Penetration Testing Engineer - Continuous Security Validation

Join Assurity Trusted Solutions (ATS), a proud subsidiary of the Government Technology Agency (GovTech), dedicated to fostering secure digital environments. Over the past decade, ATS has partnered with GovTech, government agencies, and commercial enterprises to deliver an extensive range of security solutions, ensuring resilience against cyber threats. We are seeking a talented Penetration Testing Engineer to engage in our continuous security validation initiatives. This role offers a unique platform to collaborate with fellow cybersecurity experts who share a commitment to innovation and excellence. Key Responsibilities:Design and implement automated security validation frameworks and pipelines.Conduct continuous security testing across a variety of IT environments.Execute manual penetration tests for intricate scenarios and edge cases.Analyze security validation findings to pinpoint weaknesses in defensive measures.Develop and uphold testing methodologies grounded in the latest threat intelligence.Generate detailed reports and strategic recommendations for enhancing security protocols.Work alongside security teams to improve detection and prevention strategies.Document testing procedures and maintain an up-to-date knowledge base of security validation techniques. Qualifications:The ideal candidate will possess:A degree in Cybersecurity, Information Security, Computer Science, or a related discipline, complemented by relevant certifications (e.g., OSCP, SANS, or cloud security credentials).A minimum of 4 years of experience in offensive security or a related field, preferably within enterprise or government contexts.Expertise in penetration testing tools and methodologies.A comprehensive understanding of the attack lifecycle, from reconnaissance to post-exploitation.Experience with automation and scripting languages (Python, PowerShell, Bash).Familiarity with CI/CD pipelines and DevSecOps practices.Insight into network protocols, operating systems, and security architectures.Knowledge of threat intelligence frameworks such as MITRE ATT&CK.Experience with vulnerability assessment and security scanning tools. Embark on a rewarding career with Assurity Trusted Solutions today! The compensation package will be commensurate with your skills and experience. Interested candidates are encouraged to click 'Apply Now'. We appreciate your interest; only shortlisted candidates will be contacted.

Join our dynamic team at csit as a Cybersecurity Penetration Test Specialist. In this role, you will be responsible for identifying vulnerabilities in our systems and applications through rigorous testing and analysis. Your expertise will help us strengthen our security posture and protect our digital assets. You will work closely with cross-functional teams to ensure compliance with security standards and best practices.

Join csit as a Senior Cybersecurity Penetration Test Specialist and play a crucial role in safeguarding our digital assets. You will lead penetration testing initiatives, identify vulnerabilities, and enhance our security posture. Your expertise in ethical hacking and threat modeling will be instrumental in developing robust security strategies.

At CSIT, we are at the forefront of cybersecurity, engaging in innovative research and development to identify system vulnerabilities and defend against sophisticated cyber threats. Our focus spans a wide array of platforms, including cloud computing, enterprise systems, mobile devices, and critical infrastructure. We are seeking dynamic individuals who are not only passionate about cybersecurity but are also eager to contribute significantly to the enhancement of Singapore's national security.Position OverviewAs a Mobile and Cloud Security Engineer, you will lead the development and deployment of state-of-the-art security solutions tailored for mobile and cloud environments. Your key responsibilities will encompass:Performing comprehensive vulnerability assessments and penetration testing for mobile, cloud, and web applications, including Content Delivery Networks (CDN) and edge computing environments.Creating and maintaining robust security tools and services applicable to mobile, cloud, and web platforms.Collaborating with cybersecurity researchers to proactively address emerging threats and innovate new security measures.Working across various teams to design and implement secure architectures for mobile, cloud, and web systems.Engaging in incident response and threat hunting initiatives to safeguard our digital assets.

About CSIT:CSIT stands as a leader in the cybersecurity landscape, committed to providing innovative solutions that safeguard Singapore against cyber threats. We specialize in the development of advanced penetration testing products and platforms that empower organizations to conduct proactive security assessments and identify vulnerabilities. At CSIT, we cultivate an environment of innovation, collaboration, and continuous learning, where talented professionals can excel and significantly influence the realm of cybersecurity. Join us in our mission to outsmart cyber threats with state-of-the-art penetration testing tools.Role Overview:As a Security Software Developer, you will be instrumental in the design, development, and maintenance of products aimed at identifying and mitigating security vulnerabilities. Your responsibilities will include architecting, building, and optimizing systems that bolster our security infrastructure and enhance our cybersecurity capabilities.Core Responsibilities:- Design, develop, and maintain innovative pentesting products and platforms that facilitate daily cybersecurity operations.- Architect and implement scalable, dependable, and secure software solutions for penetration testing operations and exercises.- Create scripts and tools that streamline the deployment, configuration, and orchestration of pentesting environments.- Conduct research and develop security testing frameworks and techniques for pentesting tools that simulate real-world attack scenarios.- Collaborate with security researchers and analysts to identify emerging threats and vulnerabilities for inclusion in pentesting simulations.- Design, implement, and maintain Continuous Integration/Continuous Delivery (CI/CD) pipelines for rapid product iteration and delivery.- Keep up-to-date with the latest industry trends in cybersecurity and DevOps, integrating new technologies as appropriate.

Join Assurity Trusted Solutions (ATS), a proud subsidiary of the Government Technology Agency (GovTech), as we continue our mission to strengthen cybersecurity across the digital landscape. With over ten years of dedicated service, ATS partners with government entities and commercial organizations to deliver a wide array of products and services, including infrastructure, operational services, and assurance solutions. Our focus remains on fostering trust and collaboration to mitigate cyber risks effectively.Key Responsibilities:Lead the penetration testing and red teaming initiatives for systems governed by the CISO, encompassing both corporate environments and internal product teams.Plan and implement testing strategies for:Web, cloud, network, and API applications,Cloud workloads, including government cloud platforms and containerized environments,Data platforms such as data lakes and large-scale analytics systems,Enterprise platforms including identity, collaboration, and developer tools, along with other approved SaaS solutions.Identify and validate end-to-end attack paths across various domains, documenting realistic threat scenarios and assessing their potential impact.Oversee penetration testing engagements with external vendors, including defining rules of engagement, preparing environments, and reviewing reports for quality and depth.Generate concise, prioritized reports and briefings for engineering teams and management, aiding in remediation planning and retesting efforts.Design and manage standardized penetration testing environments, including workstations, network zones, and realistic testing datasets.Collaborate with infrastructure and central engineering teams to integrate penetration testing tools and automation, ensuring comprehensive logging and telemetry.Co-author penetration testing policies and standards within GovTech and lead implementations for product teams.Translate policy directives into practical guidance, templates, and checklists to facilitate consistent and compliant penetration testing practices.

Are you passionate about enhancing security protocols and ensuring robust protection against vulnerabilities? Join our dynamic team as a Security Testing & Assurance Specialist. In this role, you will leverage your expertise in Vulnerability Assessment and Penetration Testing (VAPT) and Open Web Security Testing Guide (OWSTG) to identify potential threats and implement effective security measures.You will work closely with cross-functional teams to assess security risks, conduct thorough testing, and provide actionable recommendations to safeguard our systems. Your insights will be pivotal in shaping our security strategy and fortifying our defenses.

Join our innovative team at csit as a Senior Platform Engineer, where you will spearhead the development of advanced testing platform services designed to help organizations stay ahead of evolving cyber threats. In this pivotal role, you will architect and implement a flexible grid of both physical and virtual devices, granting developers and testers on-demand, scalable access to a diverse array of devices and environments for thorough testing. Your expertise in designing complex systems will be essential, as you will ensure compatibility across various device types, architectures, and communication protocols, all while prioritizing high availability, scalability, and robust security measures.

Join aumovio as an AI Security Test Engineer Intern and dive into the exciting world of artificial intelligence and cybersecurity. As an intern, you will have the opportunity to work closely with our experienced team, gaining hands-on experience in testing and enhancing the security of AI systems.During this internship, you will be involved in various projects that challenge your analytical skills and foster your technical abilities. You will learn about the latest security practices and contribute to the development of robust AI applications.

Join our dynamic team at Accion Labs as a Test Engineer. In this role, you will be responsible for designing and executing test plans, identifying defects, and ensuring the quality of our software products. You will collaborate with developers and product managers to understand the requirements and help deliver high-quality software to our clients.

Key Responsibilities:Create, develop, and maintain automated testing scripts that encompass core functionalities of the product.Design and enhance automation testing frameworks to improve testing efficiency and coverage.Collaborate with development teams to assess requirements, formulate detailed test plans, and guarantee complete and stable product functionality.Perform functional, performance, regression, and stress testing to quickly identify and resolve issues.Create and maintain test cases to ensure comprehensive testing coverage that meets quality benchmarks.Integrate automated tests within CI/CD pipelines for ongoing quality enhancement.Generate regular testing reports that provide thorough assessments of product quality and recommendations for improvements.Stay updated with the latest testing technology trends and introduce innovative tools and techniques to the team.

Join our dynamic team at Accion Labs as a Performance Testing Engineer specializing in Siebel. We are seeking a talented individual who is passionate about ensuring the performance and reliability of software applications. In this role, you will be responsible for designing, executing, and analyzing performance tests, identifying bottlenecks, and providing solutions to enhance system performance.

Join our dynamic team at Aarna HR Solutions Pvt Ltd as a Test Development Engineer. In this role, you will be instrumental in designing and implementing innovative testing solutions, ensuring the highest quality of our products. You will collaborate with cross-functional teams to develop comprehensive test plans and execute testing strategies that align with our agile development processes.

Role overview NCS Pte Ltd seeks a Testing Engineer (C3) in Singapore. The position centers on upholding and enhancing the quality and performance of software products. What you will do Develop, execute, and maintain test plans for software releases Identify defects, document findings, and monitor issues throughout the testing cycle Collaborate with development teams to clarify requirements and resolve problems Help ensure products meet established quality standards before release Requirements Background in software testing or quality assurance Keen attention to detail and a strong focus on product quality Ability to work well with cross-functional teams

Role Overview ncs3 is hiring a Security Engineer in Singapore. This role focuses on protecting digital assets and maintaining the integrity of company systems. The Security Engineer works with teams across the organization to build and maintain security measures. Main Responsibilities Design and implement security controls for systems and infrastructure Conduct risk assessments to identify and address vulnerabilities Respond to security incidents and support investigations Collaborate with other teams to improve security practices Promote security awareness throughout the organization About the Team The Security Engineer will join a group focused on strengthening defenses and building a culture of security awareness at ncs3.

Join our team as a Network and Security Engineer where you will play a pivotal role in safeguarding our network infrastructure. You will be responsible for designing, implementing, and maintaining security measures to protect sensitive data and ensure the integrity of our network systems. Collaborate with cross-functional teams to develop and enforce security policies, conduct risk assessments, and respond to security incidents.

Assurity Trusted Solutions (ATS), a wholly owned subsidiary of the Government Technology Agency (GovTech), is committed to being a trusted partner in enhancing digital security. Over the past decade, ATS has provided a comprehensive array of products and services including infrastructure and operational services, authentication services, governance and assurance services, and managed processes. In an ever-evolving digital and cyber landscape, ATS emphasizes trust and collaboration, working alongside GovTech, government agencies, and commercial partners to effectively mitigate cyber risks and strengthen security measures.As an integral part of the application security core competency within the Development & Innovation for Technology ProducTisation & Operations (DITTO) department, you will play a pivotal role in shaping the application security landscape of our organization.Your responsibilities will encompass providing expert consultancy and support to application teams in areas such as security assessments, DevSecOps practices, and security training and awareness initiatives, aimed at elevating the application security competency and standards within our organization.Key Responsibilities: Design and implement the application security roadmap to enhance security practices across the organization. Establish secure application development practices, standards, and guidelines, fostering a culture of security within application teams. Oversee application security processes and maintain an automated source code scanning platform. Conduct secure code quality reviews and perform application penetration testing and vulnerability assessments. Assist with various application testing and delivery methodologies, including CI/CD. Educate and empower developers on secure coding practices across multiple programming platforms such as Java, C#, PHP, etc., and guide them in writing security acceptance criteria in user stories. Train application teams to develop security unit tests and carry out secure coding assessments. Collaborate with the DevOps team to enhance security within the CI/CD pipeline. Qualifications: A minimum of 3-5 years of combined experience in software development, application security, and cloud computing (e.g., Azure, AWS). Proficient in conducting manual secure source code reviews across at least one of the following programming platforms: Java, PHP, JavaScript, C#, Android, or iOS, utilizing both waterfall and Agile methodologies. Experience in threat modeling, with the ability to create threat profiles for application projects to identify, assess, and mitigate application security risks. Familiarity with mobile and web application programming interfaces (API) architecture, including REST, SOAP, SSL/TLS. Knowledge of industry security best practices such as OWASP Top 10 and OWASP Application Security Verification Standard. Experience with using SAST tools for secure code analysis.

Team: Information SecurityPosition Overview:Join Squarepoint Capital as a Senior Information Security Engineer, where you will leverage your expertise to enhance our security posture. In this critical role, you will provide expert guidance and implement improvements across essential domains including network, cloud, data, and system security. You will serve as the escalation point for Security Operations, effectively analyzing and resolving complex security issues. Key responsibilities include overseeing security for vital IT projects, leading threat modeling for intricate systems, auditing for security vulnerabilities, and developing automated capabilities to continuously assess the effectiveness and resilience of our controls. This role presents a unique opportunity to spearhead security initiatives and influence our security roadmap. A high degree of self-motivation and proactivity is essential for success in this position.Enhance security measures across core areas such as network and system security, email security, cloud security, and data protection.Act as a security advisor for IT projects, ensuring compliance with security requirements and risk mitigation.Manage and optimize security tools, ensuring effective deployment and maintenance.Lead the design and development of security solutions and architectures protecting critical assets.Provide second-line support to Security Operations.Conduct threat modeling and risk assessments to identify vulnerabilities and execute proactive mitigation strategies.Oversee relationships with the Managed Detection and Response (MDR) provider, ensuring service efficiency and continuous enhancement.Implement initiatives from the security roadmap, aligning with business goals and emerging threats.Collaborate with cross-functional teams to elevate security awareness and integrate security into business processes.

As a Business Continuity Management (BCM) Analyst at NCS, you will play a pivotal role in ensuring the resilience of our operations. You will be responsible for developing and implementing robust business continuity plans, conducting risk assessments, and facilitating training sessions to prepare our teams for potential disruptions. Your analytical skills and proactive approach will be essential in identifying vulnerabilities and enhancing our response strategies.

The Continuous Improvement Manager within the Customer Support Division is tasked with spearheading and nurturing the newly established Continuous Improvement Team (CIT). This team, composed of engineers, has a dual focus: to enhance operational excellence and to cultivate a succession pipeline for the existing Operations & Maintenance (O&M) team at Changi Airport. This pivotal role is essential for ensuring long-term sustainability, knowledge transfer, and innovation in support operations. This position reports to the Senior Manager – Customer Support.Team Development & Succession Planning- Recruit, onboard, and mentor a team of six engineers: Operations Engineer, Maintenance Engineer, PLC Engineer, Network Engineer, and Data Analyst/QA.- Design and implement a comprehensive development program to equip the CIT team for future O&M leadership roles.- Facilitate cross-training and job shadowing with the current O&M team to ensure seamless knowledge transfer.Operational Excellence & Innovation- Spearhead continuous improvement initiatives aimed at maximizing system uptime, enhancing process efficiency, and elevating service quality.- Leverage Lean, Six Sigma, and root cause analysis methodologies to identify and rectify operational bottlenecks.- Champion automation and digital transformation projects to modernize support workflows.- Ensure that SOPs accurately reflect current practices and remain updated.Strategic Alignment & Stakeholder Engagement- Align CIT objectives with BEUMER Group’s lifecycle support strategy and customer SLAs.- Collaborate with internal stakeholders (engineering, IT, operations) and external partners (Changi Airport Group) to ensure alignment and transparency.- Represent the CIT in strategic planning and performance review meetings.Performance Monitoring & Reporting- Define KPIs for team performance, project impact, and readiness for succession.- Develop dashboards and reports to track progress and present insights and improvement opportunities to senior leadership.