35 Security Analysis jobs in Singapore
Manager (Penetration Test & Vulnerability Assessment)
Posted today
Job Viewed
Job Description
MINDEF
Permanent
Closing on 21 Sep 2025
What the role is
You will play a pivotal role in safeguarding Singapore's defence and security interests by conducting comprehensive Penetration Testing (PT), Vulnerability Assessments (VA), and Source Code Security Reviews on IT assets, including infrastructure, web applications, and military applications.
What you will be working on
- Conduct comprehensive Penetration Testing (PT), Vulnerability Assessments (VA), and Source Code Security Reviews on IT assets, including infrastructure, web applications, and military applications
- Develop tailored security assessment tools and scripts to enhance testing capabilities and address evolving threat vectors
- Document findings, conduct analysis, and prepare detailed technical reports, including executive summaries for various stakeholders
- Collaborate with security engineers, developers, and other stakeholders to provide actionable guidance on remediating identified security risks and vulnerabilities
- Provide expertise in the design and implementation of security controls across applications, infrastructure, and network systems
- Develop and deliver specialised training and awareness programs to elevate the cybersecurity capabilities of the SAF personnel, with opportunities for growth in leadership and knowledge-sharing in the military cybersecurity context
- Maintain up-to-date knowledge of emerging threats, security best practices, and industry-standard frameworks
Challenge(s) - Maintaining consistent quality under time pressure
- Quickly learning and troubleshooting various tools and platforms
What we are looking for
- Education in Information Security, Computer Science, IT or a related field
- Industry-recognised certifications such as CREST CRT, GPEN, or OSCP
- At least 1 year of hands-on experience in conducting PT and VA, with a strong preference for experience in military or government-focused penetration testing
- Experience conducting security assessments on application infrastructure, networks, and cloud-based systems
- Strong understanding of web application, infrastructure, and network security architecture
- Excellent communication and presentation skills, with a focus on conveying complex security findings to both technical and non-technical stakeholders
- Ability to work independently and collaboratively within cross-functional teams
- Highly analytical, self-driven, and committed to continuous learning and skill enhancement
- Proficiency in scripting languages, such as Python, PowerShell, JavaScript, VBScript, Ruby, or Perl
- Track record of identifying and disclosing vulnerabilities or recognition in Capture-The-Flag (CTF) competitions
- Proficiency with tools such as BurpSuite, Metasploit, Nexpose, Nessus, and other industry-standard penetration testing and vulnerability assessment tools
Appointment will be commensurate with your experience.
Only shortlisted candidates will be notified.
About MINDEF
The mission of MINDEF and the Singapore Armed Forces is to enhance Singapore's peace and security through deterrence and diplomacy, and should these fail, to secure a swift and decisive victory over the aggressor.
The Defence Executive Officer (DXO) scheme is the non-uniformed career scheme of MINDEF that offers myriad opportunities in various job functions, such as corporate communications, cyber security, data analytics and visualisation, defence policy, finance, HR, psychology, and more. Embodying the same level of commitment towards defence, DXOs work together with their military counterparts to contribute to MINDEF/SAF's mission and ensure Singapore's security and stability. United by this common cause, our lines of defence complement each other to secure the prosperity and progress of our nation.
About your application process
This job is closing on 21 Sep 2025.
If you do not hear from us within 4 weeks of the job ad closing date, we seek your understanding that it is likely that we are not moving forward with your application for this role. We thank you for your interest and would like to assure you that this does not affect your other job applications with the Public Service. We encourage you to explore and for other roles within MINDEF or the wider Public Service.
Senior Cybersecurity Analyst
Posted today
Job Viewed
Job Description
We are seeking an experienced and highly skilled cybersecurity professional to join our dynamic team as a Senior Cybersecurity Analyst / Security Engineering Lead .
In this role, you will be responsible for leading advanced security engineering initiatives and providing oversight of incident monitoring and response activities within a Level 2/3 Security Operations Center (SOC) environment. You will play a critical role in proactively identifying, investigating, and mitigating security threats, as well as driving efforts to ensure robust endpoint protection and overall infrastructure security.
Responsibilities:
Cyber Incident and Forensic Investigation:
- Lead and conduct thorough cyber incident investigations, ensuring proper analysis of threats and breaches.
- Perform forensic analysis to understand the scope of security incidents and assist in data recovery, evidence preservation, and reporting.
SOC Incident Monitoring and Investigation:
- Oversee Level 2/3 SOC operations to ensure the timely identification and resolution of security threats.
- Coordinate and lead incident response efforts across various security systems, managing escalations effectively.
Vulnerability Assessment and Penetration Testing (VA/PT):
- Conduct vulnerability assessments and penetration testing on networks, systems, and applications.
- Provide actionable recommendations for remediation of identified vulnerabilities and ensure security measures are implemented.
Endpoint Security Management:
- Implement and manage endpoint security solutions including anti-malware, encryption, and troubleshooting of endpoint devices.
- Ensure that all endpoints are secured in compliance with company security policies.
Leadership in Security Engineering:
- Lead and mentor the security engineering team, providing guidance on the design, implementation, and maintenance of security systems.
- Oversee the development and deployment of proactive security measures, ensuring the team remains responsive to evolving cyber threats.
Ethical Hacking and Security Testing:
- Perform hands-on ethical hacking, including penetration testing and vulnerability assessments, to assess and enhance organizational security posture.
Requirements:-
Certifications:
- Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), or equivalent certifications.
- CISSP (Certified Information Systems Security Professional) or equivalent certification is highly preferred.
Experience:
- 5+ years of experience in cybersecurity, with hands-on experience in incident response, digital forensics, and security engineering.
- Demonstrated experience in managing security operations within a Level 2/3 SOC environment.
- Proven experience in vulnerability assessments, penetration testing, and remediation strategies.
- Expertise in endpoint security tools and anti-malware solutions.
- Strong experience in ethical hacking and penetration testing practices.
Technical Skills:
- Deep understanding of common attack vectors and security tools (e.g., SIEM, IDS/IPS, endpoint protection).
- Strong knowledge of encryption protocols and endpoint protection strategies.
- Familiarity with network security principles, firewalls, VPNs, and intrusion detection systems.
Leadership & Communication:
- Excellent leadership, communication, and team management skills.
Ability to clearly explain complex security issues and incident findings to non-technical stakeholders.
Only shortlisted candidate will be notified.
Senior Cybersecurity Analyst
Posted today
Job Viewed
Job Description
Responsibilities:
Cyber Incident and Forensic Investigation
- Lead and conduct thorough cyber incident investigations, ensuring proper analysis of threats and breaches.
- Perform forensic analysis to understand the scope of security incidents and assist in data recovery, evidence preservation, and reporting
SOC Incident Monitoring and Investigation
- Oversee Level 2/3 SOC operations to ensure the timely identification and resolution of security threats.
- Coordinate and lead incident response efforts across various security systems, managing escalations effectively.
Vulnerability Assessment and Penetration Testing (VA/PT)
- Conduct vulnerability assessments and penetration testing on networks, systems, and applications.
- Provide actionable recommendations for remediation of identified vulnerabilities and ensure security measures are implemented.
Endpoint Security Management
- Implement and manage endpoint security solutions including anti-malware, encryption, and troubleshooting of endpoint devices.
- Ensure that all endpoints are secured in compliance with company security policies.
Ethical Hacking and Security Testing
- Perform hands-on ethical hacking, including penetration testing and vulnerability assessments, to assess and enhance organizational security posture.
Qualifications:
- Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), or equivalent certifications.
- CISSP (Certified Information Systems Security Professional) or equivalent certification is highly preferred.
- 5+ years of experience in cybersecurity, with hands-on experience in incident response, digital forensics, and security engineering.
- Demonstrated experience in managing security operations within a Level 2/3 SOC environment.
- Proven experience in vulnerability assessments, penetration testing, and remediation strategies.
- Expertise in endpoint security tools and anti-malware solutions.
- Strong experience in ethical hacking and penetration testing practices.
- Deep understanding of common attack vectors and security tools (e.g., SIEM, IDS/IPS, endpoint protection).
- Strong knowledge of encryption protocols and endpoint protection strategies.
- Familiarity with network security principles, firewalls, VPNs, and intrusion detection systems.
- Ability to clearly explain complex security issues and incident findings to non-technical stakeholders.
Cybersecurity Analyst Engineer
Posted today
Job Viewed
Job Description
We're partnering with a well-funded, fast-growing tech company to hire a Cybersecurity Analyst Engineer to join their team.
- Monitor threats and implement proactive security measures.
- Deploy and maintain enterprise security monitoring solutions.
- Create detection rules, automated workflows, and ensure compliance.
- Support incident response and troubleshoot security issues.
- Collaborate with teams on secure application deployment.
- Strong analytical and technical skills with experience in security platforms.
Reach out to Ayla at for a confidential discussion.
EA License No: 19S9830
Security Analyst
Posted today
Job Viewed
Job Description
Akkodis, is a global leader in the engineering and R&D market that is leveraging the power of connected data to accelerate innovation and digital transformation. With a shared passion for technology and talent, 50,000 engineers and digital experts deliver deep cross-sector expertise in 30 countries across North America, EMEA and APAC. Akkodis offers broad industry experience, and strong know-how in key technology sectors such as mobility, software & technology services, robotics, testing, simulations, data security, AI & data analytics. Akkodis is part of the Adecco Group. Akkodis is a commercial brand under which both AKKA and Modis entities operate.
About the RoleAs a Security Analyst with Akkodis, you will play a critical role in helping the client defend against sophisticated automated threats targeting their web platforms. You'll be responsible for analyzing large volumes of web traffic, identifying patterns and anomalies, and collaborating with multiple stakeholders to implement effective mitigation strategies.
This role requires a strong analytical mindset, excellent communication skills, and a passion for cybersecurity. You'll act as a trusted advisor to clients, providing actionable insights and supporting them through incident response and ongoing threat management.
Key Responsibilities
- Analyze web traffic data to detect and isolate advanced bot behaviors and automated attack patterns.
- Investigate anomalies and provide detailed, evidence-based reports to clients.
- Collaborate with clients to understand the business impact of automated threats and develop tailored mitigation strategies.
- Respond to incidents in accordance with premium service-level agreements (SLAs).
- Conduct regular client meetings to present findings, share insights, and guide strategic decisions.
- Work closely with internal research, data science, and product teams to deliver intelligence that informs product enhancements.
- Refine detection mechanisms by analyzing false positives and improving accuracy.
- Create clear and compelling data visualizations to validate findings and demonstrate impact.
- Maintain deep expertise in bot mitigation techniques and evolving threat landscapes.
- Take ownership of client issues and contribute to a collaborative team environment.
Qualifications & Skills
- Strong interest in cybersecurity and emerging threat trends.
- Excellent problem-solving skills and attention to detail.
- Effective communicator with the ability to engage both technical and non-technical stakeholders.
- Experience with SQL and data visualization tools (e.g., Tableau, Looker).
- Familiarity with scripting languages such as Python, Bash, or Go.
- Solid understanding of HTTP protocols and web infrastructure.
- Ability to work independently and as part of a cross-functional team.
- Bachelor's degree in IT, Computer Science, Engineering, Mathematics, or equivalent experience.
Preferred Qualifications
- Multilingual proficiency (e.g., Spanish or French) is a plus.
security analyst
Posted today
Job Viewed
Job Description
Job Description
We are looking for a motivated Security Analyst to join our team. The candidate will be responsible for ensuring the security, stability, and compliance of our IT infrastructure, cloud platforms, and applications. You will work closely with our operations and development teams to identify security risks, implement preventive measures, and respond to incidents.
Key Responsibilities:
Monitor infrastructure, applications, and networks using security tools (e.g., Prometheus, ELK, Cloudflare, AWS GuardDuty).
Perform vulnerability assessments, patch management, and system hardening.
Implement and manage cloud security controls across AWS, Alibaba Cloud, and on-premise environments.
Coordinate and support incident response activities, including investigation, mitigation, and reporting.
Develop and maintain security baselines, policies, and best practices.
Conduct log analysis, intrusion detection, and threat monitoring.
Work with DevOps teams to integrate security into CI/CD pipelines (DevSecOps).
Prepare documentation, reports, and recommendations for management and regulatory compliance.
⸻
Requirements:
Degree/Diploma in Information Security, Computer Science, or related field.
At least 3–5 years of experience in IT security, systems administration, or cloud infrastructure.
Hands-on experience with security tools such as Prometheus, ELK/ELK Stack, SIEM platforms, IDS/IPS, and firewalls.
Knowledge of cloud environments (AWS, Alibaba Cloud, Azure, or GCP) and container platforms (Docker, Kubernetes).
Familiarity with security frameworks and standards (ISO27001, NIST, OWASP, Zero Trust).
Strong troubleshooting and analytical skills.
Relevant certifications (CISSP, CISM, CEH, CompTIA Security+, AWS Security Specialty) will be an advantage.
Good communication skills and ability to work with cross-functional teams.
Security Analyst
Posted today
Job Viewed
Job Description
We are looking for a Security Analyst to join a dedicated team protecting critical digital assets around the clock.
In this role, you will:
- Monitor, detect, and respond to cybersecurity events and incidents
- Investigate potential threats, troubleshoot network or system issues, and ensure timely incident resolution
- Publish advisories, alerts, and threat intelligence to stakeholders
- Participate in cyber exercises and simulate incident scenarios to strengthen defenses
This is a rotating shift role including weekends and public holidays, with competitive pay, shift allowances, and overtime opportunities .
Be The First To Know
About the latest Security analysis Jobs in Singapore !
Security Analyst
Posted today
Job Viewed
Job Description
Role Overview
Our client, a leading global commodities brokerage and financial services firm, is seeking an IAM Operations Analyst to support and manage identity lifecycle processes, authentication, authorization, and access control across a full stack of business applications. The role will work closely with IT, security, and infrastructure teams to ensure secure and compliant access management.
Key Responsibilities
• Design and implement IAM frameworks aligned with security best practices and business needs
• Manage user provisioning, deprovisioning, and role-based access control across multiple systems
• Ensure compliance with regulations (e.g., GDPR, SOX) and internal security policies
• Maintain documentation of user access policies and audit logs for reporting purposes
• Conduct role-based access control (RBAC) reviews to minimize excessive or inappropriate permissions
• Collaborate with IT, security, and business stakeholders to align IAM initiatives with organizational goals
• Lead investigations into access-related incidents and recommend remediation measures
• Promote security awareness and train staff on access policies and procedures
• Oversee IAM team activities, including performance appraisals and ensuring SLAs are met
• Monitor and manage Jira queues to ensure timely resolution of requests
Requirements
• Strong knowledge of IAM tools (e.g., Okta, SailPoint, CyberArk, Azure AD) and technologies such as SSO, MFA, and RBAC
• Solid understanding of security principles such as least privilege, identity governance, and privileged access management
• Familiarity with compliance frameworks and regulations such as GDPR, SOX, HIPAA, ISO 27001
• Strong problem-solving, analytical, and communication skills with the ability to work across technical and non-technical teams
• Experience conducting audits, producing reports, and ensuring IAM systems comply with legal and regulatory standards
• Ability to respond effectively to access-related incidents and manage IAM operations in high-pressure situations
• Experience working in regulated industries such as financial services
• Proven ability to engage stakeholders and present IAM risks and performance to senior leadership
Yang Lily, Recruit Avenue Pte. Ltd.
EA License Number: 23C1935 | EA Personnel Number: R
commodities
Security Analyst
Posted today
Job Viewed
Job Description
Job Descriptiom:
- Maintain and administer security toolsets (such as IAM, DAM, Key Management) ensuring the tools are functioning according to the security management plan.
- Respond and perform triaging of security alerts generated from the security toolsets in a timely manner according to SLA.
- Perform security scanning and testing by using the Vulnerability Assessment tools.
- Reporting and tracking on vulnerabilities and risks and ensure timely patching are completed to comply with stipulated resolution time.
- Assess the applicability of newly published security vulnerabilities to components used within the environment, track and report the status until closure.
- Co-develop process documents and participate in initiatives to finetune and streamline security operations.
Requirements:
- 1-3 years hands-on experience of using common security tools like IAM (eg.IBM ISAM), DAM (eg. IBM Guardium) and Vulnerability Assessment tool (eg. Tenable Nessus)
- Security certifications and AWS Cloud certified is preferable but not a must.
- Proficient in security control principles including SOD.
- Good attitude and passionate with discovery of security gaps and actively participate in problem-solving process.
- 3 primary skill sets - conducting Vulnerability Assessments (including doing scanning and reporting), managing security toolsets (eg. DAM, Key Management and Nessus), supporting security operations.
- Vulnerability scanning is required to be performed outside of normal office hours, the analyst is expected to comply and support.
Cyber Security Analyst
Posted today
Job Viewed
Job Description
Job Description
We are looking for a Cybersecurity Analyst to join our team in safeguarding organizational systems and data against security threats. The role involves monitoring, administering, and improving security operations, while ensuring compliance with policies and standards.
Key Responsibilities
- Maintain and administer security toolsets (IAM, DAM, Key Management), ensuring proper functionality as per the security management plan.
- Monitor, respond, and triage security alerts generated by toolsets within defined SLAs .
- Perform vulnerability scanning and testing using Vulnerability Assessment tools.
- Report, track, and follow up on vulnerabilities and risks, ensuring timely patching in compliance with stipulated resolution times.
- Assess applicability of newly published security vulnerabilities to in-scope components, track remediation, and report status until closure.
- Co-develop process documents and contribute to continuous improvements in security operations.
- Perform vulnerability scans as required.
Required Skills & Experience
- 1–3 years of hands-on experience with security tools, such as:IAM (e.g., IBM ISAM)
DAM (e.g., IBM Guardium)
Vulnerability Assessment (e.g., Tenable Nessus)
- Familiarity with security control principles (including Segregation of Duties – SOD).
- Strong problem-solving mindset with a proactive attitude toward identifying and addressing security gaps.
- Security certifications and/or AWS Cloud certification are preferred but not mandatory.
- Key skillsets include:Conducting vulnerability assessments (scanning and reporting)
Managing security toolsets (DAM, Key Management, Nessus)
Supporting day-to-day security operations