419 Security Developer jobs in Singapore

Design artefacts, spanning design, development, and implementation, into enterprise systems that describe security principles and how they relate to the overall enterprise system architecture. • Perform routine activities related to the periodic review and audit activities of infrastructure security systems and maintains documentation of security standards and procedures.

Requirements

• Hands-on experience working on AWS
• Hands-on experience with containerization using Docker, and Kubernetes
• Experience with SIEM tools and log analysis for threat detection.
• Hands-on experience with configuration management systems such as Terraform
• Hands-on experience with production deployments such as Kubernetes and automating provisioning with IaC best practices.
• Proficiency in applying security patches and vulnerability management across cloud and containerized environments.
• Configure and maintain the CICD pipelines incorporating streamlined change and release management process
• Implement scripts to automate server, CICD and other relevant tasks
• Hands-on experience with incident response, including following and refining security playbooks.
• Programming knowledge in python, bash
• Security certifications for AWS (such as AWS Certified Security – Specialty) and Kubernetes (such as Certified Kubernetes Security Specialist or equivalent) are advantageous

If you would like to know more about this role, do drop me a message or you can alternatively drop me an email stated below.

By submitting an application or your resume, you are deemed to have consented to Dynamic Human Capital Pte Ltd collecting, using and disclosing your personal data for the purposes stated in our privacy notice ( You acknowledge that you have read, understood, and agree with the terms in our privacy notice.

Under the revised Employment Agencies Licence Condition 5(b), employment agencies (EAs) are required to collect the personal data (e.g., NRIC, FIN) of applicants referred to employers for permanent or contract job positions of at least 6 months with a fixed monthly salary of $3,300 and above. PDPA requirements on collection, use and disclosure of personal data are not applicable to EAs that are collecting such information, as it is a regulatory requirement.

We regret to inform you that only shortlisted candidates will be notified. All applications will be treated with the strictest confidence.

Latha M

Senior Researcher

Dynamic Human Capital Pte Ltd,

2 Kallang Avenue #03-08 CT Hub Singapore

EA License No: 12C6253 |Registration No: R

Requirements

• Hands-on experience working on AWS
• Hands-on experience with containerization using Docker, and Kubernetes
• Experience with SIEM tools and log analysis for threat detection.
• Hands-on experience with configuration management systems such as Terraform
• Hands-on experience with production deployments such as Kubernetes and automating provisioning with IaC best practices.
• Proficiency in applying security patches and vulnerability management across cloud and containerized environments.
• Configure and maintain the CICD pipelines incorporating streamlined change and release management process
• Implement scripts to automate server, CICD and other relevant tasks
• Hands-on experience with incident response, including following and refining security playbooks.
• Programming knowledge in python, bash
• Security certifications for AWS (such as AWS Certified Security – Specialty) and Kubernetes (such as Certified Kubernetes Security Specialist or equivalent) are advantageous

If you would like to know more about this role, do drop me a message or you can alternatively drop me an email stated below.

By submitting an application or your resume, you are deemed to have consented to Dynamic Human Capital Pte Ltd collecting, using and disclosing your personal data for the purposes stated in our privacy notice ( You acknowledge that you have read, understood, and agree with the terms in our privacy notice.

Under the revised Employment Agencies Licence Condition 5(b), employment agencies (EAs) are required to collect the personal data (e.g., NRIC, FIN) of applicants referred to employers for permanent or contract job positions of at least 6 months with a fixed monthly salary of $3,300 and above. PDPA requirements on collection, use and disclosure of personal data are not applicable to EAs that are collecting such information, as it is a regulatory requirement.

We regret to inform you that only shortlisted candidates will be notified. All applications will be treated with the strictest confidence.

Latha M

Senior Researcher

Dynamic Human Capital Pte Ltd,

2 Kallang Avenue #03-08 CT Hub Singapore

EA License No: 12C6253 |Registration No: R

About CSIT:
CSIT is at the forefront of cybersecurity, delivering cutting-edge solutions to protect Singapore from Cyber threats. We specialize in developing cutting-edge pentesting products and platforms that enable proactive security assessments and vulnerability identification. At CSIT, we foster a culture of innovation, collaboration, and continuous learning, where talented individuals can thrive and make a meaningful impact in the field of cyber security. Join us in our mission to outsmart cyber threats with advanced penetration testing tools.
Role Summary:
As a Software Developer in our team, you will play a critical role in designing, developing, and maintaining products to identify and mitigate security vulnerabilities. You will also design, build, and optimize systems that support our security infrastructure and enhance our cybersecurity capabilities.
Key Responsibilities:

• Design, develop, and maintain cutting-edge pentesting products and platforms to support day-to-day cyber security operations.
• Architect and implement scalable, reliable, and secure software solutions for pentesting operations and exercises.
• Develop scripts and tools to streamline the deployment, configuration, and orchestration of pentesting environments.
• Research and develop security testing frameworks and techniques for pentesting tools to simulate real-world attack scenarios.
• Collaborate with security researchers and analysts to identify emerging threats and vulnerabilities for inclusion in pentesting simulations.
• Design, implement, and maintain (CI/CD) Continuous Integration/Continuous Delivery pipelines for rapid iteration and delivery of products.
• Stay abreast of the latest industry trends in Cybersecurity and DevOps, and integrate new technologies as appropriate.
  Requirements
  Bachelor's degree in Computer Science, Engineering, Software Engineering, or a related field

Proficiency in at least 1 of the programming languages: C/C++, C#, Java or Python
Excellent problem-solving skills and ability to troubleshoot complex technical issues.
Effective communication skills and ability to collaborate with diverse teams and stakeholders
Nice to haves
Understanding of security protocols and technologies, such as SSL/TLS, and network security
Understanding of cybersecurity concepts
Familiar with container technology such as Docker
Familiar with database concepts, queries and optimisation techniques
Experience with Agile software development methodologies and version control systems such as Git
As CSIT is an agencyunder the Ministry of Defence (Singapore), only Singapore Citizens will be considered.
#J-18808-Ljbffr

Job Overview

We are seeking a highly motivated Sales Executive to identify and develop new business opportunities in the security sector.

The ideal candidate will have strong communication and negotiation skills, with a proven track record of meeting and exceeding sales targets and KPIs.

Key Responsibilities:

• Identify and pursue new business opportunities in the security sector
• Builddellings with clients to understand their needs and preferences
• Prepare proposals, quotations, and presentations for potential clients
• Collaborate with internal teams to ensure client satisfaction

Requirements:

• Proven sales experience (preferably in security services or systems)
• Strong communication and negotiation skills
• Self-driven and result-oriented
• Minimum Diploma or equivalent qualification
• PLRD required

Qualifications
At least a Diploma in Computer Studies or related disciplines.
Possession of relevant professional certification would be advantageous.
At least two (2) years of relevant working experience in the following skillsets.
Skills
Experience in managing source code review, Vulnerability Assessment, and Penetration Testing (VAPT) with familiarity in remediating security vulnerabilities (e.g., OWASP Top 10 web apps vulnerabilities).
Security Tool usage.
Web Inspect tools.
Seniority Level
Not Applicable
Employment Type
Contract
Job Function
Public Health
Referrals increase your chances of interviewing at Tata Consultancy Services by 2x
#J-18808-Ljbffr

Join to apply for the
Senior Application Security Engineer
role at
Acronis
Acronis is revolutionizing cyber protection—providing natively integrated, all-in-one solutions that monitor, control, and protect the data that businesses and lives depend on.
We are looking for a Senior Application Security Engineer to join our mission to create a #CyberFit future and protect all data, applications and systems across any environment. The application security team works to make Acronis applications more secure against all kinds of threats. You will work with good guys on responsible disclosure, find security bugs before bad guys do it, change development processes to prevent bugs, monitor attacks and respond, and create novel solutions to detect and protect applications.
What You’ll Do
Threat modeling: Think about how attackers can compromise a system and what protections are needed.
Secure Software Development Lifecycle: Help developers write secure code that minimizes vulnerabilities by implementing secure coding standards, techniques, and best practices.
Security code reviews: Identify security vulnerabilities in source code before an application is deployed to production.
Vulnerability testing and analysis: Discover weaknesses once an application is deployed and advise development teams on remediation.
Conduct security assessments for software components developed in the company.
Validate external security reports and bug bounty submissions.
Take part in the SLDC process development and implementation.
Conduct post-mortem reviews of application security bugs.
Consult engineers on application security matters and train them on secure development practices.
What You Bring
Understanding of security models of Web/REST API, cloud, mobile and desktop apps.
Hands on experience with security assessment tools and attack techniques.
Code assessments in programming languages Go, Python, Ruby, C/C++, JavaScript. Basic programming skills with Go, Python or another language will come handy.
Strong communication skills.
2+ years in Application Security.
Strong knowledge of the modern web, mobile, and network security.
Published security research, open source tools, blog posts, proven history of bug bounty programs participation considered a strong advantage.
Please be ready to answer in an interview the following questions:
What is the Same Origin Policy? Share your knowledge about Cross-site scripting contexts.
Describe any attack like SQL injection, XXE, SSRF, or any other. Suggest right fixes and possible bypasses.
(Windows Security) Your opinion about LPE from Admin to the System user.
How to count possible compromised accounts?
Be ready to write a simple exploit or a few lines of code that allows checking some kind of attacking vector.
Who We Are
Acronis is a global cyber protection company that provides natively integrated cybersecurity, data protection, and endpoint management for managed service providers (MSPs), small and medium businesses (SMBs), enterprise IT departments and home users. Our all-in-one solutions are highly efficient and designed to identify, prevent, detect, respond, remediate, and recover from modern cyberthreats with minimal downtime, ensuring data integrity and business continuity. We offer the most comprehensive security solution on the market for MSPs with our unique ability to meet the needs of diverse and distributed IT environments.
Interview Practices
To maintain a fair and genuine hiring process, we kindly ask that all candidates participate in interviews without the assistance of AI tools or external prompts. Our interview process is designed to assess your individual skills, experiences, and communication style. We value authenticity and want to ensure we’re getting to know you—not a digital assistant. To help maintain this integrity, we ask to remove virtual backgrounds and include in-person interviews in our hiring process.
Acronis is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, marital status, national origin, physical or mental disability, medical condition, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, gender identity or expression, or any other characteristic protected by applicable laws, regulations and ordinances.
#J-18808-Ljbffr

Join to apply for the
Web Application Security Engineer APAC
role at
Julius Baer
1 week ago Be among the first 25 applicants
Join to apply for the
Web Application Security Engineer APAC
role at
Julius Baer
At Julius Baer, we celebrate and value the individual qualities you bring, enabling you to be impactful, to be entrepreneurial, to be empowered, and to create value beyond wealth. Let’s shape the future of wealth management together.
Julius Baer Group Ltd. acts in the sector Private Banking and is present in over 25 countries and around 60 locations. With the Headquartered in Zurich, we have offices in key locations including Bangkok, Dubai, Dublin, Frankfurt, Geneva, Hong Kong, London, Luxembourg, Madrid, Mexico City, Milan, Monaco, Mumbai, Santiago de Chile, São Paulo, Shanghai, Singapore, Tel Aviv and Tokyo. Join our global team and play a critical role in safeguarding our digital landscape as a Web Application Security Engineer. We're seeking a skilled expert to maintain and enhance the protection of our online platforms, ensuring the highest level of security for our clients worldwide.
YOUR CHALLENGE
Main Job Responsibilities
Work closely with our global team of engineers to ensure the smooth operation and maintenance of the Web Application Firewall (WAF) infrastructure
Enhance the security of web applications and APIs by implementing advanced protective measures on the WAF and configuring custom application-specific security policies
Onboard new web applications and APIs onto the WAF infrastructure, ensuring seamless integration and optimal security
Evaluate new or changed business requirements and assess their feasibility, as well as their impact on surrounding systems, standards, and guidelines
Troubleshoot technical issues related to WAF, identifying root causes and developing effective solutions
Participate in the 2nd and 3rd level support organization, providing on-duty support and collaborating with other teams to resolve incidents
Continuously improve the service reliability, security, performance, monitoring, and automation of the WAF infrastructure, with a focus on enhancing overall system availability and efficiency
Client Management (internal & external)
Various IT functions, both regionally and globally
Local Legal and Compliance functions
Business Management
Key local stakeholders include IT Service Owners, IT Infrastructure, IT Application Managers, IT Architecture and Project Managers
CRO functions – including Business Operational Risk, Information Security and Compliance functions
Global functions – IT Security Solutions, Security Architecture
Establish strong relationship with key stakeholders and across the internal IT
Regulatory Responsibilities &/OR Risk Management
Ensure appropriate ethical and compliant behaviour within the area of responsibility by clear demonstration of appropriate values and behaviours including but not limited to standards on honesty and integrity, due care and diligence, fair dealing (treating customers fairly), management of conflicts of interest, competence and continuous development, adequate risk management, and compliance with applicable laws and regulations
RANK APPLICABLE TO THE POSITION
Rank: AD
YOUR PROFILE
Professional and Technical
Profound understanding of security best practices of web applications and APIs
Solid understanding of web communication protocols such as TLS, Websocket, etc
Hands-on operational experience with highly available and scalable web infrastructure
Hands-on experience with operating WAF or reverse-proxy solutions such as F5, Imperva, Nevis, Cloudflare, or open-source alternatives like ModSecurity
Experience in software engineering (Java, Spring Boot, React, Typescript) and operational experience with Kubernetes-based environments
Strong troubleshooting and structured problem-solving skills
Skilled in log analytics and correlation, with hands-on experience in Splunk, Elastic or similar toolings, to investigate incidents and identify root causes
Familiarity with the implementation of authentication and federation mechanisms such as SAML, OAuth and OIDC and FIDO
Good technical foundation of Linux operating systems and its command line tools
Relevant academic background (e.g., Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field) or industry-recognized certifications (e.g. CISSP) with relevant practical knowledge is desired
Personal and Social
Team player, strong collaborator with the willingness to take ownership
Excellent communication skills in spoken and written form
Strong desire to learn and develop new skills
Methodical and results-driven approach to new challenges and tasks
Independent and self-driven
Ability to thrive in a globally distributed team environment
Regulatory
Good understanding of the technology regulatory framework in Singapore and Hong Kong
We are looking forward to receiving your full job application through our online application tool. Further interesting job opportunities can be found on our Career site.
Is this not quite what you are looking for? Set up a
job alert
by creating a candidate account here.
Seniority level
Seniority level Mid-Senior level
Employment type
Employment type Full-time
Job function
Job function Information Technology
Industries Banking
Referrals increase your chances of interviewing at Julius Baer by 2x
Sign in to set job alerts for “Application Security Engineer” roles.
Application Security Engineer- Global Payment
Security Engineer - Application/Product Security, APAC
Application Security Engineer (AAD) (Contract)
Application Security Engineer Graduate (Security Assurance) - 2026 Start (BS/MS)
Application Security Engineer Intern, Security Assurance - 2025 Start
Application Security Engineer Graduate (Security Assurance) - 2026 Start (BS/MS)
Senior Application Security Engineer (Bangkok based, relocation provided)
Senior/Staff Application Security Engineer (Bangkok based, relocation provided)
Web Application Security Engineer (CIAM & WAF) APAC
Cyber Security Solution Architect, Cybersecurity, Technology Con
Cyber Security Solution Architect, (Cyber Transformation & Operation)
VP/AVP, End User Collaborative Service (Engineering), Future Ready Technology, Group Technology
Executive Systems Analyst (Network Specialist)
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr

Overview
Application Security Engineer - Global Payment role at ByteDance. The Security Assurance Team builds infrastructures, platforms and technologies to protect users, products and infrastructure, collaborating with cross-functional teams on secure-by-design solutions at scale.
Responsibilities
Provide security engineering support to product teams to help identify potential security flaws in the early stages of SDLC.
Continuously design and conduct penetration testing to determine if infrastructure components, systems and applications meet security standards in staging/production environments.
Identify security issues under new threat scenarios, support incident response and forensics, and drive remediation in a cross-functional environment toward incident resolution.
Collaborate with other security teams and product teams to design defense-in-depth controls that limit attackers’ ability and improve security postures.
Identify risks and take ownership to resolve potential security project issues.
Continuously conduct security research and strive to innovate.
Qualifications
Minimum Qualifications
Background in Computer Science, Computer Engineering, Information Systems or other STEM disciplines.
Strong knowledge in web application security, mobile app security, cloud security and thick client security.
Experience in writing and reviewing code in at least one of: JavaScript (Node.js), Go, Python, Java, C++, Rust.
Good project management skills and focused teamwork.
Preferred Qualifications
Experience independently supporting the application security of a business line.
CTF players, BugBounty experience with reputable statistics on HackerOne, BugCrowd, etc.
About Us
Founded in 2012, ByteDance's mission is to inspire creativity and enrich life. With products including TikTok, Lemon8, CapCut and Pico, and platforms in China such as Toutiao, Douyin, and Xigua, ByteDance connects people to content in meaningful ways.
Why Join ByteDance
We pursue creativity through innovative products that help people express themselves, discover, and connect. Our global, diverse teams aim to create value for communities and users. We foster curiosity, humility, and impact with an "Always Day 1" mindset.
Diversity & Inclusion: ByteDance is committed to an inclusive space where employees are valued for their skills and perspectives. We celebrate diverse voices and strive to reflect the communities we reach.
Note: This listing is for the Global Payment role; other related Application Security Engineer roles and details may be listed separately.
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr