1,468 Cybersecurity jobs in Singapore

• Root cause analysis and assist in developing incident response plans and playbooks.
• Maintain detailed documentation of security incidents and response actions.
• Administer, fine-tune, and enhance the organization's SIEM system to ensure effective threat detection.
• Create and manage detection rules, correlation logic, alerts, dashboards and reports.
• Continuously improve SIEM content to align with evolving threats and business needs.
• Ensure accurate log collection and system performance monitoring.
• Perform regular vulnerability scans and assist IT teams in prioritizing and addressing security issues.
• Support risk assessments and recommend appropriate security controls and mitigation strategies.
• Track and document vulnerabilities, risks and remediation efforts.

Requirements:

• Bachelor's Degree or Advanced Diploma in Cybersecurity, Computer Science, Information Technology or a related field.
• 1–3 years of experience in a cybersecurity role, preferably involving SIEM content development, incident response or network security.
• Strong knowledge of cybersecurity principles, security operations, and threat mitigation techniques.
• Hands-on experience with SIEM tools (e.g., Splunk, QRadar, ArcSight).
• Familiarity with log analysis, network protocols, and common attack vectors.
• Proficiency in security tools such as firewalls, intrusion detection/prevention systems, endpoint protection and vulnerability scanners.
• Scripting knowledge (e.g., Python, PowerShell) for automation is a plus.
• Understanding of frameworks like MITRE ATT&CK, and risk assessment methodologies.
• Strong analytical thinking and attention to detail.
• Effective communicator with the ability to explain technical issues to non-technical audiences.
• Team-oriented with a strong sense of responsibility and initiative.
• Ability to handle high-pressure situations and on-call incidents when required.
• CompTIA Security+, CEH, CISSP, GSEC or relevant vendor certifications (e.g., Splunk Certified Admin) preferred.

As a Cyber Threat Detection Engineer, you will be responsible for designing, developing and maintaining threat detection use cases across SIEM, EDR, NDR and cloud-native security platforms. You will proactively identify detection gaps, research adversary tactics (MITRE ATT&CK) and translate threat intelligence into actionable detections.

• You will monitor, analyze and optimize detection rules to reduce false positives while maintaining high fidelity alerts.
• Collaborate with Security Operations and Incident Response teams to validate detections and support investigations.
• Automate detection engineering processes using scripting and SOAR capabilities.
• Conduct regular testing, purple teaming and threat hunting exercises to validate effectiveness of detections.

We are looking for a candidate with a Bachelor's degree in Cybersecurity, Computer Science or related field (or equivalent hands-on experience).

• A minimum of 5 years of experience in detection engineering, threat hunting, SOC or incident response.
• A strong understanding of security monitoring tools (e.g., Splunk, Sentinel, QRadar, Elastic).
• Familiarity with MITRE ATT&CK framework and threat intelligence integration.
• Proficiency in scripting languages (Python, PowerShell, etc.) for automation and detection logic.
• Strong problem-solving skills with the ability to work in a fast-paced environment.

NCS is a leading technology services firm that operates across the Asia Pacific region in over 20 cities, providing consulting, digital services, technology solutions, and more. We believe in harnessing the power of technology to achieve extraordinary things, creating lasting value and impact for our communities, partners, and people. Our diverse workforce of 13,000 has delivered large-scale, mission-critical, and multi-platform projects for governments and enterprises in Singapore and the APAC region.

As a Presales consultant the incumbent will help to assist in solution and bid reviews to ensure completeness and cost effectiveness. He is also expected to function as a Cyber Security Evangelist and have a good understanding the security landscape, architectural models and solutions credibly, and possess the ability to discuss and present to C-level stakeholders and technical members.

What will you do?

• Manage and maintain a professional business relationship with our clients through regular communication, on-site meetings and executive briefings.
• Help clients understand how they can integrate NCS Cyber Security capabilities into their security needs
• Lead and innovate the cybersecurity solution within the client’s environment
• Influence the cyber security posture through direct contribution and consultation with in flight projects
• Provide proactive cyber security technical guidance and expertise to clients to drive cyber security operations excellence
• Be responsible for the design of complex security solutions that integrate from (Application, Network, Cloud) ICT (Information Communication Technology) and OT (Operation Technology) components into an effective and efficient cyber security design
• Provide cyber security leadership and expertise to ensure the ongoing Confidentiality, Integrity, and Availability of systems and information
• Remain abreast of emerging technologies, industry developments and cyber security
• Support the delivery of security architecture services demonstrating specialization in cyber security
• Lead in initial solution design, project plan & costing.

The ideal candidate should possess:

• Bachelor's degree in Computer Science, Cybersecurity, or related field; relevant certifications
• 5 years experience working in Network/Security roles
• Comfortable working in a project based / client serving model
• Help drive pursuits and engage in complex deals, matching outcomes to expectations
• Ability to work with diverse and dynamic teams
• Ability to work in a matrix organization
• Ability to lead as a Delivery Architect during the project implementation
• Due to project (Government), only Singapore Citizen will be considered

We are driven by our AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity —and we seek individuals who embody these values in both their professional and personal lives. We are committed to our Impact: Valuing our clients, Growing our people, and Creating our future .

Together, we make the extraordinary happen .

Learn more about us at ncs.co and visit our LinkedIn career site.

Cyber Security Agency of Singapore

Contract

What the role is

As a Consultant/ Senior Consultant in Attack Simulation Group, you required to perform vulnerability assessment, penetration testing (Application and Infrastructure), as well as adversarial attack simulation (Red Teaming or Purple Teaming) activities on Enterprise and CII systems (Operational Technology & Telecommunications). You will also be given the opportunity to do research and attend trainings to ensure that your skills remain relevant.

What you will be working on

Responsibilities

• Understanding of Penetration Testing Methodologies and the MITRE ATT&CK/FiGHT Framework

• Ability to automate tasks by writing basic scripts/programs.

• Basic hands-on experience with at least deploying cloud or on-prem infrastructure to facilitate the execution of red team exercises.

What we are looking for

Requirements

• Relevant qualifications in Cyber/Info Security or Computer Science/Engineering

• At least 5- 8 years of relevant working experience

• At least two years of experience in
o Enterprise and Cloud attack simulation, and/or
o OT engineering, operations, cybersecurity, and/or
o Telecommunications engineering, operations, cybersecurity

• CRT/OSCP or equivalent certifications in attack simulation is preferred, CCT/CCSAS/CCSAM is desirable.

• Passionate about cybersecurity, technically hands-on, willing to learn, and curious about the inner workings of Enterprise/OT/Telecommunications technologies and exploiting their vulnerabilities.

• Excellent analytical, conceptualisation and problem-solving skills

• Strong communications and interpersonal skills to collaborate with multiple stakeholders.

• Familiarity with security principles, policies, standards, and industry best practices
If you share our passion to make a difference in the cyber security landscape, take up the challenge and now.
All applicants will be notified on whether they are shortlisted or not within 4 weeks of the closing date of this job posting.
For any issues with the application, you may drop your resume with us at
Note: CSA will be shifting to Punggol Digital District (PDD) in year 2026.

About Cyber Security Agency of Singapore

About the Cyber Security Agency of Singapore
Established in 2015, the Cyber Security Agency of Singapore (CSA) seeks to keep Singapore's cyberspace safe and secure to underpin our Nation Security, power a Digital Economy and protect our Digital Way of Life. It maintains an oversight of national cybersecurity functions and works with sector leads to protect Singapore's Critical Information Infrastructure. CSA also engages with various stakeholders to heighten cyber security awareness, build a vibrant cybersecurity ecosystem supported by a robust workforce, pursue international partnerships and drive regional cybersecurity capacity building programmes. CSA is part of the Prime Minister's Office and is managed by the Ministry of Digital Development and Information. For more news and information, please visit

About your application process

If you do not hear from us within 4 weeks of the job ad closing date, we seek your understanding that it is likely that we are not moving forward with your application for this role. We thank you for your interest and would like to assure you that this does not affect your other job applications with the Public Service. We encourage you to explore and for other roles within Cyber Security Agency of Singapore or the wider Public Service.

At our core, our passion is to craft novel AI and technology solutions that will shape tomorrow . We deploy cutting-edge technology that builds on cloud computing to proliferate AI, data and analytics solutions tailored to drive innovation and transform businesses.

With our desire to push the boundaries of technology, we partner closely with our clients. Guiding their transformation with agility, we apply a structured technology transformation process attuned to their unique challenges.

At Knovel Engineering, we blend technology with creativity to build unique solutions tailored for our customers.

We are seeking a cybersecurity engineer with proven hands-on penetration testing experience (e.g., OSCP-certified) and strong knowledge of cybersecurity products and solutions. The Cybersecurity Engineer will contribute to vulnerability assessments and penetration testing, while also supporting broader cybersecurity operations, product deployments, and project delivery. The role requires both technical competence and professional maturity, as you will engage directly with customers and stakeholders.

1. Vulnerability Assessment & Penetration Testing
   • Conduct VAPT on web applications, networks, and systems to identify and validate security risks.
   • Use industry-standard tools (e.g., Burp Suite, Nmap, Nessus, Metasploit, Wireshark) to assess and exploit vulnerabilities.
   • Perform source code reviews and mobile application penetration testing to identify security flaws in applications beyond infrastructure testing.
   • Document findings, prepare detailed reports, and recommend remediation measures.
   • Support internal R&D to improve testing methodologies and keep updated on emerging threats and attack techniques.
2. Cybersecurity Operations & Product Support
   • Operate and support security tools and solutions (e.g., Trend Micro XDR, Palo Alto, Checkpoint, FortiGate, RSA, BeyondTrust).
   • Collaborate with MSSPs and internal teams to monitor, investigate, and respond to incidents.
   • Participate in patching, upgrades, and preventive maintenance for security infrastructure.
3. Project Delivery & Customer Engagement
   • Support security-related project implementation and operationalization of products/solutions.
   • Manage or assist in project tasks such as scheduling, tracking deliverables, and liaising with vendors/customers.
   • Act as a technical point of contact during client engagements, demonstrating professionalism and clear communication.
   • Provide timely updates, service reports, and ensure SLA compliance.
   • Recommend enhancements to improve security operations, efficiency, and resilience.
   • Stay current with cybersecurity trends, new attack vectors, and toolsets.
   • Perform other duties as assigned by the Manager to support team and organizational goals.

• Diploma or Bachelor’s degree in Computer Science, Information Security, or related discipline.
• A minimum of 2 - 5 years of experience in cybersecurity, including hands-on VAPT.
• Possessed certificates in OSCP, CREST (CPSA, CRT).
• Strong understanding of network protocols, web application architectures, and common vulnerabilities (e.g., OWASP Top 10).
• Proficiency with penetration testing tools (Burp Suite, Nmap, Nessus, Metasploit, Wireshark).
• Strong analytical, problem-solving, and reporting skills.
• Effective communication skills with the ability to engage directly with customers and cross-functional teams.
• Professional maturity, integrity, and ability to handle customer-facing situations confidently.
• Ability to manage tasks independently, while also collaborating effectively in a team.
• Adaptable and able to work under pressure with tight SLAs.

• Additional certifications are advantageous: CISSP, OSCE3, Security+, cloud security (AWS/Azure/GCP).
• Knowledge and experience with endpoint, network, and various security products (e.g., Palo Alto, FortiGate, Microsoft Defender, Darktrace).
• Familiarity with vulnerability management, incident response, and security monitoring processes.
• Scripting or automation skills in Python, Bash, or PowerShell are a plus.

• Competitive remuneration and benefits.
• Flat hierarchy with minimal bureaucracy.
• Learning opportunities through courses, seminars, and conferences.
• Be at the forefront of innovation and gain access to cutting-edge technologies.
• Contribute to enhancing Singapore’s position as a thriving innovation hub.

• Seniority level: Mid-Senior level
• Employment type: Full-time
• Job function: Information Technology and Consulting
• Industries: IT Services and IT Consulting, Information Services, and Software Development

• Conduct research & development to build new cyber security technologies
• Develop proof-of-concepts and use-case demonstrations of research outcome
• Prepare research proposals for grant applications to secure research funding

Requirement:

• Candidates with a PhD, Master or Bachelor Degree in Computer Science, Computer Engineering, or closely-related areas
• Prior experience in securing research grants with a good track record of peer-reviewed publications
• Prior R&D experience in the areas of post quantum cryptography, IoT/IIoT security, hardware security, mobile device security, vulnerability & threat research, deep learning, adversarial AI or explainable AI
• Strong programming and analytical skills
• Strong written and communication skills

Role and Responsibilities

• Assist in Cybersecurity project implementations to ensure that the application development team can deliver application solutions
• Create use cases for Cybersecurity project implementations based on project tender documents
• Conduct and perform various security tests, reviews, and audits
• Maintain security compliance and audit files on regular basis to upkeep with the security alerts and events for potential incidents
• Provide support to update, review, and refresh the Cyber Security frameworks, policies, standards, and guidelines in alignment with regulatory and industry standards
• Identifying best practices and staying up to date with emerging cyber threats

Requirements

• 5+ years of experience as Security or Cybersecurity engineer
• Experience in cybersecurity testing, audits, and compliance.
• Professional certifications (e.g., CISA, CRISC, CISSP, Security+) are advantageous.
• Degree in Computer Science or related technology disciplines with experience in Cybersecurity knowledge
• Possess initiative, positive attitude and strong passion in operation support
• Good communication skills and able to work independently

The Cybersecurity Engineer will be responsible for designing and implementing secure, resilient system architectures while ensuring security is embedded throughout the development lifecycle. This role requires a deep understanding of cybersecurity frameworks, threat modeling, and risk mitigation strategies to protect enterprise systems against evolving threats.

Design and implement robust security architectures for enterprise systems, applications, and cloud environments.

Develop security blueprints, reference architectures, and design patterns to standardize secure development practices.

Ensure security-by-design principles are integrated into all phases of the SDLC (Software Development Lifecycle).

Define security controls to mitigate risks from emerging technologies (e.g., cloud, IoT, AI).

Conduct threat modeling (e.g., STRIDE, DREAD) to identify vulnerabilities in system designs.

Perform security impact assessments for new business initiatives and technology deployments.

Ensure compliance with regulatory requirements (GDPR, HIPAA, PCI-DSS, SOC 2).

Align security architectures with industry standards (NIST CSF, ISO 27001, CIS, OWASP).

Collaborate with DevSecOps teams to integrate security into CI/CD pipelines.

Produce detailed security design documents, including: security architecture diagrams, data flow models with security controls, and encryption and access control policies

Support audits, penetration tests, and vulnerability assessments.

Maintain security baselines for systems and applications.

Ability to translate technical risks into business impacts.

Technical competencies in Threat Modeling Tools: Microsoft Threat Modeling Tool, OWASP Threat Dragon.

Strong analytical and problem-solving abilities.

Bachelor's/Master's in Cybersecurity, Computer Science, or related field.

Technical competencies in Security Frameworks: NIST, ISO 27001, CIS, MITRE ATT&CK.

3-5+ years in cybersecurity, with a focus on secure architecture design, risk assessment, or cloud security.

Technical competencies in Security Automation: Experience with IaC (Terraform, Ansible) and DevSecOps tools (GitLab, Jenkins).

Hands-on experience with: Cloud security (AWS/Azure/GCP) and hybrid environments, Identity & Access Management (IAM), PKI, and encryption, SIEM, EDR/XDR, firewalls, and network security.

Excellent communication and stakeholder management skills.

Relevant certifications (CISSP, CCSP, CISA, CISM, AWS/Azure Security, SABSA, TOGAF) are highly preferred.