Senior Technology and Security Risk Manager

Join our dynamic team as a dedicated Security Engineer, where your expertise will play a crucial role in safeguarding our infrastructure and applications. You will collaborate with cross-functional teams to monitor, respond to, and address security incidents within our cloud-native ecosystem, ensuring compliance and resilience.Key Responsibilities:Security Monitoring & Incident Response• Manage alerts from AWS GuardDuty, ensuring prompt investigation and remediation.• Implement and refine security playbooks to address alerts, adapting to evolving threats and operational insights.Vulnerability & Patch Management• Lead the identification and application of security patches across GitLab, AWS, and Kubernetes environments.• Ensure infrastructure resilience through regular patch cycles and proactive risk assessments.Log Analysis & SIEM Management• Conduct weekly SIEM reviews to analyze security logs for anomalies and escalate issues as necessary.• Collaborate with the SecOps team to enhance monitoring strategies and alerting thresholds.Reporting & Documentation• Generate monthly SecOps reports summarizing incident trends, responses, and areas for improvement.• Maintain comprehensive documentation related to security processes and incident responses.Collaboration & Continuous Improvement• Partner with development, operations, and other security teams to integrate security best practices into CI/CD pipelines and cloud deployments.• Actively contribute to discussions on security strategy, providing insights and recommendations to bolster our security posture.

About AvePoint:At AvePoint, we are at the forefront of data management and governance, empowering over 21,000 customers globally to transform their digital workplaces across Microsoft, Google, Salesforce, and various collaboration environments. Our robust channel partner network consists of more than 3,500 managed service providers, value-added resellers, and systems integrators, with our solutions available in over 100 cloud marketplaces. Discover more at www.avepoint.com.We are dedicated to investing in our people. Our core values of agility, passion, and teamwork create an environment where you can thrive, make an impact, and shape your professional future. Unleash your potential with us!Job Summary:The Governance, Risk, and Compliance (GRC) team is a vital function within AvePoint, focusing on the integration of governance, risk, and compliance processes across the Enterprise Product Development (EPD) division. We are looking for a talented IT Security Operations Specialist to enhance and maintain our organization’s security posture through effective operational and compliance management tasks.

Role Overview:Join our dynamic team as a Senior Security Systems Engineer, where you will play a critical role in the design, implementation, and management of cutting-edge security surveillance systems. You'll collaborate closely with system architects and pre-sales teams to articulate and document comprehensive solutions tailored to our clients' needs.Key Responsibilities:Collaborate with the system architect and pre-sales teams to implement state-of-the-art security surveillance systems and network infrastructures both on-premise and in the cloud.Conduct thorough analysis, planning, implementation, testing, and management of integrated perimeter security, video surveillance, and video analytics systems.Leverage your expertise in software and hardware systems, including:IP CCTV SystemsFence Intrusion Detection Systems (FIDS)Physical Security Information Management Systems (PSIM)Video Management Systems (VMS)Data Protection and Identity ManagementWindows Server and Linux OS in virtual environmentsVirtualization technologies and hypervisorsNetwork monitoring solutionsLead interdisciplinary technical teams and stakeholders to design, implement, and verify solutions that meet strict performance requirements.Coordinate with partners to resolve technical issues and support both preventative and corrective maintenance.Develop implementation timelines that align with project management schedules, ensuring timely delivery of milestones.Engage with key vendors and partners to review and refine proposed solution architectures in accordance with industry standards and policies.Interpret technical documentation, installation manuals, and system drawings to facilitate effective implementation.Plan and execute various testing phases (SSAT/UAT/OSAT) to ensure compliance with project requirements.Possess a solid understanding of electrical power systems and cabling works for on-site tasks.Participate in customer meetings, providing regular updates on project progress and addressing any issues that arise.Collaborate with clients, consultants, and project managers to gain approvals on designs and review project progress.Define clear deliverables, roles, and responsibilities for technical engineers to ensure collaborative work towards established goals.Schedule and manage weekly work plans to prevent conflicts.Conduct root cause analyses for system issues and recommend effective solutions.Ensure compliance with construction site safety and regulatory standards.Monitor project finances, including budget tracking and cost management, to ensure efficient project delivery.Work comfortably in both indoor and outdoor environments.

Join Accion Labs as a Security Engineer and contribute to safeguarding our digital assets and infrastructure. In this role, you will collaborate with cross-functional teams to design, implement, and maintain security protocols and technologies that protect our organization from potential threats. You will utilize your expertise to perform security assessments, conduct vulnerability testing, and recommend solutions to enhance our security posture.

Role Overview ncs3 is hiring a Security Engineer in Singapore. This role focuses on protecting digital assets and maintaining the integrity of company systems. The Security Engineer works with teams across the organization to build and maintain security measures. Main Responsibilities Design and implement security controls for systems and infrastructure Conduct risk assessments to identify and address vulnerabilities Respond to security incidents and support investigations Collaborate with other teams to improve security practices Promote security awareness throughout the organization About the Team The Security Engineer will join a group focused on strengthening defenses and building a culture of security awareness at ncs3.

Join our innovative team as a Software Engineer specializing in Government Technology. In this role, you will be responsible for building prototypes that showcase technological opportunities, designing robust system architectures, and writing high-quality production code. You will also manage deployments to both cloud and, on occasion, on-premise infrastructures. We encourage learning and knowledge sharing within our multi-disciplinary team.

Join our team as a Network and Security Engineer where you will play a pivotal role in safeguarding our network infrastructure. You will be responsible for designing, implementing, and maintaining security measures to protect sensitive data and ensure the integrity of our network systems. Collaborate with cross-functional teams to develop and enforce security policies, conduct risk assessments, and respond to security incidents.

Join csit as a Cyber Security Researcher specializing in security products and technologies. In this exciting role, you will be at the forefront of safeguarding digital environments by analyzing threats, researching innovative security solutions, and developing strategies to mitigate risks. Your contributions will play a critical role in enhancing our security posture and protecting our clients' assets.

Join OKX as a Senior/Staff Engineer in Data Governance, where you will play a vital role in enhancing our data management capabilities and ensuring the integrity of our data across various platforms. You will be responsible for developing and implementing data governance frameworks, collaborating with cross-functional teams to enforce data standards and policies, and leveraging your expertise to drive improvements in our data quality and accessibility. Your contributions will directly impact our mission to provide a safe and reliable crypto trading experience.

Assurity Trusted Solutions (ATS), a wholly owned subsidiary of the Government Technology Agency (GovTech), is committed to being a trusted partner in enhancing digital security. Over the past decade, ATS has provided a comprehensive array of products and services including infrastructure and operational services, authentication services, governance and assurance services, and managed processes. In an ever-evolving digital and cyber landscape, ATS emphasizes trust and collaboration, working alongside GovTech, government agencies, and commercial partners to effectively mitigate cyber risks and strengthen security measures.As an integral part of the application security core competency within the Development & Innovation for Technology ProducTisation & Operations (DITTO) department, you will play a pivotal role in shaping the application security landscape of our organization.Your responsibilities will encompass providing expert consultancy and support to application teams in areas such as security assessments, DevSecOps practices, and security training and awareness initiatives, aimed at elevating the application security competency and standards within our organization.Key Responsibilities: Design and implement the application security roadmap to enhance security practices across the organization. Establish secure application development practices, standards, and guidelines, fostering a culture of security within application teams. Oversee application security processes and maintain an automated source code scanning platform. Conduct secure code quality reviews and perform application penetration testing and vulnerability assessments. Assist with various application testing and delivery methodologies, including CI/CD. Educate and empower developers on secure coding practices across multiple programming platforms such as Java, C#, PHP, etc., and guide them in writing security acceptance criteria in user stories. Train application teams to develop security unit tests and carry out secure coding assessments. Collaborate with the DevOps team to enhance security within the CI/CD pipeline. Qualifications: A minimum of 3-5 years of combined experience in software development, application security, and cloud computing (e.g., Azure, AWS). Proficient in conducting manual secure source code reviews across at least one of the following programming platforms: Java, PHP, JavaScript, C#, Android, or iOS, utilizing both waterfall and Agile methodologies. Experience in threat modeling, with the ability to create threat profiles for application projects to identify, assess, and mitigate application security risks. Familiarity with mobile and web application programming interfaces (API) architecture, including REST, SOAP, SSL/TLS. Knowledge of industry security best practices such as OWASP Top 10 and OWASP Application Security Verification Standard. Experience with using SAST tools for secure code analysis.

Team: Information SecurityPosition Overview:Join Squarepoint Capital as a Senior Information Security Engineer, where you will leverage your expertise to enhance our security posture. In this critical role, you will provide expert guidance and implement improvements across essential domains including network, cloud, data, and system security. You will serve as the escalation point for Security Operations, effectively analyzing and resolving complex security issues. Key responsibilities include overseeing security for vital IT projects, leading threat modeling for intricate systems, auditing for security vulnerabilities, and developing automated capabilities to continuously assess the effectiveness and resilience of our controls. This role presents a unique opportunity to spearhead security initiatives and influence our security roadmap. A high degree of self-motivation and proactivity is essential for success in this position.Enhance security measures across core areas such as network and system security, email security, cloud security, and data protection.Act as a security advisor for IT projects, ensuring compliance with security requirements and risk mitigation.Manage and optimize security tools, ensuring effective deployment and maintenance.Lead the design and development of security solutions and architectures protecting critical assets.Provide second-line support to Security Operations.Conduct threat modeling and risk assessments to identify vulnerabilities and execute proactive mitigation strategies.Oversee relationships with the Managed Detection and Response (MDR) provider, ensuring service efficiency and continuous enhancement.Implement initiatives from the security roadmap, aligning with business goals and emerging threats.Collaborate with cross-functional teams to elevate security awareness and integrate security into business processes.

Join ncs as a Senior Consultant specializing in Operational Technology (OT) Security. In this pivotal role, you will leverage your expertise to enhance the security posture of our clients' operational technologies. You will be instrumental in identifying vulnerabilities, implementing robust security measures, and ensuring compliance with industry standards. Your contributions will not only safeguard critical infrastructures but will also shape the future of OT security practices.

Nodeworthy develops an integrated decentralized platform that serves one of the crypto sector’s largest communities. With billions traded daily, the company prioritizes security at every level, delivering resilient infrastructure for users and partners in the evolving blockchain space. Location This is an onsite role based in Singapore or Malaysia. Role overview The Security Engineer will help shape and expand security practices for both cloud infrastructure and applications. This role works closely with infrastructure and product teams to design secure systems, enforce rigorous controls, and address risks proactively. A strong background in defensive security, technical expertise, and hands-on experience with modern cloud environments are important for success in this position. Main responsibilities Design and deploy security controls for cloud and application infrastructure. Maintain and improve security standards in AWS environments. Manage and optimize IAM systems, including roles, policies, and access governance. Collaborate with engineering teams to embed security into system architecture and development processes. Identify vulnerabilities and develop mitigation strategies for infrastructure and applications.

Join Our Innovative Team as a Security Engineer Startale is on the lookout for a proactive and skilled Security Engineer who excels in a dynamic startup atmosphere. As a vital member of our team, you will collaborate closely with product owners and engineers to enhance the security posture across Startale's diverse ecosystem. Our offerings include a cutting-edge decentralized exchange with a fully on-chain order book (Strium), a user-centric application (StartaleApp), and a stablecoin (USDSC). This is a hands-on technical role with a strong focus on blue team tactics. You will be instrumental in testing our systems, identifying vulnerabilities, modeling threats to our products, and partnering with engineers to address any security gaps. Your collaboration will extend daily with Backend, Frontend, DevOps, and Blockchain engineering teams. Why This Role is Unique Be part of a team where your security efforts directly impact user funds and on-chain transactions. Take ownership of the security posture for complex projects like Strium, offering significant opportunities for professional growth. Have a direct influence on how product security is developed organization-wide. Focus on product security rather than merely maintaining compliance documentation. Work within a well-funded company while enjoying the speed and autonomy typical of a small team, backed by leading Japanese enterprises. Your Key Responsibilities Security Assessments & Penetration Testing: Execute hands-on security testing for our applications, APIs, and infrastructure. Simulate real-world attack scenarios to proactively identify vulnerabilities before they can be exploited. Threat Modeling: Develop threat models for new services and features, particularly focusing on Strium's trading engine and transaction flows. Vulnerability Triage & Remediation: Oversee the entire lifecycle of vulnerabilities from discovery to resolution, collaborating with engineers to ensure effective fixes. Vulnerability Disclosure & Bug Bounty: Manage incoming whitehat reports, validate findings, and communicate effectively with researchers.

Join our client, a statutory board under the Government of Singapore, as a Software Engineer specializing in device development to enhance the e-payment fare collection system.As a key member of the team, you will:Analyze, design, and develop integral devices for an integrated e-payment fare collection system.Explore innovative methods and technologies to elevate system performance.Tackle challenging issues that arise during development.Engage actively in the software development lifecycle using agile and iterative methodologies.

BitMEX seeks a Senior Offensive Security Engineer to join the Product Security team in Singapore. This position centers on maintaining critical security systems that protect the platform’s architecture. Collaboration with engineering and DevOps teams is a core part of the role, providing guidance on security best practices. Role overview This role focuses on safeguarding the platform by ensuring key security controls remain effective and up to date. The Senior Offensive Security Engineer will work closely with technical teams to identify risks and help implement practical solutions. What you will do Maintain and improve security systems that defend the platform’s infrastructure Support engineering and DevOps teams by advising on secure design and implementation Promote security best practices across the organization Location This position is based in Singapore.

Join Crypto Inc. as an AI Security Engineer, where you will play a pivotal role in safeguarding our advanced AI systems and ensuring the integrity of our digital infrastructure. In this dynamic environment, you will collaborate with cross-functional teams to identify vulnerabilities, implement robust security measures, and develop innovative solutions to combat emerging threats.

Join our dynamic tech team at manusai as a Senior Information Security Engineer. In this crucial role, you will spearhead the design, implementation, and enhancement of security measures across our extensive global multi-cloud environment. Your expertise will not only address security incidents but will also shape innovative security strategies for the future.Key ResponsibilitiesThreat Modeling & Incident Response: Establish and uphold global cloud security incident response protocols, craft comprehensive playbooks, and lead routine drills. Efficiently manage intricate security incidents, perform thorough root cause analyses (RCA), and implement safeguarding measures.Security Architecture & Operations: Conceptualize, deploy, and sustain security solutions across multi-cloud platforms (AWS, GCP, Azure), ensuring that architecture is scalable, resilient, and adaptable to future needs.Enterprise Security Leadership: Align security strategies with business objectives, enhancing the overall security maturity of the organization.Compliance & Automation: Ensure adherence to international security standards such as ISO 27001, ISO 27701, and SOC 2. Advocate for security automation and “Security as Code” initiatives to elevate operational efficiency.Vulnerability Management & Penetration Testing: Execute regular vulnerability assessments, risk evaluations, and penetration tests. Monitor emerging threats and coordinate remediation efforts effectively.QualificationsRequired:Bachelor’s degree in Computer Science, Cybersecurity, or a related discipline, coupled with a minimum of 3 years of experience in information security.Extensive knowledge in cloud security, with practical experience in at least two major cloud platforms (AWS, GCP, Azure) and associated security tools (e.g., AWS Security Hub, GCP Security Command Center).Proficient in Linux system security, including hardening, log analysis, intrusion detection, and incident response.Demonstrated ability to manage high-pressure security incidents and conduct effective post-incident reviews.In-depth knowledge of web and application security, with experience in penetration testing and code reviews.Preferred:Relevant certifications such as CISSP, CISM, or similar.Experience with security-related scripting and automation.

Join csit as a Cyber Security Researcher focusing on Emerging Technologies. This role is designed for innovative minds passionate about safeguarding digital infrastructures. You will conduct in-depth research and analysis on the latest cyber threats and develop strategies to mitigate risks associated with new technologies. Your contributions will be vital in enhancing the security posture of organizations in a rapidly evolving technological landscape.