably within enterprise or government contexts.Expertise in penetration testing tools and methodologies.A comprehensive understanding of the attack lifecycle, from reconnaissance to post-exploitation.Experience with automation and scripting languages (Python, PowerShell, Bash).Familiarity with CI/CD pipelines and DevSecOps practices.Insight into network protocols, operating systems, and security architectures.Knowledge of threat intelligence frameworks such as MITRE ATT&CK.Experience with vulnerability assessment and security scanning tools. Embark on a rewarding career with Assurity Trusted Solutions today! The compensation package will be commensurate with your skills and experience. Interested candidates are encouraged to click 'Apply Now'. We appreciate your interest; only shortlisted candidates will be contacted.

Join Assurity Trusted Solutions (ATS), a proud subsidiary of the Government Technology Agency (GovTech), as we continue our mission to strengthen cybersecurity across the digital landscape. With over ten years of dedicated service, ATS partners with government entities and commercial organizations to deliver a wide array of products and services, including infrastructure, operational services, and assurance solutions. Our focus remains on fostering trust and collaboration to mitigate cyber risks effectively.Key Responsibilities:Lead the penetration testing and red teaming initiatives for systems governed by the CISO, encompassing both corporate environments and internal product teams.Plan and implement testing strategies for:Web, cloud, network, and API applications,Cloud workloads, including government cloud platforms and containerized environments,Data platforms such as data lakes and large-scale analytics systems,Enterprise platforms including identity, collaboration, and developer tools, along with other approved SaaS solutions.Identify and validate end-to-end attack paths across various domains, documenting realistic threat scenarios and assessing their potential impact.Oversee penetration testing engagements with external vendors, including defining rules of engagement, preparing environments, and reviewing reports for quality and depth.Generate concise, prioritized reports and briefings for engineering teams and management, aiding in remediation planning and retesting efforts.Design and manage standardized penetration testing environments, including workstations, network zones, and realistic testing datasets.Collaborate with infrastructure and central engineering teams to integrate penetration testing tools and automation, ensuring comprehensive logging and telemetry.Co-author penetration testing policies and standards within GovTech and lead implementations for product teams.Translate policy directives into practical guidance, templates, and checklists to facilitate consistent and compliant penetration testing practices.

Join our dynamic team at Accion Labs as an Integration and Testing Specialist. In this role, you will be responsible for ensuring seamless integration and rigorous testing of our innovative solutions, contributing to the overall success and quality of our projects. You will collaborate with cross-functional teams to identify integration challenges and develop effective strategies to overcome them.

Role Title: Cybersecurity Technical Solution Specialist Business Unit: Project OfficeJoin our dynamic team at Xcellink as a Cybersecurity Technical Solution Specialist in our Enterprise Operations unit. We are seeking an individual with a robust technical foundation in cybersecurity technologies, solutions, and services. In this role, you will provide expert recommendations and assessments on the latest cybersecurity products and services available in the market.Your key responsibilities will include:Evaluating and recommending cybersecurity tools, products, and services.Building technical capabilities within the organization and supporting the implementation and deployment of cybersecurity technologies.Participating in mentorship and training programs for SOC L1 specialists.Reviewing and supporting the implementation of proof of concepts (POC) and tender proposals for cybersecurity opportunities.Collaborating with business units and vendors to ensure successful service delivery.Engaging with cybersecurity channel partners to introduce best practices and tools that complement our workforce services.Acting as the go-to expert for industry-standard cybersecurity frameworks such as NIST, ISO27001, and CIS Controls.Collaborating with diverse audiences, including executives and engineers, to manage and implement long-term projects.Providing expertise in IT security solutions, applications, and tools.

Sopra Steria is seeking a Senior Cybersecurity Operations Specialist based in Singapore. This position plays a key role in defending company systems and data from a range of cyber threats. Collaboration with various teams across the organization is central to the work, as is the ongoing development and oversight of security frameworks that protect digital assets. What you will do Take the lead in securing systems and sensitive data from both emerging and established cyber risks Partner with cross-functional teams to design, implement, and maintain security frameworks Guide the development and enhancement of incident response strategies Contribute to projects and initiatives that reinforce the company’s security posture Role overview This role centers on proactive protection and continuous improvement. The Senior Cybersecurity Operations Specialist will help shape and enforce security practices, ensuring that Sopra Steria remains resilient in the face of evolving cyber challenges.

About CSIT:CSIT stands as a leader in the cybersecurity landscape, committed to providing innovative solutions that safeguard Singapore against cyber threats. We specialize in the development of advanced penetration testing products and platforms that empower organizations to conduct proactive security assessments and identify vulnerabilities. At CSIT, we cultivate an environment of innovation, collaboration, and continuous learning, where talented professionals can excel and significantly influence the realm of cybersecurity. Join us in our mission to outsmart cyber threats with state-of-the-art penetration testing tools.Role Overview:As a Security Software Developer, you will be instrumental in the design, development, and maintenance of products aimed at identifying and mitigating security vulnerabilities. Your responsibilities will include architecting, building, and optimizing systems that bolster our security infrastructure and enhance our cybersecurity capabilities.Core Responsibilities:- Design, develop, and maintain innovative pentesting products and platforms that facilitate daily cybersecurity operations.- Architect and implement scalable, dependable, and secure software solutions for penetration testing operations and exercises.- Create scripts and tools that streamline the deployment, configuration, and orchestration of pentesting environments.- Conduct research and develop security testing frameworks and techniques for pentesting tools that simulate real-world attack scenarios.- Collaborate with security researchers and analysts to identify emerging threats and vulnerabilities for inclusion in pentesting simulations.- Design, implement, and maintain Continuous Integration/Continuous Delivery (CI/CD) pipelines for rapid product iteration and delivery.- Keep up-to-date with the latest industry trends in cybersecurity and DevOps, integrating new technologies as appropriate.

Assurity Trusted Solutions is hiring a Cybersecurity Operations Specialist to help protect Singpass and related digital services. This position centers on improving security measures and responding to potential threats in a collaborative setting. Role overview The Cybersecurity Operations Specialist monitors systems for suspicious activity, detects possible threats, and responds promptly to incidents. The role also involves ensuring that all activities align with security policies and comply with industry standards. Key responsibilities Monitor digital services, with a focus on Singpass, for cybersecurity threats and incidents Detect and respond to security events to minimize risk Work with teams across the organization to identify vulnerabilities Support the implementation of protection strategies and controls Maintain compliance with established security policies and relevant industry standards Collaboration This role works closely with cross-functional teams to strengthen the security posture of Singpass and other digital platforms. Teamwork and clear communication are essential for identifying risks and deploying effective solutions.

Are you passionate about enhancing security protocols and ensuring robust protection against vulnerabilities? Join our dynamic team as a Security Testing & Assurance Specialist. In this role, you will leverage your expertise in Vulnerability Assessment and Penetration Testing (VAPT) and Open Web Security Testing Guide (OWSTG) to identify potential threats and implement effective security measures.You will work closely with cross-functional teams to assess security risks, conduct thorough testing, and provide actionable recommendations to safeguard our systems. Your insights will be pivotal in shaping our security strategy and fortifying our defenses.

At CSIT, we are at the forefront of cybersecurity, engaging in innovative research and development to identify system vulnerabilities and defend against sophisticated cyber threats. Our focus spans a wide array of platforms, including cloud computing, enterprise systems, mobile devices, and critical infrastructure. We are seeking dynamic individuals who are not only passionate about cybersecurity but are also eager to contribute significantly to the enhancement of Singapore's national security.Position OverviewAs a Mobile and Cloud Security Engineer, you will lead the development and deployment of state-of-the-art security solutions tailored for mobile and cloud environments. Your key responsibilities will encompass:Performing comprehensive vulnerability assessments and penetration testing for mobile, cloud, and web applications, including Content Delivery Networks (CDN) and edge computing environments.Creating and maintaining robust security tools and services applicable to mobile, cloud, and web platforms.Collaborating with cybersecurity researchers to proactively address emerging threats and innovate new security measures.Working across various teams to design and implement secure architectures for mobile, cloud, and web systems.Engaging in incident response and threat hunting initiatives to safeguard our digital assets.

Assurity Trusted Solutions (ATS), a proud subsidiary of the Government Technology Agency (GovTech), has established itself as a leading provider of comprehensive cybersecurity solutions over the last decade. We deliver a wide array of services that include infrastructure management, operational support, authentication services, governance, and assurance. In an ever-evolving digital landscape, where trust and collaboration are paramount, ATS collaborates closely with GovTech, various government agencies, and private sector partners to effectively mitigate cyber risks and enhance security frameworks. As an Offensive Cybersecurity Engineer, you will be pivotal in executing collaborative security testing engagements, and you may also undertake independent projects that focus on security assessments. Job Summary:Conduct thorough Vulnerability Assessment and Penetration Testing (VAPT) across various systems, networks, and applications, catering to both small-to-medium enterprises (SME) and large-scale enterprise environments.Perform detailed source code and host configuration reviews to ensure compliance with industry best practices and security standards.Generate detailed technical documentation that outlines identified vulnerabilities, impact assessments, risk evaluations, and actionable remediation strategies.Stay updated on the latest threat landscapes, emerging vulnerabilities, and industry trends to continually enhance the organization’s VAPT capabilities.Provide expert cybersecurity consultancy, offering strategic recommendations to improve customers’ overall security posture.Assist in the development of technical methodologies and standards to uphold excellence within the VAPT delivery teams.

Join our dynamic team as a TAP QA Engineer on a contract basis within the banking sector. In this role, you will be pivotal in ensuring the quality and performance of our applications through rigorous testing practices.Key Responsibilities:- Formulate detailed test plans, strategies, and cases aligned with both business and non-functional requirements.- Demonstrate hands-on expertise in testing processes from T24 to TAP.- Analyze test outcomes, pinpoint root causes of issues, and create comprehensive reports for stakeholders.- Troubleshoot performance bottlenecks in collaboration with development teams to implement effective remediation.- Set up test environments, manage test data, and utilize various testing tools and software solutions.Qualifications:- Proficiency in Functional Testing methodologies.- Extensive hands-on experience in testing T24 securities (SC), Derivatives (DX), and Structured Products (SY) modules.- Practical experience in testing Business-to-Front (B2F) flows from T24 to TAP across these modules.- Familiarity with TAP business functions and testing, along with knowledge of T24/TAP reconciliation, is highly advantageous.- Basic understanding of asset classes, including Equities, Bonds, Funds, Share Options, and OTC options is a plus.- Ability to craft test scenarios and cases addressing gaps identified in various B2F flows, ensuring comprehensive end-to-end test coverage.- Conduct walkthroughs of test artifacts for onsite counterparts to facilitate their review and approval.EA Reg. No. 25C2690 | EA License No. R1877766

Join Adventus as an Associate Cybersecurity Engineer and play a vital role in protecting our information systems and networks. You will collaborate with a team of cybersecurity professionals to implement security measures, conduct vulnerability assessments, and respond to incidents, ensuring the integrity of our data and infrastructure.

Role overview Sopra Steria seeks a Cybersecurity Consultant based in Singapore. The role centers on supporting clients as they improve their digital security posture. Consultants assess client environments and deliver solutions that protect data and networks from current and emerging threats. Key responsibilities Engage with clients to identify and analyze their cybersecurity needs Develop and apply security measures tailored to each client’s situation Participate in projects focused on enhancing digital protection and managing new risks Help advance the team’s cybersecurity practices through ongoing contributions

Job Summary: Join us as a Trend Micro Engineer, where you will be instrumental in enhancing our IT security framework and operational efficiency. Your expertise will focus on utilizing the comprehensive suite of Trend Micro products, including Apex One, IMSVA, IWSVA, Server Protect, Email Security, and Cloud App Security, while integrating them with Microsoft Deployment Toolkit (MDT). By leveraging Trend Micro DDAN, Control Manager, and Apex Central, you will ensure robust threat intelligence and centralized management, thereby guaranteeing the secure, reliable, and optimized performance of our clients' IT infrastructure post-implementation.Key Responsibilities:Product Expertise and Deployment:Serve as the resident expert on Trend Micro and MDT products.Deploy, configure, and manage Trend Micro solutions to enhance IT operations.Continuous Monitoring and Maintenance:Utilize Control Manager and Apex Central for ongoing operational monitoring.Conduct routine maintenance, updates, and patches to address vulnerabilities.Incident Response and Problem Solving:Lead responses to cybersecurity threats and technical challenges using Trend Micro DDAN.Deliver immediate resolutions to minimize disruptions and boost operational efficiency.Security Policies and Compliance Management:Devise and implement stringent security protocols across all IT systems.Ensure compliance with regulatory standards and internal policies, using Trend Micro solutions for data protection and threat prevention.Reporting and Data Analysis:Create detailed reports on security incidents, system performance, and compliance status.Provide actionable insights and recommendations to optimize systems and mitigate risks.Collaboration and Training:Work closely with IT teams and various departments to promote secure and efficient operations.Facilitate training sessions on Trend Micro product functionalities, cybersecurity best practices, and effective system utilization.

Join ASM: Where Innovation Meets CollaborationWith over 55 years of pioneering advancements in technology, ASM is at the forefront of semiconductor innovation. Our diverse team of over 4,500 professionals from 70 nationalities is instrumental in shaping the future through groundbreaking developments in 5G, cloud computing, AI, and autonomous driving. At ASM, we believe that technology can drive positive change, and we are committed to diversity, inclusion, and sustainability. Our development programs are designed to nurture your growth and unleash your potential.Role OverviewAs a Senior Cybersecurity Analyst, you will play a vital role in fortifying ASM’s global digital infrastructure by integrating robust security measures into essential systems and strategic projects. Your collaborative approach will help establish resilient security capabilities that safeguard our people, technology, and operations, empowering ASM to innovate confidently in a rapidly evolving semiconductor sector where reliability and trust are paramount.Key ResponsibilitiesEngage in architectural and design discussions for new solutions and initiatives.Collaborate with cross-functional teams to embed effective security controls into systems and processes.Assist in security investigations, assessments, and remediation efforts.Develop, implement, and uphold IT governance, risk, and compliance (GRC) frameworks, standards, and policies.Conduct cybersecurity and compliance risk evaluations across various technologies and business domains.Ensure that security controls are functioning effectively and consistently across teams.Support gap assessments, internal audits, and external audits.Participate in vendor due diligence processes and manage vendor risks.Engage in disaster recovery and business continuity planning, including cyber drills and business impact assessments.Serve as a cybersecurity expert for global IT teams, business partners, vendors, and contractors.Align cybersecurity priorities with business objectives through stakeholder engagement.Work collaboratively across time zones, with a willingness to accommodate occasional after-hours meetings.Lead or support security enhancement initiatives in areas such as OT security, AI security, and supply chain security.

Assurity Trusted Solutions (ATS), a subsidiary of the Government Technology Agency (GovTech), has been a reliable partner for over a decade, providing a comprehensive array of products and services. Our offerings include infrastructure and operational services, governance and assurance services, and managed processes. In the ever-evolving digital and cybersecurity landscape, where trust and collaboration are paramount, ATS is dedicated to achieving mutually beneficial outcomes by working closely with GovTech, various governmental agencies, and commercial partners to reduce cyber risks and enhance security measures.We invite skilled professionals to join our team as Cybersecurity Engineers, specifically those with a solid foundation in Security Operations (SecOps). Successful candidates will be employed under a direct contract until November 30, 2028.Key Responsibilities:Develop and uphold cybersecurity standards, procedures, configurations, and rules for systems and services as part of our dedicated team.Conduct security exercises, including table-top and simulation drills, to validate security procedures.Engage in security incident response, analyzing alerts, coordinating with system operators, identifying threats, and performing initial triaging before escalating to senior security responders.Coordinate Indicators-Of-Compromise (IOC) scanning and compile reports from various system operators to provide consolidated updates to stakeholders.Conduct vulnerability assessments using both automated and manual tools, and recommend actionable remediation strategies. Understand published vulnerabilities and their corresponding security patches in relation to deployed systems, and perform risk assessments.Monitor and communicate security patch releases for various products, and participate in security patch assessments using standards like the Common Vulnerability Scoring System (CVSS), contextualized within the deployed environment.Present findings and reports to stakeholders regarding vulnerability scans, security testing outcomes, security incidents, and the overall security posture of systems.

Join Assurity Trusted Solutions (ATS), a subsidiary of the Government Technology Agency (GovTech), as a Cybersecurity Threat Risk Trainer. With over a decade of experience, ATS provides a robust suite of cybersecurity solutions, including infrastructure services, authentication, governance, and assurance services. In an increasingly complex digital landscape, we prioritize trust and collaboration to enhance security and mitigate cyber risks through partnerships with GovTech and various agencies.In this role, your expertise in threat risk modeling and vulnerability assessment penetration testing (VAPT) will be invaluable as you develop and deliver training workshops tailored for ICT officers. This position is contract-based until March 31, 2027.

Join our dynamic team as a Platform Engineer and play a crucial role in crafting our advanced on-premise testing platform designed to combat emerging cyber threats. You will collaborate closely with a talented group of developers and testers to create scalable services that provide on-demand access to an extensive array of physical and virtual devices for testing purposes. Your contributions will be vital in designing and developing essential platform components, including device orchestration, automated testing workflows, and the underlying virtualization infrastructure. We encourage applications from both seasoned engineers and enthusiastic fresh graduates who possess a solid foundational understanding of platforms, systems, or infrastructure, and who are eager to expand their knowledge and skills in this exciting field.