410 Appsec Engineer jobs in Singapore

Security Software Engineer, Security Engineering
Location:
Team:
Technology
Employment Type:
Regular
Job Code:
O8806
Share this listing:
Responsibilities
About the TeamAs part of the Security Engineering team, we are responsible for supporting the company's construction of security capabilities and platform services, combining other teams to create efficient and high-quality service docking capabilities, enhancing interactive experience, and lowering the user's barriers to understanding and using security services.ResponsibilitiesWe are looking for Security Software Engineers to join our Security Engineering team in building the next-generation of ByteDance's product security & privacy infrastructure that furthers our system security and user data privacy protection level, which will impact all ByteDance's products globally. In addition, you will also have opportunities to work closely with product teams across the world. Together we will identify opportunities, define innovative ways to build our users a safe and trustworthy environment, and help us shape the future of ByteDance.- Research, design, develop, test, maintain and continuously improve ByteDance's product security & privacy Infrastructure and softwares.- Analyse user needs and security & privacy objectives, develop software solutions, applying principles and techniques of computer science, engineering, and mathematical analysis.- Update Software, enhances existing software capabilities. Develop and direct software testing and validation procedures to optimize reliability, availability and performance of globally distributed systems.- Work with multiple cross-functional global teams to integrate hardware and software systems and develop specifications and performance requirements, to deliver high-quality work in rapid product development.- Deploy, troubleshot and operate large distributed systems.- Manage individual project priorities, deadlines and deliverables
Qualifications
Minimum Qualifications- Bachelor's degree and or above in Computer Science, Computer Engineering or other relevant majors.- Strong knowledge of data structures and algorithms- Proficiency in at least one server library / framework like Express, Koa, Gin, Kite, Django, etc and at least one kind of database like MySQL, Redis, MongoDB, Hive, ClickHouse, ES, etc and at least one kind of message queue like Kafka, RocketMQ, etc- Understanding of load-balance, container virtualization, familiarity with NGINX, Docker, K8s, Serverless, etc- Proficiency in TypeScript, CSS and various layouts, at least one kind of general purpose programming language like Node.js etc- Understanding of component-based development ideas, familiarity with React.js, Vue.js, or any other equivalent library / framework- Excellent programming, debugging, and optimization skills in general purpose programming languagesPreferred Qualifications- Experience in cloud-native security services and infrastructure such as Key Management System (KMS), or Public Key Infrastructure (PKI) to serve as a foundation for production infrastructure security. Experience in securing software supply chains to ensure source and build integrity at any stage of the software lifecycle.- Experience with two or more general purpose programming languages including but not limited to: Go, Node.js, Java, or Python. Preferred familiarity in Rust.
Job Information
About Us
Founded in 2012, ByteDance's mission is to inspire creativity and enrich life. With a suite of more than a dozen products, including TikTok, Lemon8, CapCut and Pico as well as platforms specific to the China market, including Toutiao, Douyin, and Xigua, ByteDance has made it easier and more fun for people to connect with, consume, and create content.
Why Join ByteDance
Inspiring creativity is at the core of ByteDance's mission. Our innovative products are built to help people authentically express themselves, discover and connect – and our global, diverse teams make that possible. Together, we create value for our communities, inspire creativity and enrich life - a mission we work towards every day.
As ByteDancers, we strive to do great things with great people. We lead with curiosity, humility, and a desire to make impact in a rapidly growing tech company. By constantly iterating and fostering an "Always Day 1" mindset, we achieve meaningful breakthroughs for ourselves, our Company, and our users. When we create and grow together, the possibilities are limitless. Join us.
Diversity & Inclusion
ByteDance is committed to creating an inclusive space where employees are valued for their skills, experiences, and unique perspectives. Our platform connects people from across the globe and so does our workplace. At ByteDance, our mission is to inspire creativity and enrich life. To achieve that goal, we are committed to celebrating our diverse voices and to creating an environment that reflects the many communities we reach. We are passionate about this and hope you are too.
#J-18808-Ljbffr

• Hands-on experience working on AWS
• Hands-on experience with containerization using Docker, and Kubernetes
• Experience with SIEM tools and log analysis for threat detection.
• Hands-on experience with configuration management systems such as Terraform
• Hands-on experience with production deployments such as Kubernetes and automating provisioning with IaC best practices.
• Proficiency in applying security patches and vulnerability management across cloud and containerized environments.
• Configure and maintain the CICD pipelines incorporating streamlined change and release management process
• Implement scripts to automate server, CICD and other relevant tasks
• Hands-on experience with incident response, including following and refining security playbooks.
• Programming knowledge in python, bash
• Security certifications for AWS (such as AWS Certified Security – Specialty) and Kubernetes (such as Certified Kubernetes Security Specialist or equivalent) are advantageous

Requirements
Hands-on experience working on AWS
Hands-on experience with containerization using Docker, and Kubernetes
Experience with SIEM tools and log analysis for threat detection.
Hands-on experience with configuration management systems such as Terraform
Hands-on experience with production deployments such as Kubernetes and automating provisioning with IaC best practices.
Proficiency in applying security patches and vulnerability management across cloud and containerized environments.
Configure and maintain the CICD pipelines incorporating streamlined change and release management process
Implement scripts to automate server, CICD and other relevant tasks
Hands-on experience with incident response, including following and refining security playbooks.
Programming knowledge in python, bash
Security certifications for AWS (such as AWS Certified Security – Specialty) and Kubernetes (such as Certified Kubernetes Security Specialist or equivalent) are advantageous.
#J-18808-Ljbffr

Security Software Engineer - Offensive Security

What's on the offer

• Perm role
• Location : Singapore - Remote

Core Focus Areas

1. Offensive Security Engineering / R&D – Build tools, simulate attacker behavior, automate red team operations.
2. Cloud Infrastructure & Scalability – Design cloud-native (AWS/GCP/Azure) architectures to handle large-scale attack simulations or threat data.
3. Data Pipeline & Big Data Processing – Handle real-time data ingestion, analysis, and visualization related to vulnerabilities or attack surface.
4. Programming & Automation – Python, Go, or similar languages to develop offensive security tools and automation scripts.
5. Innovation & Research – Experiment with new attack vectors, participate in adversarial simulations, and push security R&D forward.

Preferred Background

• 2–5 years in software engineering or security engineering .
• Exposure to Red Teaming, Exploit Development, or Security Research .
• Understanding of MITRE ATT&CK , vulnerability management , or CTF competitions .
• Cloud certifications (AWS/GCP/Azure) are a plus.

• Hands-on experience working on AWS
• Hands-on experience with containerization using Docker, and Kubernetes
• Experience with SIEM tools and log analysis for threat detection.
• Hands-on experience with configuration management systems such as Terraform
• Hands-on experience with production deployments such as Kubernetes and automating provisioning with IaC best practices.
• Proficiency in applying security patches and vulnerability management across cloud and containerized environments.
• Configure and maintain the CICD pipelines incorporating streamlined change and release management process
• Implement scripts to automate server, CICD and other relevant tasks
• Hands-on experience with incident response, including following and refining security playbooks.
• Programming knowledge in python, bash
• Security certifications for AWS (such as AWS Certified Security – Specialty) and Kubernetes (such as Certified Kubernetes Security Specialist or equivalent) are advantageous

As a Mobile Security Software Engineer in the Mobile Security Group, you will join a Scrum team and participate in the full software lifecycle, from design and implementation to validation and deployment of mobile security libraries on various platforms, including iOS, Android, and Windows UWP. These SDKs are critical for ensuring the security of industrial mobile applications, minimizing the risk of compromise.

Responsibilities:

• Design, prototype, implement, and validate mobile security libraries on platforms such as Android, iOS, and Windows UWP to provide robust first-line defense for mobile products.
• Work with agile (Scrum) methodologies, continuous integration (CI), build automation, and testing tools like Jenkins, CMake.
• Stay informed about the latest security threats and mobile platform developments.
• Develop reusable and generic security components and services for all mobile teams across different business lines worldwide.
• Code in a variety of languages, including mobile high-level languages (Objective-C, Swift, Java), scripting languages (Python, Bash), and low-level languages (C).
• Collaborate with developers from various business lines to understand their use cases and support stakeholders' deployment, maintenance, and certification efforts.
• Assess security risks of mobile solutions by identifying assets, potential attackers, and relevant mitigations.
• Ensure that code adheres to both quality and security standards.
• Conduct research on new threats and vulnerabilities in the mobile industry to provide timely solutions and recommendations.

Requirements:

• Bachelor's degree in information security, Computer Science, Computer Engineering, or a related field.
• Experienced in mobile software development or C development is preferred.
• Strong programming skills and experience with native development (C/C++) are essential
• Knowledge and/or experience with iOS and Android architecture is a plus.
• Passion for the Mobile Security domain and a willingness to deepen your expertise.
• Ability to work independently and collaboratively as a team player.
• Motivated, proactive, and a strong problem solver with excellent analytical skills.
• Comfortable in a fast-paced, dynamic environment and capable of working on diverse topics.

Other information:

• Working Location: One North
• Working Hours: Monday - Friday, 9am - 6pm

Job Scope
Collaborate with cyber threat experts to enhance information systems security through the design and creation of innovative, creative defence tools
Conduct exploratory analysis and reverse engineering of emerging malware defence technologies and validate their effectiveness for protecting various systems such as enterprise servers, computers, mobile devices, network communications etc.
Design, develop and implement innovative software protection solutions to counter cyber threats
Investigate and analyse security incidents to refine existing software security strategies and solutions
Requirements
Degree in Infocomm Security, Computer Science, Computer/Electrical Engineering, Information Technology or equivalent
Strong interest and passion for the field of Infocomm Security
Strong background in programming
Strong background in C/C++ is an added advantage
Senior and entry-level positions available
Applicants must be Singapore Citizens
As CSIT is an agency under the Ministry of Defence (Singapore), only Singapore Citizens will be considered.
#J-18808-Ljbffr

Join to apply for the
Cyber Security Software Engineer
role at
Centre for Strategic Infocomm Technologies (CSIT) .
Key responsibilities include:
Collaborating with cyber threat experts to enhance information systems security through designing and creating innovative defence tools.
Conducting exploratory analysis and reverse engineering of emerging malware defence technologies and validating their effectiveness for protecting systems such as enterprise servers, computers, mobile devices, and network communications.
Designing, developing, and implementing innovative software protection solutions to counter cyber threats.
Investigating and analyzing security incidents to refine existing software security strategies and solutions.
Job Scope
Collaborate with cyber threat experts to enhance information systems security through the design and creation of innovative defence tools.
Conduct exploratory analysis and reverse engineering of emerging malware defence technologies and validate their effectiveness for protecting various systems.
Design, develop, and implement innovative software protection solutions to counter cyber threats.
Investigate and analyze security incidents to refine existing strategies and solutions.
Requirements
Degree in Infocomm Security, Computer Science, Electrical/Electronic Engineering, Information Technology or equivalent.
Strong interest and passion for Infocomm Security.
Strong programming background.
Proficiency in C/C++ is an advantage.
Open to senior and entry-level applicants.
Applicants must be Singapore Citizens. As CSIT is an agency under the Ministry of Defence (Singapore), only Singapore Citizens will be considered.
Note: Only Singapore Citizens will be considered as CSIT is an agency under the Ministry of Defence (Singapore).
Seniority level
Entry level
Employment type
Full-time
Job function
Engineering and Information Technology
Industries
IT Services and IT Consulting
Referrals can increase your chances of interviewing at CSIT. Sign in to set job alerts for related roles.
#J-18808-Ljbffr