What Jobs are available for Information Security in Singapore?

• Conduct security assessments, audits, and gap analysis across infrastructure, applications, and processes.
• Advise clients on cybersecurity strategy, governance, and best practices.
• Perform risk assessments, threat modeling, and vulnerability management to identify and mitigate security risks.
• Develop and recommend security policies, standards, and frameworks tailored to client needs.
• Support clients in achieving and maintaining compliance with ISO 27001, NIST, PCI-DSS, GDPR, HIPAA, or local regulations.
• Collaborate with IT, DevOps, and business stakeholders to integrate security into architecture and design.
• Assist in the design and implementation of security controls, IAM, encryption, and monitoring systems.
• Conduct penetration testing, code reviews, and application security assessments.
• Provide incident response planning and advisory services during security events or breaches.
• Deliver security awareness training and build a culture of cyber resilience.

• Security Assessments & Testing: Expertise in penetration testing, vulnerability assessments, red/blue teaming, and use of tools like Nessus, Qualys, Burp Suite, Metasploit, Wireshark.
• Network & Infrastructure Security: Knowledge of firewalls, IDS/IPS, VPN, WAF, load balancers, and endpoint protection tools.
• Cloud Security: Hands-on experience with AWS, Azure, GCP security configurations, identity management, and cloud-native security tools.
• Application Security: Familiarity with OWASP Top 10, secure coding practices, SAST/DAST tools (SonarQube, Veracode, Checkmarx).
• Governance, Risk & Compliance (GRC): Strong knowledge of frameworks like ISO 27001, NIST CSF, COBIT, SOC 2, PCI-DSS, GDPR, HIPAA.
• Identity & Access Management (IAM): Implementation experience with SSO, MFA, PAM solutions (CyberArk, Okta, Azure AD).
• Incident Response & Forensics: Knowledge of SIEM (Splunk, QRadar, ELK), SOAR, malware analysis, forensic investigations.
• Cryptography & Data Protection: Understanding of PKI, TLS, tokenization, and encryption standards.
• Automation & Scripting: Ability to automate assessments and reporting using Python, PowerShell, or Bash.

• Security certifications: CISSP, CISM, CISA, CEH, OSCP, CCSP, ISO 27001 Lead Auditor/Implementer.
• Knowledge of Zero Trust Architecture and container security (Docker, Kubernetes).
• Exposure to threat intelligence platforms and SOC operations.

Imagine what you could do here? At Apple, new ideas have a way of becoming phenomenal products, services, and customer experiences very quickly. Bring passion and dedication to your job and there's no telling what you could accomplish. Every role at Apple is crafted around our intention to leave the world a better place than we found it. Information Security protects Apple's information. This includes business, employee, and customer data wherever it goes. Our tools and services protect against threats that seek to compromise our systems, monitor the stability and security of our internal environment, and track emerging threats and vulnerabilities that might create an opportunity for compromise. We need the best and the brightest of tomorrow to stay ahead of the security landscape. If you are a born problem solver who is ready to take on the challenge of securing one of the world's largest companies, we may just have your dream internship.

Description

Successful applicants for this role will be performing the internship working alongside and mentored by our regional Cyber Security team based in Singapore. You will work on projects that helps to enhance the defensive capabilities of Apple's Information Security via the following activities: - Incidence response: includes but not limited to root cause analysis, post incident reviews, analyzing malware and obfuscated code etc - Data analytics: includes but not limited to big data log correlation, analyzing endpoint, network, and application logs etc - Software development: includes but not limited to scripting, automating incident response workflow etc High-performing interns will be eligible for full-time offers into Apple's Information Security Development Program (ISDP). ISDP is a two year rotational training program that offers a completely customizable series of assignments, with the goal of developing well rounded security professionals. Upon completion of the program, you will use your training and experience in advanced roles with the organization.

Minimum Qualifications

• Pursuing an undergraduate or graduate degree
• Excellent quantitative and interpersonal skills
• Technical acumen in at least one of the following areas: Server-side development (Python, Ruby, Java, Golang, C/C++, etc), Web development (ECMAScript, HTML, CSS3), Machine Learning (Python, R), Data Processing frameworks (Hadoop, Spark), iOS, or macOS development (Objective-C, Swift)
• Graduating between December 2025 and June 2026
• Success candidates need to have the right to work in the country of internship

Preferred Qualifications

• Leadership experience
  Related internship experience

Submit CV

eToro has created an intuitive Social Trading platform that gives traders and investors access to global stock markets, commodity trading, cryptocurrency trading, and more. We strive to make money management available and accessible to everyone (even to users with no prior experience or knowledge). We have over 33 million users worldwide, and our platform is available in over 140 countries around the world. With over 1500 employees worldwide, We have locations in the US, Cyprus, UK, Australia, Germany, and Israel, and we are constantly growing and expanding into new markets.

We are constantly growing and are excited to share that we are looking for a Information Security Compliance Officer to join our team

What will you be doing?

• Act as the primary local security contact / adviser for both Singapore and Australia offices.
• Work with Group IS and assist on the implementation and translation of information security policies and procedures for local offices.
• Develop and implement comprehensive security strategies to protect eToro's cryptocurrency assets and infrastructure, ensuring compliance with Singapore regulations.
• Govern local policies for wallets, trading platforms and crypto custodian services
• Collaborate with cross-functional teams in both Singapore and Europe to ensure security measures are integrated into all aspects of eToro's cryptocurrency operations.
• Provide an escalation path for security issues, incidents and inquiries to local offices.
• Provide regular and timely reporting on the status of cyber security to local management.
• Provide Cyber Security guidance to the local offices.
• Monitor IT/IS outsourcing arrangements and check that the KPIs/SLAs are met, else to find out the root cause and report it to local management.
• Proactively identify non compliance and areas of potential improvement to Group IS; and facilitate development and deployment of standard solutions.
• Collaborate with the Group Cyber Defense Operations and Cyber Security Engineering teams to develop a technical roadmap for local offices to meet local regulatory requirements.
• Work with Group Security Incident Response and Crisis Management teams to assist in driving incidents to acceptable resolution; and assist with investigations as needed.
• Participate in region/business unit related conferences, client facing engagement, industry forums to represent eToro's Cyber Security program.
• Responsible to self track (including mandatory in-house Compliance/AML training/ABC) all training hours.

Requirements:

• Must have Bachelor's degree, preferably in computer science or information systems
• Must have Cissp Cism Cisa certificates.
• 7+ years proven experience in information security (including audit experience), with a strong focus on cryptocurrency and blockchain technologies.
• Prior experience with engaging directly with regulators - a big plus
• In-depth understanding of security protocols, cryptography and blockchain technology.
• Well versed with industry regulations and compliance, such as: MAS TRMG and Cyber Hygiene, ISO27001, SOC2, NIST, PCI, PDPA/GDPR, etc.
• Ability to communicate clearly and effectively on both technology/development issues/concerns to any stakeholders.
• Good interpersonal skills, able to work independently and also a team player.
• Experience working in a matrix model, as the BISO supports operational and transformational efforts for a given region or organizational function.
• Knowledge and experience of Information Security Risk and Security governance.

This role will be based in our Singapore office. Candidates must have full working rights in Singapore.

Sub Department:

APAC BU

Role:

Compliance

NCS is a leading technology services firm that operates across the Asia Pacific region in over 20 cities, providing consulting, digital services, technology solutions, and more. We believe in harnessing the power of technology to achieve extraordinary things, creating lasting value and impact for our communities, partners, and people. Our diverse workforce of 13,000 has delivered large-scale, mission-critical, and multi-platform projects for governments and enterprises in Singapore and the APAC region.

We're searching for a Network & Security Engineer to be part of our diverse team of talent here at NCS

Overview

As a Network & Security Engineer, you will be responsible for the initial support and maintenance of OneCare's client. This role provides 24x7 standby onsite and remote troubleshooting support, onsite HW replacement, security patches and firmware or software upgrade of Network and Security devices while ensuring SLA contractual obligation is meet.

What will you do?

Network and Security Maintenance

• Perform routine network maintenance and system upgrades, including service packs, patches, and hot fixes.
• Hardware replacement which requires prepping up the replacement device with same firmware/software and patches with faulty device. This also requires basic to intermediate configuration.

Troubleshooting and Support

• Identify and resolve network and security issues promptly.
• Provide technical support to end-users and escalate issues to higher-level engineers when necessary.
• Document network problems and resolutions for future reference.
• Basic and/or Intermediatory skill in switches, routers or f5
• Basic and/or Intermediatory skill in Firewalls eg Fortinet, Checkpoint and/or Palo Alto

Security Management

• Adherence to all clients Security and Cyber hygiene policies.
  
  Respond to security audits and vulnerability assessments.

Incident Response

• Part of the 24x7 rotational standby to support all clients 24x7 ensuring meeting SLA.
• Respond to network and security incidents.
• Participate in incident response drills and post-incident reviews.
• Follow all processes, including timely escalation to senior engineers.

Documentation and Reporting

• Conduct and maintain accurate and up to date Preventive Maintenance report where contractually obligated.
• Daily regular accurate update of incident tickets.
• Collaborate with other engineers to ensure comprehensive documentation of network and security procedures/SOP.

The ideal candidate should possess:

• Diploma /Degree in Computer Science / Computer Engineering / Information Technology related field, or IT equivalent
• Network and security Internship experience or minimally 2 years of related experience or exposure
• Good knowledge of network and firewalls
• Experience in Fortinet/Check Point is a must
• Self-motivated with a positive "can-do" attitude, creative with excellent presentation, communication, negotiation and interpersonal skills including strong persuasive techniques.
• Ability to develop and maintain respectful and trusting relationship
• Good customer management experience
• Proficient in written and spoken English
• Able to travel as required

*Checkpoint Firewall experience required.

Key Responsibilities:

• Participate in maintenance standby duty to cover 24x7 support on rotational basis pre assigned by the team lead
• Ensure SLA Level is achieved every single fault case.
• Ensure escalation is carried out when a fault call is beyond the knowledge of L1/L2.
• Attend to daily call assignment when not in standby during office hours.
• Perform weekend or after office hours duty though not on standby if required.
• Attend to preventive maintenance not limited to hardware inventory.
• Follow up case from opening till closure.
• Update incident tickets properly and promptly.
• Get certifications required to support key customers.
• Train L1/L2 on his own competency. Example firewall/legacy products
• New assignment by Ops manager or TSM when needed.

This is in partnership with Employment and Employability Institute Pte Ltd ("e2i"). e2i is the empowering network for workers and employers seeking employment and employability solutions. e2i serves as a bridge between workers and employers, connecting with workers to offer job security through job-matching, career guidance and skills upgrading services, and partnering employers to address their manpower needs through recruitment, training and job redesign solutions. e2i is a tripartite initiative of the National Trades Union Congress set up to support nation-wide manpower and skills upgrading initiatives. By applying for this role, you consent to e2i's PDPA.

By sending us your personal data and curriculum vitae (CV), you are deemed to consent to PERSOLKELLY Singapore Pte Ltd and its affiliates to collect, use and disclose your personal data for the purposes set out in the Privacy Policy available at You acknowledge that you have read, understood, and agree with the Privacy Policy. 

PERSOLKELLY Singapore Pte Ltd
• RCB No E
• EA License No. 01C4394
• Reg. R , Lucas Tan

Cyber Security Agency of Singapore

Contract

What the role is

Quantum computers, as an emerging technology, hold the potential to drive economic growth through scientific advances and optimisation. However, they also pose cybersecurity risks, as they are expected to break most encryption algorithms that we rely on today to secure our data and communication.
As a Senior Consultant (Quantum-Safe) and a member of the Cyber Security Engineering Centre (CSEC), you will play a crucial role in designing, developing, and implementing state-of-the-art cybersecurity solutions, with a focus on quantum-safe technology. Your expertise will be essential in securing Singapore's Critical Information Infrastructure against emerging quantum threats.

What you will be working on

Responsibilities

• Develop strategies and policies for the migrating to quantum-safe technology and implementing robust cryptographic management.

• Collaborate with whole-of-government teams, industry, and research partners to develop and deploy quantum-safe (e.g., e.g., post-quantum cryptography (PQC) and quantum key distribution (QKD)) cybersecurity solutions to ensure a seamless nationwide transition to quantum-safe security.

• Evaluate vulnerabilities, potential threats, and attack vectors specific to quantum-safe technology.

• Identify associated risks with the adoption of quantum-safe technology.

• Stay updated with advances in quantum-safe technology.

• Prepare and present project updates to stakeholders.

What we are looking for

Requirements

• Possession of a Bachelor's degree in Computer Science, Engineering, Physics, or a related field

• Strong understanding of cryptography, including symmetric and asymmetric cryptographic primitives, protocols, and PQC

• Minimum of one year of experience working on cryptography or quantum-safe technology

• Proficiency in programming languages such as Python and C++ is advantageous

• Stakeholder-focused with good relationship-building, negotiation, and people management skills

• Strong problem-solving, analytical, and critical thinking skills

• Effective communication and presentation skills

• Driven and capable of working independently
If you share our passion to make a difference in the cyber security landscape, take up the challenge and now.
All applicants will be notified on whether they are shortlisted or not within 4 weeks of the closing date of this job posting.
For any issues with the application, you may drop your resume with us at
Note: CSA will be shifting to Punggol Digital District (PDD) in year 2026.

About Cyber Security Agency of Singapore

About the Cyber Security Agency of Singapore
Established in 2015, the Cyber Security Agency of Singapore (CSA) seeks to keep Singapore's cyberspace safe and secure to underpin our Nation Security, power a Digital Economy and protect our Digital Way of Life. It maintains an oversight of national cybersecurity functions and works with sector leads to protect Singapore's Critical Information Infrastructure. CSA also engages with various stakeholders to heighten cyber security awareness, build a vibrant cybersecurity ecosystem supported by a robust workforce, pursue international partnerships and drive regional cybersecurity capacity building programmes. CSA is part of the Prime Minister's Office and is managed by the Ministry of Digital Development and Information. For more news and information, please visit

About your application process

If you do not hear from us within 4 weeks of the job ad closing date, we seek your understanding that it is likely that we are not moving forward with your application for this role. We thank you for your interest and would like to assure you that this does not affect your other job applications with the Public Service. We encourage you to explore and for other roles within Cyber Security Agency of Singapore or the wider Public Service.

Constangy, Brooks, Smith & Prophete seeks an associate attorney to join our Cybersecurity & Data Privacy practice group. We are able to support a fully remote working set up for this role from anywhere in the contiguous US. The ideal candidate will have prior experience handling data privacy and cybersecurity matters, with a particular focus in incident response. We work with clients when their organization is most vulnerable, and as a result, this attorney must remain calm during crises and proactively communicate throughout the engagement. This candidate will work with a Partner to provide counsel to clients who find themselves at risk as a result of network intrusions, business email compromise or data breaches. Candidates must have excellent academic credentials, strong writing, communication and analytical skills, along with the ability to manage multiple projects in a fast-paced environment. Responsiveness and exceptional customer service skills are required. Effective management of billable hours is key to this position. A successful candidate will be a self-starter with the ability to work independently in order to meet critical deadlines, in addition to working collaboratively on projects as part of a larger team. CIPP/US, CIPP/E and/or CISSP certifications preferred, but not required.

We encourage interested candidates to complete an application; however, candidate materials can also be submitted directly to our National Recruiting Manager, Nicholas Golden at

We are not accepting search firm submissions for this role, at this time.

Constangy, Brooks, Smith & Prophete LLP is an Equal Employment Opportunity employer committed to providing equal opportunity in all of our employment practices, including but not limited to selection, hiring, assignment, re-assignment, promotion, transfer, and compensation. Our Firm prohibits discrimination, harassment, or retaliation in employment based on race, color, religion, national origin, sex (including pregnancy), gender, gender expression or identity, change of sex or transgender status, sexual orientation, age, disability, genetic information, citizenship status, military or veteran status, or any other category protected by applicable federal, state, or local law.