610 Cybersecurity Specialist jobs in Singapore

Join us as a Cybersecurity Specialist through our Alpha Specialist Training Programme (ASTP), a structured and fully sponsored pathway designed to launch your career in cybersecurity. Whether you're a fresh graduate or making a career switch, Red Alpha equips you with practical skills, industry-recognised certifications, and a guaranteed deployment into meaningful cybersecurity roles.

You'll undergo hands-on, in-person training guided by industry experts. The training covers areas such as cyber defence, incident response, threat intelligence, and offensive security, preparing you for real-world scenarios and roles across both public and private sectors.

After completing the programme, you may be deployed into one of many cybersecurity roles, depending on your aptitude, interest, and hiring partner needs. These include (but are not limited to):

• Cybersecurity Analyst
• Incident Responder
• Cyber Threat Intelligence Analyst
• Penetration Tester
• Cybersecurity Engineer or Architect
• Cybersecurity Solutions Specialist

• Learn how to detect, respond to, and prevent cybersecurity threats
• Gain hands-on experience with tools like Splunk, Wireshark, Metasploit, Sysinternals Suite, and more
• Understand frameworks like MITRE ATT&CK, OWASP Top 10, and NIST
• Work on simulations and real-world case studies under expert guidance
• Prepare for certifications such as GCIH and OSCP
• Receive ongoing mentorship and career support

No prior IT or cybersecurity background is needed. We're looking for:

• A strong interest in technology and digital security
• Problem-solving mindset and resilience
• Eagerness to learn and adapt
• Good communication and teamwork skills

All selected candidates will undergo a 20-week, fully sponsored on-job-training with allowance, before being deployed full-time for 3 years.

Job no:

Work type: Full Time

Categories: Corporate Positions

The IT department in NTUC First Campus manages and maintains the organization's technology applications and infrastructure to ensure operational efficiency and secure organizational resilience.

As a Cybersecurity Specialist, you will be responsible for security risk assessments, cybersecurity monitoring and operations. You will report to the Cybersecurity Manager and provide support in all aspects of cybersecurity for NTUC First Campus, to identify, analyze and mitigate cybersecurity risks in order to safeguard personal data, protect the organization's systems and ensure compliance with relevant regulations and standards.

Key Responsibilities

Primary Point of Contact, and First Responder (monitoring and responding to alerts from Managed Services)

Perform log analysis, investigate and respond to security incidents, including suspicious activities, phishing attempts, malware infections and data breaches.

Collaborate with various teams to investigate, contain and remediate security incidents.

Perform security risk assessments, formulate and advise on a risk treatment plan

Review security testing reports (e.g. vulnerability assessment, penetration testing and secure code review) and work with application teams for remediation

Coordinate cybersecurity awareness activities (e.g. newsletters, trainings, phishing campaigns)

Support and administer cybersecurity operations using enterprise security solutions (e.g. onboarding of privileged accounts to PAM, implementing WAF for website protection, and reviewing firewall rules, etc.)

Work closely with Infrastructure and End User Support teams to identify and address any risks and gaps in the infrastructure, endpoints, and application systems

Collaborate with third-party vendors and contractors to ensure the security of outsourced systems and services.

Assist the business in performing business impact analysis and maintaining a cybersecurity risk register

Support vendor due-diligence process and help to guide overall third-party risk management efforts

Support both internal audit and external audits (e.g. ISO 27001, NIST, OWASP)

Education

Bachelor's degree in Computer Science, Information Technology, Cybersecurity or a related field

Relevant professional certifications such as CISSP, CISM, or CISA are preferred.

Experience

Minimum of 3 years of experience in cybersecurity

Experience with security technologies such as firewalls, intrusion detection/prevention systems, and data encryption.

Has knowledge in security technologies such as Antivirus/Endpoint Detection and Response (EDR), Privilege Access Management (PAM), and Web Application Firewall (WAF)

Familiarity with security assessment tools and techniques, including vulnerability scanning and penetration testing.

Experience in vendor and project management

Skills and Attributes

Excellent communication skills and the ability to explain complex technical concepts to non-technical stakeholders.

Strong analytical and problem-solving skills

Highly driven and willing to learn

Advertised: 10 Sep 2025 Singapore Standard Time

Applications close: 31 Dec 2025 Singapore Standard Time

POSITION OVERVIEW

As a Cybersecurity Specialist, you will be responsible for security risk assessments, cybersecurity monitoring and operations. You will report to the Cybersecurity Manager and provide support in all aspects of cybersecurity for NTUC First Campus, to identify, analyze and mitigate cybersecurity risks in order to safeguard personal data, protect the organization's systems and ensure compliance with relevant regulations and standards.

Key Responsibilities

• Primary Point of Contact, and First Responder (monitoring and responding to alerts from Managed Services)
• Perform log analysis, investigate and respond to security incidents, including suspicious activities, phishing attempts, malware infections and data breaches.
• Collaborate with various teams to investigate, contain and remediate security incidents.
• Perform security risk assessments, formulate and advise on a risk treatment plan
• Review security testing reports (e.g. vulnerability assessment, penetration testing and secure code review) and work with application teams for remediation
• Coordinate cybersecurity awareness activities (e.g. newsletters, trainings, phishing campaigns)
• Support and administer cybersecurity operations using enterprise security solutions (e.g. onboarding of privileged accounts to PAM, implementing WAF for website protection, and reviewing firewall rules, etc.)
• Work closely with Infrastructure and End User Support teams to identify and address any risks and gaps in the infrastructure, endpoints, and application systems
• Collaborate with third-party vendors and contractors to ensure the security of outsourced systems and services.
• Assist the business in performing business impact analysis and maintaining a cybersecurity risk register
• Support vendor due-diligence process and help to guide overall third-party risk management efforts
• Support both internal audit and external audits (e.g. ISO 27001, NIST, OWASP)

Education

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity or a related field
• Relevant professional certifications such as CISSP, CISM, or CISA are preferred.

Experience

• Minimum of 3 years of experience in cybersecurity
• Experience with security technologies such as firewalls, intrusion detection/prevention systems, and data encryption.
• Has knowledge in security technologies such as Antivirus/Endpoint Detection and Response (EDR), Privilege Access Management (PAM), and Web Application Firewall (WAF)
• Familiarity with security assessment tools and techniques, including vulnerability scanning and penetration testing.
• Experience in vendor and project management

Skills and Attributes

• Excellent communication skills and the ability to explain complex technical concepts to non-technical stakeholders.
• Strong analytical and problem-solving skills
• Highly driven and willing to learn

Company description:

Changi Airport Group (CAG) is the manager of Singapore Changi Airport, a leading air hub in Asia and one of the world's most awarded airports. As airport manager, CAG performs the key functions of airport operations, air hub development, retail and commercial activities, infrastructure development and airport emergency services. CAG also manages Seletar Airport, and through its subsidiary, Changi Airports International, it takes Changi's presence beyond Singapore's shores through consultancy projects and investments in foreign airports. Come join us today

Job description:

Do you want to help secure the airport systems, applications and infrastructure? Are you keen on cybersecurity technology and learning about new cyber threats? If yes, then you may be a good fit for a job as a Cybersecurity Specialist

About the Role:

Your role is essential for defending Changi's airport systems, infrastructure and digital assets from cyberattacks and data breaches. You will have various responsibilities, such as:

Finding and reducing vulnerabilities: To assess the cybersecurity aspects of the design proposals for different systems, applications and infrastructure. You will also source, manage and oversee the external service providers who will conduct annual vulnerability assessment and penetration testing to find and report any possible weaknesses that could be attacked by hackers and suggest potential remediation actions.

Applying security controls: Based on industrial best practices, security standards and guidelines (e.g. OWASP Top 10, NIST, CIS), recommend and apply suitable security measures for compliance and to address vulnerabilities shared by security threat intel, etc. Contribute to the development and maintenance of security policies, procedures, configurations and standards aligned with ISO 27001, suitable for implementation by project teams and contractors. Join in internal audits and reviews to ensure the efficiency of the ISMS or security controls.

Secure Development Practices: Integrate OWASP Top 10 recommendations throughout the software development lifecycle (SDLC), focusing on secure coding practices and secure design principles. Work with developers to identify and fix security vulnerabilities in applications.

Incident response and recovery: Help to review logs to detect malicious activity and data breach. You will be in charge of coordinating with contractors, security vendors and internal CAG teams to devise the strategy to isolate an incident, threat, identify the root cause, and implement mitigation or recovery procedures.

Keeping up with changing threats: The cybersecurity landscape is always evolving, so you will need to keep abreast of the latest threats, vulnerabilities, mitigation techniques, and new technologies. This may involve attending training courses, reading industry publications, and participating in conferences.

Working with others: You will work closely with security professionals, and governance team to educate colleagues on security best practices and raising awareness of potential threats.

Qualifications:

• Good degree in Information Systems/Technology, Computer Engineering, Computer Science, Information and Communications Technology (ICT) or related field.
• Preferably candidates with CISSP, CISA, CISM, CompTIA Security+ or equivalent professional certifications.
• Preferably candidates with a solid knowledge of cybersecurity principles and best practices, and ideally have at least 5 years ofrelevant work experience managing contractors and designing cybersecurity solutions to meet guidelines and standards.
• Experience in preparing tender specifications for vulnerability assessment, penetration testing, and creating SOPs for security incident response.
• Proficiency in security tools, logs extraction methods and technologies
• Has a curious mind to proactively detect potential cyber threats and develop measures to address them
• Excellent analytical and problem-solving skills
• Strong communication and collaboration skills
• Ability to work independently and as part of a team

We invite you to apply if you are an enthusiastic and security-aware individual with a passion for cybersecurity

Info-communications Media Development Authority

Fixed Terms

What the role is

Job Description

IMDA is spearheading Singapore's drive to be a world leading Digital Economy. IMDA aims to empower our companies and workforce with digital technologies and enable Singapore to be a leading Digital Economy.

We are currently seeking a Cybersecurity Specialist with expertise in Quantum Safe Communications to join our team and help secure the nation's digital landscape. You will play a pivotal role in the design, development, and implementation of cutting-edge cybersecurity solutions, focusing on post-quantum cryptography (PQC) and quantum key distribution (QKD). Your expertise will be instrumental in securing Singapore's communications infrastructure against emerging quantum threats. The successful candidate is a strategic and analytic thinker who also enjoys exploring frontier technologies.

Join us in our journey and jointly architect Singapore's digital future.

Key Responsibilities

• Collaborate with a multi-disciplinary team of engineers, researchers, and industry partners to develop and deploy quantum-safe cybersecurity solutions.
• Design and implement post-quantum cryptographic algorithms and protocols to secure communication networks against quantum attacks.
• Develop and integrate quantum key distribution (QKD) systems to enhance the security of data transmission.
• Assess the performance and security of existing cybersecurity solutions and propose enhancements to ensure quantum resilience.
• Conduct simulations and experiments to validate the effectiveness of implemented quantum-safe technologies.
• Stay current with advances in quantum cryptography, quantum-safe communications, and related fields to contribute to the implementation of new techniques and methodologies.
• Prepare technical documentation and present project updates to stakeholders.
• Collaborate with whole of government teams, industry, and academic partners to develop strategies on protecting emerging communications technologies.
• Work in a cross-functional teams to develop strategy, implementation design and plan for nationwide communications infrastructure solutions.

Requirements

• Master's or PhD in Computer Science, Cybersecurity, Quantum Information, or related fields.
• At least 3 years of experience working on cybersecurity solutions, with a focus on quantum-safe technologies such as PQC and QKD.
• In-depth understanding in cryptography, including symmetric and asymmetric encryption, cryptographic primitives, and post-quantum cryptography.
• In-depth understanding of security attack risks such as Side-Channel attacks, Photon Number Splitting attacks, DoS attacks, Trojan Horse Attack, including new novel ways to attack on the implementation of QKD.
• Proficiency in programming languages such as Python, C++, and Java.
• Familiarity with quantum-safe cryptographic libraries and tools.
• Excellent problem-solving, analytical, and critical thinking skills.
• Strong communication and presentation skills, with the ability to convey complex concepts to both technical and non-technical audiences.

This position will commensurate with experience.

Only shortlisted applicants will be notified

About Info-communications Media Development Authority

Info-communications Media Development Authority ) offers a rewarding career that gives you a front seat in the fast-changing infocomm media sector, where technology and content are shaping the way people view the world more than ever.
We offer a wide range of opportunities, where talented individuals and teams can make a difference. Whether you are developing a telecommunications policy affecting consumers or spearheading a scheme to nurture budding media talents, each member of IMDA contributes towards driving innovation, enhancing productivity for economic growth, and improving the quality of life for all Singaporeans.
As a statutory board in the Ministry of Communications and Information, IMDA promotes and regulates the infocomm and media sectors.

About your application process

If you do not hear from us within 4 weeks of the job ad closing date, we seek your understanding that it is likely that we are not moving forward with your application for this role. We thank you for your interest and would like to assure you that this does not affect your other job applications with the Public Service. We encourage you to explore and for other roles within Info-communications Media Development Authority or the wider Public Service.

Reporting to the Head of Cyber and Governance, you will collaborate with a team of IT professionals across both Infra and Apps to drive digital transformation by securing IT infrastructure and applications for one of the NTUC Social Enterprises to meet the learning needs of Singapore's community.

You will get to do hands-on management on our daily security operations related to our enterprise security solutions such as Antivirus, Phishing and Training Platform, Privileged Access Management (PAM), etc.

In addition, you will also need to track and manage daily cyber incident tickets such as reporting of potential cyber incidents, investigate reporting of phishing emails, etc. You will also get support related audits such as yearly IS Audit and Cyber Trust Mark.

• Oversee daily security operations, manage enterprise security solutions (e.g., Antivirus, PAM, phishing training platforms), and collaborate with internal IT teams and vendors for on-time solution deployment.

• Track, investigate, and resolve cyber incidents (e.g., phishing reports, security alerts). Escalate critical issues as necessary.

• Conduct security risk assessments, formulate risk treatment plans, and support third-party risk management and vendor due diligence.

• Assist in internal and external audits, including Cyber Trust Mark and IS audits. Ensure compliance with cybersecurity frameworks.

• Review security reports (e.g., vulnerability assessments, penetration testing), monitor vulnerabilities, and coordinate with teams on remediation efforts.

• Manage cybersecurity awareness activities, including phishing campaigns, workshops, and Business Continuity Planning (BCP) exercises.

Requirements:

• Possess a diploma / degree in Information Technology, Cyber Security or related fields

• Certifications are encouraged and demonstrate continuous learning and intake of standard methodologies applicable for this role. Eg. CISSP/ CISM/ CISA certifications or equivalent

• Preferably 1-3 years of experience in relevant cybersecurity fields

• Experience in managing security solutions such as Tenable, Enterprise Antivirus Solution, PAM, 2FA or other similar security technology stack

• Experience in supporting Cyber Controls in Cloud Environment (e.g. AWS or Azure) is preferred

• Ability to work with distributed teams to operate, institute real time awareness of security posture and baseline

• Able to engage and manage stakeholders

• Ability to communicate complex concepts clearly across different audiences and varying levels of the organization

• Experience in Project Management will be advantageous

• Experience and knowledge in cybersecurity standards such as Cyber Trust Mark, ISO27001, NIST, etc. will be advantageous

• Passion in contributing to a social purpose through technology

• Highly driven, willingness to learn

Key Security Role

• Automation Expertise: Develop and implement efficient automation strategies for routine cybersecurity tasks, allowing the security team to focus on high-priority issues.
• Data Analysis & Use Case Development: Analyze complex security data from multiple sources, identify patterns, and design innovative use cases to proactively detect or mitigate threats.
• Cross-Functional Teamwork: Collaborate with diverse teams (IT, application, network, and business teams) to find vulnerabilities and implement integrated security solutions across the organization.
• Technical Guidance: Provide expert advice on cybersecurity matters, helping teams strengthen their overall security posture and stay ahead of potential risks.
• Continuous Learning & Innovation: Stay updated on the latest threats tools and industry practices, implementing cutting-edge solutions to ensure the organization's continued security and success.
• Job Responsibilities :
  • Design and implement automation for routine cybersecurity activities
  • Analyze logs and security data from multiple sources
  • Develop automation use cases to proactively detect or mitigate threats
  • Work with other teams to find vulnerabilities and implement solutions
  • Act as a go-to expert for cybersecurity matters
  • Stay updated on the latest threats tools and industry practices

We are seeking a hands-on security engineer to help us secure, monitor, and maintain our infrastructure and applications.

You will be directly involved in implementing security practices, running system checks, and making sure our platforms are reliable, cost-efficient, and safe.

Safeguarding clients from evolving cyber threats requires a proactive approach. Our Global Security Operations Center (SOC) is the frontline of defense, protecting against online fraud, DDoS attacks, and other emerging threats.

We are looking for a skilled SOC WAF Engineer to join our team. As part of this role, you will manage cloud-based security systems, ensuring real-time protection, detection, mitigation, and resolution of security events.

The ideal candidate will possess in-depth knowledge of WAF technologies, experience administering Web Application Firewalls, and familiarity with programming or scripting languages. You will work alongside top security engineers, leveraging cutting-edge products to develop innovative protection strategies that keep clients secure.

• Take proactive and reactive steps to mitigate application layer security attacks or threats
• Interact directly with customers under attack via phone, chat, email, and/or ticketing systems
• Provide proactive guidance on security protocols and defensive security response
• Document actions taken in incident management systems, knowledge base, or ticketing systems
• Establish yourself as a trusted security advisor internally and externally
• Assist clients with onboarding and provisioning
• Engage and support cross-functional teams

• Bachelor's degree in Information Systems Security or related field/experience
• 1-2 years' experience administering Web Application Firewalls
• Familiarity with programming or scripting language
• Understanding of common enterprise network technologies
• Technical knowledge of TCP/IP networks and ability to perform log file analysis