1,468 Cybersecurity Specialists jobs in Singapore

• Root cause analysis and assist in developing incident response plans and playbooks.
• Maintain detailed documentation of security incidents and response actions.
• Administer, fine-tune, and enhance the organization's SIEM system to ensure effective threat detection.
• Create and manage detection rules, correlation logic, alerts, dashboards and reports.
• Continuously improve SIEM content to align with evolving threats and business needs.
• Ensure accurate log collection and system performance monitoring.
• Perform regular vulnerability scans and assist IT teams in prioritizing and addressing security issues.
• Support risk assessments and recommend appropriate security controls and mitigation strategies.
• Track and document vulnerabilities, risks and remediation efforts.

Requirements:

• Bachelor's Degree or Advanced Diploma in Cybersecurity, Computer Science, Information Technology or a related field.
• 1–3 years of experience in a cybersecurity role, preferably involving SIEM content development, incident response or network security.
• Strong knowledge of cybersecurity principles, security operations, and threat mitigation techniques.
• Hands-on experience with SIEM tools (e.g., Splunk, QRadar, ArcSight).
• Familiarity with log analysis, network protocols, and common attack vectors.
• Proficiency in security tools such as firewalls, intrusion detection/prevention systems, endpoint protection and vulnerability scanners.
• Scripting knowledge (e.g., Python, PowerShell) for automation is a plus.
• Understanding of frameworks like MITRE ATT&CK, and risk assessment methodologies.
• Strong analytical thinking and attention to detail.
• Effective communicator with the ability to explain technical issues to non-technical audiences.
• Team-oriented with a strong sense of responsibility and initiative.
• Ability to handle high-pressure situations and on-call incidents when required.
• CompTIA Security+, CEH, CISSP, GSEC or relevant vendor certifications (e.g., Splunk Certified Admin) preferred.

As a Cyber Threat Detection Engineer, you will be responsible for designing, developing and maintaining threat detection use cases across SIEM, EDR, NDR and cloud-native security platforms. You will proactively identify detection gaps, research adversary tactics (MITRE ATT&CK) and translate threat intelligence into actionable detections.

• You will monitor, analyze and optimize detection rules to reduce false positives while maintaining high fidelity alerts.
• Collaborate with Security Operations and Incident Response teams to validate detections and support investigations.
• Automate detection engineering processes using scripting and SOAR capabilities.
• Conduct regular testing, purple teaming and threat hunting exercises to validate effectiveness of detections.

We are looking for a candidate with a Bachelor's degree in Cybersecurity, Computer Science or related field (or equivalent hands-on experience).

• A minimum of 5 years of experience in detection engineering, threat hunting, SOC or incident response.
• A strong understanding of security monitoring tools (e.g., Splunk, Sentinel, QRadar, Elastic).
• Familiarity with MITRE ATT&CK framework and threat intelligence integration.
• Proficiency in scripting languages (Python, PowerShell, etc.) for automation and detection logic.
• Strong problem-solving skills with the ability to work in a fast-paced environment.

Job no:

Work type: Full Time

Categories: Corporate Positions

The IT department in NTUC First Campus manages and maintains the organization's technology applications and infrastructure to ensure operational efficiency and secure organizational resilience.

As a Cybersecurity Specialist, you will be responsible for security risk assessments, cybersecurity monitoring and operations. You will report to the Cybersecurity Manager and provide support in all aspects of cybersecurity for NTUC First Campus, to identify, analyze and mitigate cybersecurity risks in order to safeguard personal data, protect the organization's systems and ensure compliance with relevant regulations and standards.

Key Responsibilities

Primary Point of Contact, and First Responder (monitoring and responding to alerts from Managed Services)

Perform log analysis, investigate and respond to security incidents, including suspicious activities, phishing attempts, malware infections and data breaches.

Collaborate with various teams to investigate, contain and remediate security incidents.

Perform security risk assessments, formulate and advise on a risk treatment plan

Review security testing reports (e.g. vulnerability assessment, penetration testing and secure code review) and work with application teams for remediation

Coordinate cybersecurity awareness activities (e.g. newsletters, trainings, phishing campaigns)

Support and administer cybersecurity operations using enterprise security solutions (e.g. onboarding of privileged accounts to PAM, implementing WAF for website protection, and reviewing firewall rules, etc.)

Work closely with Infrastructure and End User Support teams to identify and address any risks and gaps in the infrastructure, endpoints, and application systems

Collaborate with third-party vendors and contractors to ensure the security of outsourced systems and services.

Assist the business in performing business impact analysis and maintaining a cybersecurity risk register

Support vendor due-diligence process and help to guide overall third-party risk management efforts

Support both internal audit and external audits (e.g. ISO 27001, NIST, OWASP)

Education

Bachelor's degree in Computer Science, Information Technology, Cybersecurity or a related field

Relevant professional certifications such as CISSP, CISM, or CISA are preferred.

Experience

Minimum of 3 years of experience in cybersecurity

Experience with security technologies such as firewalls, intrusion detection/prevention systems, and data encryption.

Has knowledge in security technologies such as Antivirus/Endpoint Detection and Response (EDR), Privilege Access Management (PAM), and Web Application Firewall (WAF)

Familiarity with security assessment tools and techniques, including vulnerability scanning and penetration testing.

Experience in vendor and project management

Skills and Attributes

Excellent communication skills and the ability to explain complex technical concepts to non-technical stakeholders.

Strong analytical and problem-solving skills

Highly driven and willing to learn

Advertised: 10 Sep 2025 Singapore Standard Time

Applications close: 31 Dec 2025 Singapore Standard Time

POSITION OVERVIEW

As a Cybersecurity Specialist, you will be responsible for security risk assessments, cybersecurity monitoring and operations. You will report to the Cybersecurity Manager and provide support in all aspects of cybersecurity for NTUC First Campus, to identify, analyze and mitigate cybersecurity risks in order to safeguard personal data, protect the organization's systems and ensure compliance with relevant regulations and standards.

Key Responsibilities

• Primary Point of Contact, and First Responder (monitoring and responding to alerts from Managed Services)
• Perform log analysis, investigate and respond to security incidents, including suspicious activities, phishing attempts, malware infections and data breaches.
• Collaborate with various teams to investigate, contain and remediate security incidents.
• Perform security risk assessments, formulate and advise on a risk treatment plan
• Review security testing reports (e.g. vulnerability assessment, penetration testing and secure code review) and work with application teams for remediation
• Coordinate cybersecurity awareness activities (e.g. newsletters, trainings, phishing campaigns)
• Support and administer cybersecurity operations using enterprise security solutions (e.g. onboarding of privileged accounts to PAM, implementing WAF for website protection, and reviewing firewall rules, etc.)
• Work closely with Infrastructure and End User Support teams to identify and address any risks and gaps in the infrastructure, endpoints, and application systems
• Collaborate with third-party vendors and contractors to ensure the security of outsourced systems and services.
• Assist the business in performing business impact analysis and maintaining a cybersecurity risk register
• Support vendor due-diligence process and help to guide overall third-party risk management efforts
• Support both internal audit and external audits (e.g. ISO 27001, NIST, OWASP)

Education

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity or a related field
• Relevant professional certifications such as CISSP, CISM, or CISA are preferred.

Experience

• Minimum of 3 years of experience in cybersecurity
• Experience with security technologies such as firewalls, intrusion detection/prevention systems, and data encryption.
• Has knowledge in security technologies such as Antivirus/Endpoint Detection and Response (EDR), Privilege Access Management (PAM), and Web Application Firewall (WAF)
• Familiarity with security assessment tools and techniques, including vulnerability scanning and penetration testing.
• Experience in vendor and project management

Skills and Attributes

• Excellent communication skills and the ability to explain complex technical concepts to non-technical stakeholders.
• Strong analytical and problem-solving skills
• Highly driven and willing to learn

Job description:

Do you want to help secure the airport systems, applications and infrastructure? Are you keen on cybersecurity technology and learning about new cyber threats? If yes, then you may be a good fit for a job as a Cybersecurity Specialist

About the Role:

Your role is essential for defending Changi's airport systems, infrastructure and digital assets from cyberattacks and data breaches. You will have various responsibilities, such as:

Finding and reducing vulnerabilities:
To assess the cybersecurity aspects of the design proposals for different systems, applications and infrastructure. You will also source, manage and oversee the external service providers who will conduct annual vulnerability assessment and penetration testing to find and report any possible weaknesses that could be attacked by hackers and suggest potential remediation actions.

Applying security controls:
Based on industrial best practices, security standards and guidelines (e.g. OWASP Top 10, NIST, CIS), recommend and apply suitable security measures for compliance and to address vulnerabilities shared by security threat intel, etc. Contribute to the development and maintenance of security policies, procedures, configurations and standards aligned with ISO 27001, suitable for implementation by project teams and contractors. Join in internal audits and reviews to ensure the efficiency of the ISMS or security controls.

Secure Development Practices:
Integrate OWASP Top 10 recommendations throughout the software development lifecycle (SDLC), focusing on secure coding practices and secure design principles. Work with developers to identify and fix security vulnerabilities in applications.

Incident response and recovery:
Help to review logs to detect malicious activity and data breach. You will be in charge of coordinating with contractors, security vendors and internal CAG teams to devise the strategy to isolate an incident, threat, identify the root cause, and implement mitigation or recovery procedures.

Keeping up with changing threats:
The cybersecurity landscape is always evolving, so you will need to keep abreast of the latest threats, vulnerabilities, mitigation techniques, and new technologies. This may involve attending training courses, reading industry publications, and participating in conferences.

Working with others:
You will work closely with security professionals, and governance team to educate colleagues on security best practices and raising awareness of potential threats.

Qualifications:

• Good degree in Information Systems/Technology, Computer Engineering, Computer Science, Information and Communications Technology (ICT) or related field.
• Preferably candidates with CISSP, CISA, CISM, CompTIA Security+ or equivalent professional certifications.
• Preferably candidates with a solid knowledge of cybersecurity principles and best practices, and ideally have at least 5 years ofrelevant work experience managing contractors and designing cybersecurity solutions to meet guidelines and standards.
• Experience in preparing tender specifications for vulnerability assessment, penetration testing, and creating SOPs for security incident response.
• Proficiency in security tools, logs extraction methods and technologies
• Has a curious mind to proactively detect potential cyber threats and develop measures to address them
• Excellent analytical and problem-solving skills
• Strong communication and collaboration skills
• Ability to work independently and as part of a team

We invite you to apply if you are an enthusiastic and security-aware individual with a passion for cybersecurity

Join us as a Cybersecurity Specialist through our Alpha Specialist Training Programme (ASTP), a structured and fully sponsored pathway designed to launch your career in cybersecurity. Whether you're a fresh graduate or making a career switch, Red Alpha equips you with practical skills, industry-recognised certifications, and a guaranteed deployment into meaningful cybersecurity roles.

You'll undergo hands-on, in-person training guided by industry experts. The training covers areas such as cyber defence, incident response, threat intelligence, and offensive security, preparing you for real-world scenarios and roles across both public and private sectors.

After completing the programme, you may be deployed into one of many cybersecurity roles, depending on your aptitude, interest, and hiring partner needs. These include (but are not limited to):

• Cybersecurity Analyst
• Incident Responder
• Cyber Threat Intelligence Analyst
• Penetration Tester
• Cybersecurity Engineer or Architect
• Cybersecurity Solutions Specialist

• Learn how to detect, respond to, and prevent cybersecurity threats
• Gain hands-on experience with tools like Splunk, Wireshark, Metasploit, Sysinternals Suite, and more
• Understand frameworks like MITRE ATT&CK, OWASP Top 10, and NIST
• Work on simulations and real-world case studies under expert guidance
• Prepare for certifications such as GCIH and OSCP
• Receive ongoing mentorship and career support

No prior IT or cybersecurity background is needed. We're looking for:

• A strong interest in technology and digital security
• Problem-solving mindset and resilience
• Eagerness to learn and adapt
• Good communication and teamwork skills

All selected candidates will undergo a 20-week, fully sponsored on-job-training with allowance, before being deployed full-time for 3 years.

Info-communications Media Development Authority

Fixed Terms

What the role is

Job Description

IMDA is spearheading Singapore's drive to be a world leading Digital Economy. IMDA aims to empower our companies and workforce with digital technologies and enable Singapore to be a leading Digital Economy.

We are currently seeking a Cybersecurity Specialist with expertise in Quantum Safe Communications to join our team and help secure the nation's digital landscape. You will play a pivotal role in the design, development, and implementation of cutting-edge cybersecurity solutions, focusing on post-quantum cryptography (PQC) and quantum key distribution (QKD). Your expertise will be instrumental in securing Singapore's communications infrastructure against emerging quantum threats. The successful candidate is a strategic and analytic thinker who also enjoys exploring frontier technologies.

Join us in our journey and jointly architect Singapore's digital future.

Key Responsibilities

• Collaborate with a multi-disciplinary team of engineers, researchers, and industry partners to develop and deploy quantum-safe cybersecurity solutions.
• Design and implement post-quantum cryptographic algorithms and protocols to secure communication networks against quantum attacks.
• Develop and integrate quantum key distribution (QKD) systems to enhance the security of data transmission.
• Assess the performance and security of existing cybersecurity solutions and propose enhancements to ensure quantum resilience.
• Conduct simulations and experiments to validate the effectiveness of implemented quantum-safe technologies.
• Stay current with advances in quantum cryptography, quantum-safe communications, and related fields to contribute to the implementation of new techniques and methodologies.
• Prepare technical documentation and present project updates to stakeholders.
• Collaborate with whole of government teams, industry, and academic partners to develop strategies on protecting emerging communications technologies.
• Work in a cross-functional teams to develop strategy, implementation design and plan for nationwide communications infrastructure solutions.

Requirements

• Master's or PhD in Computer Science, Cybersecurity, Quantum Information, or related fields.
• At least 3 years of experience working on cybersecurity solutions, with a focus on quantum-safe technologies such as PQC and QKD.
• In-depth understanding in cryptography, including symmetric and asymmetric encryption, cryptographic primitives, and post-quantum cryptography.
• In-depth understanding of security attack risks such as Side-Channel attacks, Photon Number Splitting attacks, DoS attacks, Trojan Horse Attack, including new novel ways to attack on the implementation of QKD.
• Proficiency in programming languages such as Python, C++, and Java.
• Familiarity with quantum-safe cryptographic libraries and tools.
• Excellent problem-solving, analytical, and critical thinking skills.
• Strong communication and presentation skills, with the ability to convey complex concepts to both technical and non-technical audiences.

This position will commensurate with experience.

Only shortlisted applicants will be notified

About Info-communications Media Development Authority

Info-communications Media Development Authority ) offers a rewarding career that gives you a front seat in the fast-changing infocomm media sector, where technology and content are shaping the way people view the world more than ever.
We offer a wide range of opportunities, where talented individuals and teams can make a difference. Whether you are developing a telecommunications policy affecting consumers or spearheading a scheme to nurture budding media talents, each member of IMDA contributes towards driving innovation, enhancing productivity for economic growth, and improving the quality of life for all Singaporeans.
As a statutory board in the Ministry of Communications and Information, IMDA promotes and regulates the infocomm and media sectors.

About your application process

If you do not hear from us within 4 weeks of the job ad closing date, we seek your understanding that it is likely that we are not moving forward with your application for this role. We thank you for your interest and would like to assure you that this does not affect your other job applications with the Public Service. We encourage you to explore and for other roles within Info-communications Media Development Authority or the wider Public Service.

Company description:

Changi Airport Group (CAG) is the manager of Singapore Changi Airport, a leading air hub in Asia and one of the world's most awarded airports. As airport manager, CAG performs the key functions of airport operations, air hub development, retail and commercial activities, infrastructure development and airport emergency services. CAG also manages Seletar Airport, and through its subsidiary, Changi Airports International, it takes Changi's presence beyond Singapore's shores through consultancy projects and investments in foreign airports. Come join us today

Job description:

Do you want to help secure the airport systems, applications and infrastructure? Are you keen on cybersecurity technology and learning about new cyber threats? If yes, then you may be a good fit for a job as a Cybersecurity Specialist

About the Role:

Your role is essential for defending Changi's airport systems, infrastructure and digital assets from cyberattacks and data breaches. You will have various responsibilities, such as:

Finding and reducing vulnerabilities: To assess the cybersecurity aspects of the design proposals for different systems, applications and infrastructure. You will also source, manage and oversee the external service providers who will conduct annual vulnerability assessment and penetration testing to find and report any possible weaknesses that could be attacked by hackers and suggest potential remediation actions.

Applying security controls: Based on industrial best practices, security standards and guidelines (e.g. OWASP Top 10, NIST, CIS), recommend and apply suitable security measures for compliance and to address vulnerabilities shared by security threat intel, etc. Contribute to the development and maintenance of security policies, procedures, configurations and standards aligned with ISO 27001, suitable for implementation by project teams and contractors. Join in internal audits and reviews to ensure the efficiency of the ISMS or security controls.

Secure Development Practices: Integrate OWASP Top 10 recommendations throughout the software development lifecycle (SDLC), focusing on secure coding practices and secure design principles. Work with developers to identify and fix security vulnerabilities in applications.

Incident response and recovery: Help to review logs to detect malicious activity and data breach. You will be in charge of coordinating with contractors, security vendors and internal CAG teams to devise the strategy to isolate an incident, threat, identify the root cause, and implement mitigation or recovery procedures.

Keeping up with changing threats: The cybersecurity landscape is always evolving, so you will need to keep abreast of the latest threats, vulnerabilities, mitigation techniques, and new technologies. This may involve attending training courses, reading industry publications, and participating in conferences.

Working with others: You will work closely with security professionals, and governance team to educate colleagues on security best practices and raising awareness of potential threats.

Qualifications:

• Good degree in Information Systems/Technology, Computer Engineering, Computer Science, Information and Communications Technology (ICT) or related field.
• Preferably candidates with CISSP, CISA, CISM, CompTIA Security+ or equivalent professional certifications.
• Preferably candidates with a solid knowledge of cybersecurity principles and best practices, and ideally have at least 5 years ofrelevant work experience managing contractors and designing cybersecurity solutions to meet guidelines and standards.
• Experience in preparing tender specifications for vulnerability assessment, penetration testing, and creating SOPs for security incident response.
• Proficiency in security tools, logs extraction methods and technologies
• Has a curious mind to proactively detect potential cyber threats and develop measures to address them
• Excellent analytical and problem-solving skills
• Strong communication and collaboration skills
• Ability to work independently and as part of a team

We invite you to apply if you are an enthusiastic and security-aware individual with a passion for cybersecurity