505 Cybersecurity Specialist jobs in Singapore

Job description:

Do you want to help secure the airport systems, applications and infrastructure? Are you keen on cybersecurity technology and learning about new cyber threats? If yes, then you may be a good fit for a job as a Cybersecurity Specialist

About the Role:

Your role is essential for defending Changi's airport systems, infrastructure and digital assets from cyberattacks and data breaches. You will have various responsibilities, such as:

Finding and reducing vulnerabilities:
To assess the cybersecurity aspects of the design proposals for different systems, applications and infrastructure. You will also source, manage and oversee the external service providers who will conduct annual vulnerability assessment and penetration testing to find and report any possible weaknesses that could be attacked by hackers and suggest potential remediation actions.

Applying security controls:
Based on industrial best practices, security standards and guidelines (e.g. OWASP Top 10, NIST, CIS), recommend and apply suitable security measures for compliance and to address vulnerabilities shared by security threat intel, etc. Contribute to the development and maintenance of security policies, procedures, configurations and standards aligned with ISO 27001, suitable for implementation by project teams and contractors. Join in internal audits and reviews to ensure the efficiency of the ISMS or security controls.

Secure Development Practices:
Integrate OWASP Top 10 recommendations throughout the software development lifecycle (SDLC), focusing on secure coding practices and secure design principles. Work with developers to identify and fix security vulnerabilities in applications.

Incident response and recovery:
Help to review logs to detect malicious activity and data breach. You will be in charge of coordinating with contractors, security vendors and internal CAG teams to devise the strategy to isolate an incident, threat, identify the root cause, and implement mitigation or recovery procedures.

Keeping up with changing threats:
The cybersecurity landscape is always evolving, so you will need to keep abreast of the latest threats, vulnerabilities, mitigation techniques, and new technologies. This may involve attending training courses, reading industry publications, and participating in conferences.

Working with others:
You will work closely with security professionals, and governance team to educate colleagues on security best practices and raising awareness of potential threats.

Qualifications:

• Good degree in Information Systems/Technology, Computer Engineering, Computer Science, Information and Communications Technology (ICT) or related field.
• Preferably candidates with CISSP, CISA, CISM, CompTIA Security+ or equivalent professional certifications.
• Preferably candidates with a solid knowledge of cybersecurity principles and best practices, and ideally have at least 5 years ofrelevant work experience managing contractors and designing cybersecurity solutions to meet guidelines and standards.
• Experience in preparing tender specifications for vulnerability assessment, penetration testing, and creating SOPs for security incident response.
• Proficiency in security tools, logs extraction methods and technologies
• Has a curious mind to proactively detect potential cyber threats and develop measures to address them
• Excellent analytical and problem-solving skills
• Strong communication and collaboration skills
• Ability to work independently and as part of a team

We invite you to apply if you are an enthusiastic and security-aware individual with a passion for cybersecurity

Job no:

Work type: Full Time

Categories: Corporate Positions

The IT department in NTUC First Campus manages and maintains the organization's technology applications and infrastructure to ensure operational efficiency and secure organizational resilience.

As a Cybersecurity Specialist, you will be responsible for security risk assessments, cybersecurity monitoring and operations. You will report to the Cybersecurity Manager and provide support in all aspects of cybersecurity for NTUC First Campus, to identify, analyze and mitigate cybersecurity risks in order to safeguard personal data, protect the organization's systems and ensure compliance with relevant regulations and standards.

Key Responsibilities

Primary Point of Contact, and First Responder (monitoring and responding to alerts from Managed Services)

Perform log analysis, investigate and respond to security incidents, including suspicious activities, phishing attempts, malware infections and data breaches.

Collaborate with various teams to investigate, contain and remediate security incidents.

Perform security risk assessments, formulate and advise on a risk treatment plan

Review security testing reports (e.g. vulnerability assessment, penetration testing and secure code review) and work with application teams for remediation

Coordinate cybersecurity awareness activities (e.g. newsletters, trainings, phishing campaigns)

Support and administer cybersecurity operations using enterprise security solutions (e.g. onboarding of privileged accounts to PAM, implementing WAF for website protection, and reviewing firewall rules, etc.)

Work closely with Infrastructure and End User Support teams to identify and address any risks and gaps in the infrastructure, endpoints, and application systems

Collaborate with third-party vendors and contractors to ensure the security of outsourced systems and services.

Assist the business in performing business impact analysis and maintaining a cybersecurity risk register

Support vendor due-diligence process and help to guide overall third-party risk management efforts

Support both internal audit and external audits (e.g. ISO 27001, NIST, OWASP)

Education

Bachelor's degree in Computer Science, Information Technology, Cybersecurity or a related field

Relevant professional certifications such as CISSP, CISM, or CISA are preferred.

Experience

Minimum of 3 years of experience in cybersecurity

Experience with security technologies such as firewalls, intrusion detection/prevention systems, and data encryption.

Has knowledge in security technologies such as Antivirus/Endpoint Detection and Response (EDR), Privilege Access Management (PAM), and Web Application Firewall (WAF)

Familiarity with security assessment tools and techniques, including vulnerability scanning and penetration testing.

Experience in vendor and project management

Skills and Attributes

Excellent communication skills and the ability to explain complex technical concepts to non-technical stakeholders.

Strong analytical and problem-solving skills

Highly driven and willing to learn

Advertised: 10 Sep 2025 Singapore Standard Time

Applications close: 31 Dec 2025 Singapore Standard Time

POSITION OVERVIEW

As a Cybersecurity Specialist, you will be responsible for security risk assessments, cybersecurity monitoring and operations. You will report to the Cybersecurity Manager and provide support in all aspects of cybersecurity for NTUC First Campus, to identify, analyze and mitigate cybersecurity risks in order to safeguard personal data, protect the organization's systems and ensure compliance with relevant regulations and standards.

Key Responsibilities

• Primary Point of Contact, and First Responder (monitoring and responding to alerts from Managed Services)
• Perform log analysis, investigate and respond to security incidents, including suspicious activities, phishing attempts, malware infections and data breaches.
• Collaborate with various teams to investigate, contain and remediate security incidents.
• Perform security risk assessments, formulate and advise on a risk treatment plan
• Review security testing reports (e.g. vulnerability assessment, penetration testing and secure code review) and work with application teams for remediation
• Coordinate cybersecurity awareness activities (e.g. newsletters, trainings, phishing campaigns)
• Support and administer cybersecurity operations using enterprise security solutions (e.g. onboarding of privileged accounts to PAM, implementing WAF for website protection, and reviewing firewall rules, etc.)
• Work closely with Infrastructure and End User Support teams to identify and address any risks and gaps in the infrastructure, endpoints, and application systems
• Collaborate with third-party vendors and contractors to ensure the security of outsourced systems and services.
• Assist the business in performing business impact analysis and maintaining a cybersecurity risk register
• Support vendor due-diligence process and help to guide overall third-party risk management efforts
• Support both internal audit and external audits (e.g. ISO 27001, NIST, OWASP)

Education

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity or a related field
• Relevant professional certifications such as CISSP, CISM, or CISA are preferred.

Experience

• Minimum of 3 years of experience in cybersecurity
• Experience with security technologies such as firewalls, intrusion detection/prevention systems, and data encryption.
• Has knowledge in security technologies such as Antivirus/Endpoint Detection and Response (EDR), Privilege Access Management (PAM), and Web Application Firewall (WAF)
• Familiarity with security assessment tools and techniques, including vulnerability scanning and penetration testing.
• Experience in vendor and project management

Skills and Attributes

• Excellent communication skills and the ability to explain complex technical concepts to non-technical stakeholders.
• Strong analytical and problem-solving skills
• Highly driven and willing to learn

Info-communications Media Development Authority

Fixed Terms

What the role is

Job Description

IMDA is spearheading Singapore's drive to be a world leading Digital Economy. IMDA aims to empower our companies and workforce with digital technologies and enable Singapore to be a leading Digital Economy.

We are currently seeking a Cybersecurity Specialist with expertise in Quantum Safe Communications to join our team and help secure the nation's digital landscape. You will play a pivotal role in the design, development, and implementation of cutting-edge cybersecurity solutions, focusing on post-quantum cryptography (PQC) and quantum key distribution (QKD). Your expertise will be instrumental in securing Singapore's communications infrastructure against emerging quantum threats. The successful candidate is a strategic and analytic thinker who also enjoys exploring frontier technologies.

Join us in our journey and jointly architect Singapore's digital future.

Key Responsibilities

• Collaborate with a multi-disciplinary team of engineers, researchers, and industry partners to develop and deploy quantum-safe cybersecurity solutions.
• Design and implement post-quantum cryptographic algorithms and protocols to secure communication networks against quantum attacks.
• Develop and integrate quantum key distribution (QKD) systems to enhance the security of data transmission.
• Assess the performance and security of existing cybersecurity solutions and propose enhancements to ensure quantum resilience.
• Conduct simulations and experiments to validate the effectiveness of implemented quantum-safe technologies.
• Stay current with advances in quantum cryptography, quantum-safe communications, and related fields to contribute to the implementation of new techniques and methodologies.
• Prepare technical documentation and present project updates to stakeholders.
• Collaborate with whole of government teams, industry, and academic partners to develop strategies on protecting emerging communications technologies.
• Work in a cross-functional teams to develop strategy, implementation design and plan for nationwide communications infrastructure solutions.

Requirements

• Master's or PhD in Computer Science, Cybersecurity, Quantum Information, or related fields.
• At least 3 years of experience working on cybersecurity solutions, with a focus on quantum-safe technologies such as PQC and QKD.
• In-depth understanding in cryptography, including symmetric and asymmetric encryption, cryptographic primitives, and post-quantum cryptography.
• In-depth understanding of security attack risks such as Side-Channel attacks, Photon Number Splitting attacks, DoS attacks, Trojan Horse Attack, including new novel ways to attack on the implementation of QKD.
• Proficiency in programming languages such as Python, C++, and Java.
• Familiarity with quantum-safe cryptographic libraries and tools.
• Excellent problem-solving, analytical, and critical thinking skills.
• Strong communication and presentation skills, with the ability to convey complex concepts to both technical and non-technical audiences.

This position will commensurate with experience.

Only shortlisted applicants will be notified

About Info-communications Media Development Authority

Info-communications Media Development Authority ) offers a rewarding career that gives you a front seat in the fast-changing infocomm media sector, where technology and content are shaping the way people view the world more than ever.
We offer a wide range of opportunities, where talented individuals and teams can make a difference. Whether you are developing a telecommunications policy affecting consumers or spearheading a scheme to nurture budding media talents, each member of IMDA contributes towards driving innovation, enhancing productivity for economic growth, and improving the quality of life for all Singaporeans.
As a statutory board in the Ministry of Communications and Information, IMDA promotes and regulates the infocomm and media sectors.

About your application process

If you do not hear from us within 4 weeks of the job ad closing date, we seek your understanding that it is likely that we are not moving forward with your application for this role. We thank you for your interest and would like to assure you that this does not affect your other job applications with the Public Service. We encourage you to explore and for other roles within Info-communications Media Development Authority or the wider Public Service.

Join to apply for the
Cybersecurity Specialist
role at
Changi Airport Group
Do you want to help secure the airport systems, applications and infrastructure? Are you keen on cybersecurity technology and learning about new cyber threats? If yes, then you may be a good fit for a job as a Cybersecurity Specialist!
About the Role:
Finding and reducing vulnerabilities:
To assess the cybersecurity aspects of the design proposals for different systems, applications and infrastructure. You will also source, manage and oversee the external service providers who will conduct annual vulnerability assessment and penetration testing to find and report any possible weaknesses that could be attacked by hackers and suggest potential remediation actions.
Applying security controls:
Based on industrial best practices, security standards and guidelines (e.g. OWASP Top 10, NIST, CIS), recommend and apply suitable security measures for compliance and to address vulnerabilities shared by security threat intel, etc. Contribute to the development and maintenance of security policies, procedures, configurations and standards aligned with ISO 27001, suitable for implementation by project teams and contractors. Join in internal audits and reviews to ensure the efficiency of the ISMS or security controls.
Secure Development Practices:
Integrate OWASP Top 10 recommendations throughout the software development lifecycle (SDLC), focusing on secure coding practices and secure design principles. Work with developers to identify and fix security vulnerabilities in applications.
Incident response and recovery:
Help to review logs to detect malicious activity and data breach. You will be in charge of coordinating with contractors, security vendors and internal CAG teams to devise the strategy to isolate an incident, threat, identify the root cause, and implement mitigation or recovery procedures.
Keeping up with changing threats:
The cybersecurity landscape is always evolving, so you will need to keep abreast of the latest threats, vulnerabilities, mitigation techniques, and new technologies. This may involve attending training courses, reading industry publications, and participating in conferences.
Working with others:
You will work closely with security professionals, and governance team to educate colleagues on security best practices and raising awareness of potential threats.
Qualifications:
Good degree in Information Systems/Technology, Computer Engineering, Computer Science, Information and Communications Technology (ICT) or related field.
Preferably candidates with CISSP, CISA, CISM, CompTIA Security+ or equivalent professional certifications.
Preferably candidates with solid knowledge of cybersecurity principles and best practices, and ideally have at least 5 years of relevant work experience managing contractors and designing cybersecurity solutions to meet guidelines and standards.
Experience in preparing tender specifications for vulnerability assessment, penetration testing, and creating SOPs for security incident response.
Proficiency in security tools, logs extraction methods and technologies
Has a curious mind to proactively detect potential cyber threats and develop measures to address them
Excellent analytical and problem-solving skills
Strong communication and collaboration skills
Ability to work independently and as part of a team
We invite you to apply if you are an enthusiastic and security-aware individual with a passion for cybersecurity!
Seniority level
Mid-Senior level
Employment type
Full-time
Job function
Information Technology
Industries
Airlines and Aviation, Aviation and Aerospace Component Manufacturing, and Travel Arrangements
Referrals increase your chances of interviewing at Changi Airport Group by 2x
Sign in to set job alerts for “Cyber Security Specialist” roles.
Information Technology - Cyber Security Analyst (Scoot)
Information Technology - Cyber Security Specialist (Risk and Governance)
Graduate Hiring - Cybersecurity Engineer
Information Technology - Cyber Security Engineer (Threat Management and Incident Response) (Scoot)
Information Technology - Cyber Security Lead Engineer
Security Engineer (SOC Analyst) - Digital Bank
Cyber Security Engineer (Endpoint Security)
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr

Select how often (in days) to receive an alert:
An empowering career at Singtel begins with a Hello. Our purpose, to Empower Every Generation, connects people to the possibilities they need to excel. Every "hello" at Singtel opens doors to new initiatives, growth, and BIG possibilities that takes your career to new heights. So, when you say hello to us, you are really empowered to say.“Hello BIG Possibilities”.
Be a Part of Something BIG!
We create great technology that can change the future, and we're looking for people to be part of our digital and 5G journey. If you like to work in a dynamic, leading communications technology group to deliver innovations and excellence across the region, come join our digital, software engineering, data and cyber security teams!
We are seeking a visionary Group-Level Cybersecurity Strategist to lead the strategic response to emerging technology risks across our enterprise. This role sits at the group level, focusing on anticipating and shaping the organization’s approach to cybersecurity threats and opportunities arising from emerging technologies such as artificial intelligence (AI), quantum computing, and deepfake technologies. The successful candidate will provide strategic oversight, guide OpCos (operating companies) on best practices, and ensure the group remains resilient and competitive in a rapidly evolving digital landscape.
Make an Impact by
Strategic Leadership & Vision
Contribute to the development and execution of the Group’s cyber transformation strategy, with emphasis on AI, quantum, and deepfake resilience.
Support the creation of a forward-looking cybersecurity vision aligned with emerging technology trends and business objectives.
Design and maintain multi-year strategic roadmaps for emerging technology risk management.
Lead or co-lead high-impact initiatives (e.g., AI red teaming, quantum readiness pilots, deepfake detection) to drive resilience and innovation.
Partner with OpCos to align initiatives with strategic objectives and track progress via defined cyber resilience metrics.
Guide research and analysis on advanced security solutions for AI, quantum, and deepfake threats in partnership with academia, industry, and government.
Identify, evaluate, and pilot cutting-e dge cybersecurity technologies with potential for group-wide adoption.
Promote a culture ofxperimentation and innovation to maintain cyber readiness and competitive advantage.
Conduct horizon scanning to proactively identify disruptive technologies and threats.
Policy & Governance Advisory
Assess group cybersecurity policies to ensure alignment with emerging threat landscapes.
Recommend updates and enhancements based on evolving risk trends and best practices.
Support drafting and refinement of policies where existing frameworks do not yet address emerging technology use cases
Contribute insights during governance and review cycles to inform decision-makers across the Group.
Advanced Cyber Technology Exploration
Evaluate and assess advanced technologies related to AI (e.g., GenAI, LLMs), quantum computing, and deepfakes.
Participate in pilots and research programs to test technical readiness and applicability.
Identify opportunities to integrate advanced technologies into the Group’s cyber resilience roadmap.
Track and report progress of strategic cybersecurity initiatives to senior stakeholders.
Identify and address workforce capability gaps across OpCos for emerging technologies.
Recommend skillset developments in workforce development framework for security for emerging technologies.
Support knowledge-sharing and group-wide uplift through workshops, training, and collaboration platforms.
Program Delivery & Execution
Drive delivery of emerging technology-related cyber initiatives by managing timelines, risks, and dependencies.
Develop and maintain project plans, schedules, and resource allocations.
Coordinate with cross-functional teams to ensure alignment to resilience goals.
Ensure outcomes are measurable and contribute to group-level strategic objectives.
Budget & Resource Stewardship
Assist in planning and managing budgets for emerging tech-related cyber programs.
Recommend resource allocation strategies to optimize cost, scale, and talent effectiveness.
Stay current with cybersecurity trends, tools, and practices to inform decision-making.
Drive improvements in security operations, tooling, and methodology through innovation.
Evaluate new technologies for group-wide implementation to strengthen cyber capabilities.
Define metrics to assess innovation impact and return on security investment.
Stakeholder Engagement & Influence
Act as a trusted advisor to Group C-suite, Board, and senior leaders on cyber risks tied to emerging technologies.
Lead cross-OpCo forums to harmonize cybersecurity standards and share best practices.
Represent the Group in external forums, industry roundtables, and regulatory engagements.
Liaise with internal stakeholders (e.g., Legal, IT, Finance) to align cybersecurity strategy with enterprise-wide goals.
Foster alignment and awareness of cybersecurity priorities across the Group.
Skills for Success
Bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field.
At least 7+ years of experience in cybersecurity, including a minimum of 3 years in a leadership or strategic advisory role.
Demonstrated experience in managing and delivering large-scale cybersecurity projects and programs to successful completion.
Experience in work with advanced cyber technologies, including security for generative AI/LLM models, quantum computing, and deepfake countermeasures, is highly desirable.
Strong understanding of cybersecurity frameworks, standards, and regulations (e.g., NIST, ISO 27001, GDPR, etc.).
Familiarity with emerging cyber threats and innovative defenses, particularly in advanced technology areas.
Excellent project management skills, with certifications such as PMP, Prince2, or equivalent preferred.
Strong capability to develop and implement project plans, schedules, and budgets while effectively managing risks and resources.
Cybersecurity Certifications CISSP, CRISC, CISM, PMP, or similar relevant certifications.
Exceptional leadership, collaboration, and team management skills.
Ability to work effectively with diverse stakeholders, including subsidiaries in a conglomerate or multi-subsidiary environment.
Strong analytical, decision-making, and problem-solving skills, especially in dynamic and high-pressure situations.
Excellent communication and interpersonal abilities, with a proven track record of engaging and influencing stakeholders at all levels.
Strong capacity to present complex ideas and strategies in an accessible manner for varied audiences.
Rewards that Go Beyond
Full suite of health and wellness benefits
Ongoing training and development programs
Internal mobility opportunities
Your Career Growth Starts Here. Apply Now!
We are committed to a safe and healthy environment for our employees & customers and will require all prospective employees to be fully vaccinated.
#J-18808-Ljbffr

About the Role
Your role is essential for defending Changi's airport systems, infrastructure and digital assets from cyberattacks and data breaches. You will have various responsibilities, such as:
Finding and reducing vulnerabilities:
To assess the cybersecurity aspects of the design proposals for different systems, applications and infrastructure. You will also source, manage and oversee the external service providers who will conduct annual vulnerability assessment and penetration testing to find and report any possible weaknesses that could be attacked by hackers and suggest potential remediation actions.
Applying security controls:
Based on industrial best practices, security standards and guidelines (e.g. OWASP Top 10, NIST, CIS), recommend and apply suitable security measures for compliance and to address vulnerabilities shared by security threat intel, etc. Contribute to the development and maintenance of security policies, procedures, configurations and standards aligned with ISO 27001, suitable for implementation by project teams and contractors. Join in internal audits and reviews to ensure the efficiency of the ISMS or security controls.
Secure Development Practices:
Integrate OWASP Top 10 recommendations throughout the software development lifecycle (SDLC), focusing on secure coding practices and secure design principles. Work with developers to identify and fix security vulnerabilities in applications.
Incident response and recovery:
Help to review logs to detect malicious activity and data breach. You will be in charge of coordinating with contractors, security vendors and internal CAG teams to devise the strategy to isolate an incident, threat, identify the root cause, and implement mitigation or recovery procedures.
Keeping up with changing threats:
The cybersecurity landscape is always evolving, so you will need to keep abreast of the latest threats, vulnerabilities, mitigation techniques, and new technologies. This may involve attending training courses, reading industry publications, and participating in conferences.
Working with others:
You will work closely with security professionals, and governance team to educate colleagues on security best practices and raising awareness of potential threats.
Qualifications
Good degree in Information Systems/Technology, Computer Engineering, Computer Science, Information and Communications Technology (ICT) or related field.
Preferablycandidates with CISSP, CISA, CISM, CompTIA Security+ or equivalent professional certifications.
Experience in preparing tender specifications for vulnerability assessment, penetration testing, and creating SOPs for security incident response.
Proficiency in security tools, logs extraction methods and technologies.
Has a curious mind to proactively detect potential cyber threats and develop measures to address them.
Excellent analytical and problem-solving skills.
Strong communication and collaboration skills.
Ability to work independently and as part of a team.
We invite you to apply if you are an enthusiastic and security-aware individual with a passion for cybersecurity!
#J-18808-Ljbffr

* Due to security requirement, this job opening is only open to Singapore Citizens or PR *

- Responsible for drafting scope of work for database / cyber security related project.

- Responsible for implementation of client’s cyber/IT security software and processes which includes security policies, procedure, standards and guidelines.

- Provide cyber/IT security consultancy and advisory to client in management and enhancement within the cyber security project scopes

- Manage the client’s expectation, actively engage clients, co-workers, in delivering project requirements

- Training and guidance will be provided in initial periods.

- Experience in SIEM (e.g. QRadar, Splunk) is a MUST

- Experience working in a Security Analyst would be an added advantage.

- Fresh graduate from IT Security fields will be considered

- Experience in any cyber security products and databases would be an added advantage

- May require to work on 24x7 basis when required by the project

- 5-days work week. Flexible work arrangement allowed, i.e. Flexi-Time or Flexi-Place

Company’s Profile:

Julian Grey’s client is an established IT company in Singapore, recognized for its innovative solutions and dynamic team culture.

Responsibilities:

• Design and implement secure architectures for enterprise and cloud environments.

• Conduct threat modeling, risk assessments, and vulnerability analysis.

• Integrate security controls into CI/CD and DevSecOps workflows.

• Ensure compliance with security frameworks (ISO 27001, NIST, CIS, OWASP).

• Collaborate with teams to embed security-by-design across all systems.

Requirements:

• Degree in Cybersecurity, Computer Science, or related field.

• 3–5 years of experience in cybersecurity or security engineering.

• Hands-on experience with cloud platforms, IAM, SIEM, and firewalls.

• Familiar with automation tools (Terraform, Ansible) and security frameworks.

• Relevant certifications (CISSP, CCSP, CISM, or cloud security) preferred.

If you're ready to make an impact in the IT sales space, apply now to join this innovative team!

Follow us for more updates, interview tips!

Our telegram channel for job opportunities -

Interested Applicants

Please WA Marie @

Shortlisted candidates will be notified

Marie Xie

Reg No. R

Julian Grey Corporate Advisory Pte. Ltd.

EA License No: 19C9568