1,335 Cybersecurity Engineer jobs in Singapore

• Conduct research & development to build new cyber security technologies
• Develop proof-of-concepts and use-case demonstrations of research outcome
• Prepare research proposals for grant applications to secure research funding

Requirement:

• Candidates with a PhD, Master or Bachelor Degree in Computer Science, Computer Engineering, or closely-related areas
• Prior experience in securing research grants with a good track record of peer-reviewed publications
• Prior R&D experience in the areas of post quantum cryptography, IoT/IIoT security, hardware security, mobile device security, vulnerability & threat research, deep learning, adversarial AI or explainable AI
• Strong programming and analytical skills
• Strong written and communication skills

Role and Responsibilities

• Assist in Cybersecurity project implementations to ensure that the application development team can deliver application solutions
• Create use cases for Cybersecurity project implementations based on project tender documents
• Conduct and perform various security tests, reviews, and audits
• Maintain security compliance and audit files on regular basis to upkeep with the security alerts and events for potential incidents
• Provide support to update, review, and refresh the Cyber Security frameworks, policies, standards, and guidelines in alignment with regulatory and industry standards
• Identifying best practices and staying up to date with emerging cyber threats

Requirements

• 5+ years of experience as Security or Cybersecurity engineer
• Experience in cybersecurity testing, audits, and compliance.
• Professional certifications (e.g., CISA, CRISC, CISSP, Security+) are advantageous.
• Degree in Computer Science or related technology disciplines with experience in Cybersecurity knowledge
• Possess initiative, positive attitude and strong passion in operation support
• Good communication skills and able to work independently

The Cybersecurity Engineer will be responsible for designing and implementing secure, resilient system architectures while ensuring security is embedded throughout the development lifecycle. This role requires a deep understanding of cybersecurity frameworks, threat modeling, and risk mitigation strategies to protect enterprise systems against evolving threats.

Design and implement robust security architectures for enterprise systems, applications, and cloud environments.

Develop security blueprints, reference architectures, and design patterns to standardize secure development practices.

Ensure security-by-design principles are integrated into all phases of the SDLC (Software Development Lifecycle).

Define security controls to mitigate risks from emerging technologies (e.g., cloud, IoT, AI).

Conduct threat modeling (e.g., STRIDE, DREAD) to identify vulnerabilities in system designs.

Perform security impact assessments for new business initiatives and technology deployments.

Ensure compliance with regulatory requirements (GDPR, HIPAA, PCI-DSS, SOC 2).

Align security architectures with industry standards (NIST CSF, ISO 27001, CIS, OWASP).

Collaborate with DevSecOps teams to integrate security into CI/CD pipelines.

Produce detailed security design documents, including: security architecture diagrams, data flow models with security controls, and encryption and access control policies

Support audits, penetration tests, and vulnerability assessments.

Maintain security baselines for systems and applications.

Ability to translate technical risks into business impacts.

Technical competencies in Threat Modeling Tools: Microsoft Threat Modeling Tool, OWASP Threat Dragon.

Strong analytical and problem-solving abilities.

Bachelor's/Master's in Cybersecurity, Computer Science, or related field.

Technical competencies in Security Frameworks: NIST, ISO 27001, CIS, MITRE ATT&CK.

3-5+ years in cybersecurity, with a focus on secure architecture design, risk assessment, or cloud security.

Technical competencies in Security Automation: Experience with IaC (Terraform, Ansible) and DevSecOps tools (GitLab, Jenkins).

Hands-on experience with: Cloud security (AWS/Azure/GCP) and hybrid environments, Identity & Access Management (IAM), PKI, and encryption, SIEM, EDR/XDR, firewalls, and network security.

Excellent communication and stakeholder management skills.

Relevant certifications (CISSP, CCSP, CISA, CISM, AWS/Azure Security, SABSA, TOGAF) are highly preferred.

(Job ID: )

Responsibilities:

• Manage post-sales activities for cybersecurity and network performance monitoring products.
• Lead and support large-scale local and regional project implementations.
• Provide on-site services including testing, deployment, and documentation.
• Deliver technical support to ensure high levels of customer satisfaction.
• Troubleshoot and resolve customer queries using knowledgebase resources.
• Participate in 24×7 maintenance standby support on a rotational basis.
• Communicate technical issues clearly and effectively to stakeholders.
• Maintain excellent written and verbal communication throughout all engagements.

Requirements:

• Minimum Diploma in Cyber Security, Computer Science, Computer Engineering or related field.
• Minimum 1 year of experience in IT network support and administration.
• Strong knowledge of routing and switching technologies.
• CCNA or CCSA certification required.
• Ability to work independently and collaboratively in a team.
• Eagerness to learn and adapt to new technologies.
• Strong communication and interpersonal skills.
• Analytical mindset with effective troubleshooting capabilities.
• Willingness to work extended hours and participate in standby duty.
• Self-motivated and proactive attitude.

We regret that only shortlisted candidates will be notified. However, rest assured that all applications will be updated to our resume bank for future opportunities.

Please kindly refer to the Privacy Policy of Good Job Creations for your reference:

EA Personnel Name: Zoe Lang Zhen Zhen

EA Personnel Registration Number: R

EA License No.: 07C5771

#SCR-zoe-lang

Why Join Us?

• Attractive Newcomer Bonus
• Career Progression & Development Opportunities
• Opportunity to Work Alongside an Innovative Team
• Comprehensive Leave Packages (e.g: additional leave, birthday leave, eldercare leave, marriage leave & gift, etc.)
• Annual Executive Health Screening

Job Responsibilities:

• Lead the design, installation, integration, testing, and commissioning of cybersecurity components across systems.
• Serve as the point of contact and incident manager for all cybersecurity events.
• Ensure cybersecurity controls comply with Client policies, regulatory standards, and industry best practices.
• Conduct risk assessments, Vulnerability Assessment and Penetration Testing (VAPT), and System Security Acceptance Testing (SSAT).
• Coordinate with contractors, third-party testers, and stakeholders on cybersecurity programs and schedules.
• Prepare, coordinate and maintain essential cybersecurity documentation, including but not limited to Threat Risk Assessments, Business Continuity, Disaster Recovery, Patch Management, Access Control, Network Protection, End Point Protection and Incident Management plans.
• Follow secure coding practices or System Development Life Cycle (SDLC) methodologies where applicable.
• Report identified risks affecting system confidentiality, integrity, availability, and safety promptly.
• Perform any other duties as assigned by superior.

Job Requirements:

• Minimum 10 years of experience in cybersecurity system implementation, design, integration, and commissioning.
• Hold at least one recognized cybersecurity certification (e.g., CISSP, CISM, or equivalent).
• Strong knowledge of cybersecurity frameworks, standards, and regulations (ISO 27001/27002, CCoP, or equivalent).
• Experience with critical infrastructure or large-scale systems.
• Experience leading cybersecurity projects and coordinating across multiple stakeholders.
• Proficient in risk assessment, incident management, VAPT, and security testing methodologies.
• Familiarity with Changi Airport Group cybersecurity standards or equivalent will be an added advantage.
• Excellent communication, problem-solving, and documentation skills.

Key Responsibilities:

• Design and Implement Security Solutions: Design, implement, and maintain secure systems, networks, and applications.

• Vulnerability Management: Conduct vulnerability assessments, penetration testing, and patch management.

• Incident Response: Develop and implement incident response plans, respond to security incidents.

• Security Monitoring: Monitor systems and networks for security threats, analyze logs, and implement security measures.

• Compliance: Ensure compliance with security regulations, standards, and best practices.

Requirements:

• Education: Bachelor's degree in Computer Science, Cybersecurity, or related field.

• Experience: Proven experience in cybersecurity engineering, security architecture, or related field.

• Technical Skills:

• Knowledge of security frameworks (NIST, ISO 27001, etc.)

• Experience with security tools (firewalls, IDS/IPS, etc.)

• Strong understanding of operating systems, networking, and cloud security.

• Certifications: CISSP, CEH, or equivalent certifications preferred.

Nice to Have:

• Experience with cloud security (AWS, Azure, GCP)

• Knowledge of scripting languages (Python, PowerShell)

• Familiarity with DevOps practices and tools.

Responsibilities:

• Round-the-clock surveillance of the Company's information assets using various cyber defence tools to monitor internal and external sources.
• Provide timely detection, identification and alerts of possible attacks/intrusions, anomalous activities, and misuse activities, and distinguish these incidents and events from benign activities.
• Use cyber defence tools for continuous monitoring and analysis of system activities to identify malicious activity.
• Analyse and respond to threats, software, and hardware vulnerabilities.
• Develop scripts, fine-tuning SIEM rules and solutions to automate the triage and analysis process.
• Provide incident response (IR) support when required.
• Produce actionable cyber threat intel from various threat intelligence sources, both open and commercial sources.
• Actively hunt for indicators of compromise (IOCs) and threat actor groups and tactics, techniques, and procedures (TTPs) in the environment.
• Investigate and assess alerts from our diverse security tools (EDR, SIEM, etc.) to determine the scope, impact, and appropriate response to potential incidents.
• Take decisive action to contain and mitigate threats, following our incident response playbooks and processes.
• Serve as a key point of contact during security incidents, providing clear and timely updates to technical and non-technical stakeholders across the organization.
• Handle and respond to enquiries on Change Requests and Service Requests.
• Perform user and application on-boarding activities within PAM.
• Assist in incident handling, including joint troubleshooting with vendors and clients, applicable to both remote and onsite support.
• Stay abreast of emerging cybersecurity threats, vulnerabilities, and regulatory requirements.
• Assist in the interpretation of cybersecurity and technology-related legislation.
• Participate in cybersecurity exercises to ensure the continued relevance and efficacy of the organization's response capabilities.
• Document and review the components of cybersecurity operations to ensure potential risks are considered.
• Ensure that all areas of cybersecurity are reviewed and covered comprehensively.
• Able to work shift, shift patterns may change according to business needs.
• Create and update device technical documentation to support system changes and configurations.
• Handle minor software upgrades, patches, and vulnerability fixes as released by vendors.
• Strong ability to interpret the information collected by network tools.
• Provide risk oversight and monitoring through independent reviews and objective assessments. This includes establishing monitoring processes.
• Collaborate with other departments and business units to ensure alignment on cybersecurity risk management practices.

Requirements:

• Degree or Diploma in Computer Science, Computer Engineering, or Information Security related fields.
• 2 years of experience working in a Security Operation Centre (SOC) or Computer Emergency Response Team (CERT/CIRT).
• A relevant industry certification (e.g., CISSP, CISM, CRISC) is highly desirable and scripting capabilities (i.e. Python, Bash or PowerShell) are a plus.
• Working experience with OWASP Top 10, CVSS, MITRE ATT&CK framework, Cyber Kill Chain and DevSecOps strongly preferred.
• Good knowledge of different types of network communication (e.g., Local Area Network, Wide Area Network, Metropolitan Area Network, Wireless Wide Area Network, Wireless local Area Network).
• Good knowledge of incident response and handling methodologies.
• Strong troubleshooting, analytical, and problem-solving skills.
• Good knowledge of backup policies, change management, and security patching processes.
• Team player with good communication, presentation, and interpersonal skills.
• Meticulous, self-motivated, and able to work under pressure.

Please be notified that only shortlisted candidates will be notified

Responsibilities:

• Develops and delivers user training and awareness programs to promote cybersecurity best practices across the organization
• Assist in the implementation and management of Governance, Risk, and Compliance (GRC) frameworks
• Conducts regular security awareness campaigns and training sessions for employees
• Monitors and reports on compliance with cybersecurity policies, standards, and regulations
• Supports the development and maintenance of cybersecurity policies, procedures, and guidelines
• Collaborates with various departments to ensure alignment with cybersecurity governance objectives
• Performs risk assessments and assist in the development of risk mitigation strategies
• Stays updated on the latest cybersecurity trends, threats, and regulatory requirements

Requirements:

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a relevant
• Minimum 2 years' of experience as a Cybersecurity Analyst or in a similar role, running user training and awareness campaigns
• Relevant certifications (e.g., CompTIA Security+, CISSP) are a plus
• Familiarity with Cybersecurity Governance, Risk, and Compliance (GRC) concepts and frameworks
• Strong understanding of cybersecurity principles and best practices
• Excellent communication and presentation skills with ability to work collaboratively with cross-functional teams

Our Address And Working Hours:

Seatrium Pioneer Yard

50 Gul Road

Singapore

(Island wide transport provided)

Mon - Thu: 8am - 5:15pm, Fri: 8am to 4:30pm

Interested candidates are invited to send us an updated resume with your current and expected salary and earliest availability.

We regret that only shortlisted candidates will be notified.

Please note that your personal data disclosed to Seatrium Limited and our group of companies, shall be used for the purposes of evaluation, and processing in accordance with our recruitment processes and policies. By providing your personal data, you have consented to the aforesaid purpose under the provisions of the Personal Data Protection Act 2012.

Job Overview

We seek a hands-on Cybersecurity Engineer with proven experience deploying and operationalizing enterprise security solutions. You will implement EDR, NDR, SIEM, CSPM, IAM, and PAM technologies for commercial/government clients while ensuring alignment with MITRE ATT&CK and compliance frameworks (NIST, ISO 27001, IM8). This role requires deep technical execution skills and solution integration expertise.

Core Responsibilities

Solution Deployment & Integration:

a) Endpoint: Deploy/manage CrowdStrike/SentinelOne (policy tuning, threat hunting packages)

b) NDR: Implement Darktrace/Vectra NDR with network segmentation enforcement

c) SIEM: Architect Splunk/Sumo Logic deployments (on-prem/cloud) with SOAR playbooks

d) Cloud Security: Configure CSPM (Wiz, Lacework), CNAPP (Prisma Cloud), and IaC scanning

e) IAM/PAM: Rollout CyberArk/Okta/PingIdentity (privileged session monitoring, RBAC workflows)

Technical Optimization:

a) Develop detection rules (Sigma, YARA) for APT groups targeting SEA Integrate solutions into CI/CD pipelines (Jenkins, GitLab)

b) Conduct solution hardening using CIS benchmarks

Client Delivery & Handover:

a) Lead, Develop, Conduct UAT & SSAT for assigned projects

b) Create operational runbooks, Design Documents, Configuration guide

c) Train client staff on solution management

Technical Requirements:

Solution Deployment Experience

a) EDR/XDR: CrowdStrike, SentinelOne, Microsoft Defender or equivalent

b) NDR: Darktrace, Vectra, ExtraHop or equivalent

c) SIEM/SOAR: Splunk ES, QRadar, Chronicle, Torq - Use case development, SOAR playbook automation

d) Cloud Security: Wiz, Prisma Cloud, AWS Security Hub - CSPM policy packs, cloud asset inventory

e) IAM/PAM: CyberArk, Okta, Azure AD PIM - Privileged access workflows, RBAC policy enforcement

Technical Competencies:

a) Scripting: Python/PowerShell for API integrations (e.g., SIEM-EDR correlation)

b) Networking: TCP/IP stack, Zero Trust segmentation (Zscaler, Illumio)

c) Cloud Platforms: AWS IAM, Azure Sentinel, GCP Security Command Center

d) Compliance: Implement controls for NIST 800-53, ISO 27001, IM8

Certifications:

Required: CISSP, vendor certs (e.g., CrowdStrike CCSF, Splunk Power User)

Cloud: AWS Security Specialty/Azure SC-200

IAM: CyberArk Defender/Okta Certified Professional

Experience & Qualification Requirements:

a) Bachelor's degree in IT, Cyber Security or equivalent

b) 5+ years deploying cybersecurity solutions:

c) EDR/NDR: 3+ enterprise deployments (500+ endpoints)

d) SIEM: 2+ full lifecycle implementations

e) Cloud Security: CSPM/IAM rollout for AWS/Azure/GCP

f) PAM: CyberArk/Thycotic deployment with vaulting solutions

g) Govt project exposure (IM8, CSA Cyber Essentials) preferred

h) Excellent communication and interpersonal skills.

i) Ability to work independently and within a team