170 Security Information jobs in Singapore

Drive the delivery of secure software solutions at an iconic organization. Your talent will make a lasting impact in a challenging and rewarding role.

As a Security Engineer I at JPMorgan Chase within the the Cybersecurity & Technology Controls, you are part of an agile team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. As an entry level member of the security engineering team, you execute basic software solutions through the design, development, and troubleshooting of a single technical area, while gaining skills and experience to grow within your role.

Job responsibilities

• Contributes to producing high-quality security solutions in accordance with existing playbooks to satisfy security requirements for internal clients (e.g., product, platform, and application owners)

• Executes basic security solutions, design, development, and technical troubleshooting

• Writes secure and high-quality code using the syntax of at least one programming language with peer guidance

• Interprets architecture and design representations, as well as nonfunctional requirements to develop secure, stable software against a defined architecture

• Participates in continuity-related awareness, training, educational activities, and exercises

Required qualifications, capabilities, and skills

• Bachelor’s Degree in Computer Science, Cybersecurity, Data Science, or related disciplines

• Formal training or certification on security engineering and/or cybersecurity concepts and 1+ years applied experience

• Basic experience working on software systems and design principles

• Ability to work in large, collaborative teams to achieve organizational goals, with a passion to build an inclusive and innovative culture

• Demonstrable ability to code in one or more languages

• Proficiency in developmental toolsets

• Basic knowledge of industry-wide technology trends and best practices

• Basic knowledge of data security risks and data privacy standards

• Basic understanding of security protocols, cryptography, authentication, authorization, and security

Preferred qualifications, capabilities, and skills

• Cloud computing related certifications with an AWS focus are strongly preferred (i.e., Certified Solutions Architect, DevOps Engineer, etc.) or similar

• Experience effectively communicating with senior business leaders

To apply for this position, please use the following URL:

Location: CBD, Singapore

Type: 1-year contract (with possible extension)

This is a leadership n Hands on role — you'll help set the strategy, make big decisions on security, and lead responses if anything goes wrong

You are tasked with keeping the company's IT systems and data secure.

This includes making sure there are strong security policies, protecting against cyber threats, and helping the company meet regulations.

You'll work closely with top management and teams across the company to manage risks and improve cybersecurity.

When need arises. you will need to hands on to solve the problems

.

Job scope:

Leadership

• Set and lead the company's overall IT security plan.
• Advise top leaders on cybersecurity matters.
• Create security rules and make sure everyone follows them.
• Help other departments understand and support security goals

Operations

• Manage the IT security budget carefully.
• Track performance — like system downtime, incident handling speed, and vendor performance.
• Make business cases to justify investments in security tools or projects.

Cybersecurity Incident Handling

• Keep improving systems to detect and prevent cyberattacks.(Leadership and Hands on)
• Monitor for threats and respond quickly if there's a breach.(Leadership and Hands on)

Compliance

• Identify and manage cybersecurity risks (including third-party/vendor risks).
• Ensure the company follows laws and industry standards (like MAS TRM, ISO 27001).
• Regularly check and report on security risks and how they're being handled.

Requirement

• A degree in Computer Science, IT with Certification :CISSP, CISM, CISA, CRISC, or CCSP.
• 5 years in IT Security n 3years in a leadership role like IT Security Manager or CISO.

Added advantage:

Finance or insurance domain.

Other Skills

• Strong knowledge of cybersecurity laws, risks, and standards.
• Ability to explain technical issues to non-technical people.
• Good leadership and teamwork skills.
• Experience with budgeting and running IT security projects.

What You'll Be Measured On:

• Annual cybersecurity strategy report
• Quarterly risk reports and dashboards
• Performance metrics (e.g: incident handling, cost efficiency)
• Budget usage and cost tracking
• Regular reviews of IT security performance and vendor quality

Work location :CBD

Whats on offer

(1) Attractive package

(2) Stable Management

(3) Dynamic work environment.

For better response, pls apply via job page

click job opening, click relevant position.

We regret that only shortlisted candidates will be notified.

Senior IT Security Analyst (Information Security Department) (NIE)
About The National Institute Of Education (nie)
The
National Institute of Education (NIE), Singapore , is Singapore’s national teacher education institute and we are proud to be an integral part of the nation’s education service. We play a key role in the preparation of teachers and in the provision of teacher professional and school leadership development programmes. We are committed to our vision of being
An Institute of Distinction: Leading the Future of Education
and our mission to
Inspire Learning, Transform Teaching and Advance Research . Read more about NIE here.
As part of NIE’s commitment to strengthening cybersecurity resilience, we are seeking a Senior IT Security Analyst to lead our Incident Response (IR) capabilities. This role is central to the Institute’s strategic direction, ensuring timely, effective, and coordinated responses to cyber threats, while continuously enhancing our response playbooks and readiness through automation and structured learning. This is a 3-year contract position.
Key Responsibilities
Incident Response Leadership
Oversee the entire incident response lifecycle from detection to resolution.
Lead investigations of IT security incidents and ensure thorough root cause analysis and remediation.
Develop and maintain incident response playbooks and procedures.
Coordinate with internal, external stakeholders, and vendors during incidents.
Conduct post-incident reviews and report findings to management.
Monitoring and Detection
Develop and implement advanced threat detection and monitoring strategies.
Utilize SIEM, EDR, and other security tools for timely incident detection.
Perform threat hunting and proactive security assessments.
Collaborate with IT teams to deploy and optimize security solutions.
Threat Statistics and Reporting
Analyze and compile statistics on threats relevant to the Institute.
Prepare and present detailed reports on threat statistics to stakeholders.
Use data visualization tools to communicate threat trends and insights.
Requirements
Educational Background
A University Degree in Information Systems, Computer Science, Cybersecurity, or a related field.
Professional Certification(s) in incident handling and security analysis preferred.
GCIH or its equivalent is preferred.
Professional Experience
Minimum of 8 years of progressive experience in IT security, with a focus on Incident response.
Minimum of 4 years of experience in a security operations center, with proven leadership capabilities.
Intermediate knowledge of security operations, incident analysis, incident handling, and vulnerability management or testing, system patching, log analysis, intrusion detection, or firewall administration.
Proven experience in managing incident response and performing threat hunting.
Technical Expertise
Proficiency in Security Information and Event Management (SIEM), Endpoint Detection and Response (EDR), traffic and packet analysis, and cloud security.
Experience in firewall, Intrusion Prevention Systems (IPS), Web Application Firewalls (WAF) administration, virtualization, and cloud technologies.
Experience in monitoring and administering host-based intrusion detection systems.
Knowledge and experience in Linux/Windows/Database technologies preferred.
Strong knowledge of industry standards and information security policy frameworks.
Hands-on experience with scripting and automation tools to enhance security operations.
Ability to conduct gap analysis of current processes and identify opportunities for improvement.
Evaluate internal and external environments for threats related to Information Security and act as a subject matter expert to ensure these are properly addressed and controlled.
Continuously improve event correlation and alerting processes and use cases to detect potential incidents.
Automate manual processes to enhance security incident response.
Experience with network security assessment tools.
Leadership and Communication
Excellent leadership and team management skills, with the ability to inspire and motivate a team.
Strong communication skills, with the ability to effectively interact with stakeholders at all levels, including University administration.
Demonstrated ability to drive strategic initiatives and lead a team through change.
Exceptional problem-solving skills and the ability to think critically under pressure.
Ability to interview stakeholders to define and document business requirements.
Provide advice and guidance on response action plans for information risk events and incidents based on incident type and severity.
Other Information
We regret that only shortlisted candidates will be notified.
NIE staff can take chartered buses at their own expense from or near their home to the NIE campus. This is subject to the availability of bus routes and seats.
Hiring Institution: NIE
Seniority level
Seniority level Mid-Senior level
Employment type
Employment type Full-time
Job function
Job function Information Technology
Industries Higher Education
Referrals increase your chances of interviewing at Nanyang Technological University Singapore by 2x
Get notified about new Senior Information Technology Security Analyst jobs in
Singapore, Singapore .
IT Compliance & Cybersecurity Analyst - Financial Service
IT Compliance & Cybersecurity Analyst, Financial Service (Campus Recruitment 2026)
IT Compliance & Cybersecurity Analyst, Financial Service (Campus Recruitment 2025)
IT Project Manager / Business Analyst - Securities and Derivatives
AVP, Cyber Security Engineer, Information Security Services, Group Technology
AVP, Cyber Security Engineer, Information Security Services, Group Technology
Security Operations Associate - Data Loss Prevention and Insider Threat Analyst
Senior Associate, Cyber Security Engineer, Information Security Services, Group Technology
VP/AVP, Cloud Security Engineer, Information Security Services, Group Technology
Senior Associate, Cybersecurity Engineer, Access Management, Information Security Services, Group Technology
Senior Associate, Security Application Engineer - Identity & Automation, Information Security Services, Group Technology
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr

Carry out the end-to-end security management for enterprise of application security, host security, data security, network security, including but not limited to security policy management and system maintenance.
Responsible for the Governance, Risk and Compliance technical implementation of personal information protection requirements.
Project management, plan and coordinate security tools implementation throughout the overseas region. Providing periodic reporting of progress and issues.
Conduct and perform periodic security awareness training and phishing campaigns.
Responsible for the break-down and implementation of the development work in the baseline specification and technical architecture.
The ideal candidates we are looking for should be seasoned Information Security Professionals with:
KEY REQUIREMENTS
Bachelor’s degree or above in Computer Science.
At least 3 years working experience in network or information security related fields.
Familiar with ISO27001, ITIL related technical standards and control measures.
Familiar with common information security products and technical principles, e.g. system and network security, DLP, antivirus, encryption, SIEM, Zero Trust etc.
Security certification such as CISSP, CISA, CCNP, CCIE is preferred.
#J-18808-Ljbffr

**Line of Service**Internal Firm Services**Industry/Sector**Not Applicable**Specialism**IFS - Risk & Quality (R&Q)**Management Level**Associate**Job Description & Summary**At PwC, we help clients build trust and reinvent so they can turn complexity into competitive advantage. We’re a tech-forward, people-empowered network with more than 370,000 people in 149 countries. Across audit and assurance, tax and legal, deals and consulting we help clients build, accelerate and sustain momentum. Find out more at
If you love the business side of information security this is the place to be. Within the CISO pillar we work closely with member firm stakeholders to understand their business model and roadmap for technology.
In turn the CISO pillar outlines the roadmap for NIS and drives engagement and adoption of central security services in line with the PwC Cyber Readiness program.
Our mission is to identify, control, and reduce the attack surface across the network of member firms while increasing our adversaries’ cost of attack.
Network Information Security team is redefining cyber security on a global scale at PwC. Our mission protects 223,000 PwC members across 157 member firms worldwide, as well as our global clients.
If you are seeking an exciting career with the scope to grow your information and cyber security skills, then NIS will empower you to do so.**Roles & Responsibilities**:**Project Support:*** Assist in the planning, execution, and monitoring of projects.* Utilise strong critical thinking and problem solving skills day to day* Collaborate with team members to ensure project deliverables are met on time and within scope.* Prepare and maintain project documentation, including reports, presentations, and meeting minutes.* Quickly adapt to changing priorities and project requirements.* Demonstrate flexibility in managing tasks and responsibilities in a dynamic work environment.* Proactively identify and address potential issues or roadblocks to ensure smooth project execution.* Work with other NIS teams both locally, regionally and globally to deliver the security needs specific to the firm.**Compliance and Vulnerability Management:*** Support work in vulnerability management and compliance activities* Handles BAU activities such as managing security exceptions* Help the business comply with the Information Security Policy by leveraging your cyber security knowledge and expertise.* Collaborate with PwC IT and global team to align security process and tools.**Application Security:*** Guide and support the business team to complete all required security reviews* Build knowledge on application security to effectively support security assessments* Align with different global and local teams to identify and fix gaps or risk found.**Other*** Help with daily security incident handling* Help to manage junior staff, eg. internsAn effective CISO pillar candidate will also possess the following **skills/ Requirements*** Able to work in a fast-paced environment, can upskill quickly and learn proactively* Analytical: Inquisitive nature and intuition regarding what questions to ask, when, and their relative significance.* Technical: Broad understanding of security technology.* Business: High level understanding of PwC’s business model, service offerings, and business operating environment as it pertains to the firm’s threat landscape. Ability to frame threats and exposures in a business context recognized by non-technical staff and executives.* Individuals selected for this role are expected to have both extensive knowledge and managerial know-how related to the following aspects: Demonstrate flexibility in managing tasks and responsibilities in a dynamic work environment* Understanding of technical and non-technical information security risks.* Have skills to analyse data and visualise data (good to have knowledge of Excel, PowerPoint etc.)* Good written and effective communicator to deal with various stakeholders* Meticulous and possesses an eye for details* Proactive, keen to learn, enjoys solving challenging problems, thinking outside of the box* Diligent and open to feedback* Experience in a role balanced between business stakeholders and a central service organization.* Possess knowledge about application security to effectively support security assessments* Time and Task Management: Ability to prioritise risk, manage a variety of take, take ownership to drive completion of activities and deliver on time**Education and Experience**:* Interest in Information Security* Bachelor’s or master’s degree (technical degree) or equivalent Industry certification**Candidate Specifications:***Desired Certifications:** (Certifications aren’t a prerequisite however are well regarded)**Education Level:** Undergraduate Degree (e.g. BIT, BSc) STEM or equivalent work experience: 2 - 4 years’ of progressive professional roles involving information security, computer science and/or other technical background**Education** *(if blank, degree and/or field of study not specified)*Degrees/Field of Study required:Degrees/Field of Study preferred:**Certifications** *(if blank, certifications not specified)***Required Skills**Application Security, Application Security Assessment, Application Security Assessments, Application Security Reviews, Application Security Testing, Cybersecurity Controls, Cyber Security Standards, Security Vulnerability Assessments, Threat and Vulnerability Assessment, Vulnerability Assessments, Web Application Security, Web Application Security Testing**Optional Skills**Accepting Feedback, Accepting Feedback, Active Listening, Azure Data Factory, Communication, Cybersecurity, Cybersecurity Governance, Data Architecture, Data Archiving, Data Flow Mapping, Data Privacy Act, Emotional Regulation, Empathy, Enterprise Content Management, Incident Response Plan, Inclusion, Information Rights Management (IRM), Information Security, Information Security Governance, Information Security Management System (ISMS), Intellectual Curiosity, IT Infrastructure, Operating Model, Optimism, Privacy and Security {+ 6 more}**Desired Languages** *(If blank, desired languages not specified)***Travel Requirements**0%NoNo**Job Posting End Date**
#J-18808-Ljbffr

Perform IT security operations involving activities such as security
log reviews, vulnerability assessments, security access review and
security configuration review to ensure compliance based on customers'
requirements. Critical Key Functions and Key Tasks Perform
Vulnerability Assessment Scanning

* Work with the internal project
team and customers to establish the in-scope inventories.

* Prepare the environment and complete the pre-scan activities.

* Conduct vulnerability assessment scanning using the designated tool.

* Review
the scan results, process the results, and issue the scan reports to
stakeholders. * Follow up with the internal teams on the remediation.
* Published the remediation status IT Security Incident Management

* Involved in IT Security Incident Response Team (SIRT)

* Work with internal teams to resolve the reported security incidents

* Provide periodic status updates to IT Security Manager IT Security Alerts &
Advisory

* Tracking of IT security alerts and advisory issued by SOC and threat intelligence authorities. * Inform the appropriate stakeholders on the alert notifications

* Track the progress of remediations by the respective teams to ensure proper closure

* Conduct Security Log reviews

* Perform review of security logs in accordance to the agreed frequency.

* Investigate and clarify any anomaly with the respective towers.

* Escalate potential security incidents to project team and customers for attention.

* Prepare periodic log review reports. Security Advisory and Briefing

* Be the point-of-contact/customer liaison to assist and advise customer for ICT security related matters

* Conduct in Weekly / Monthly meeting with Customers on security related matters.

* Prepare the content and material relevant to the projects

* Conduct information security awareness training Support Audit & Compliance

* Act as the liaison officer for the IT security reviews and audits

* Collate and review information requested by auditors from respective teams.

* Support the auditors during audit period.

* Work with the team to review and respond to audit issues.

* Work with the team to remediate audit findings.

* Monitor and track the closure of audit findings.

* Other Ad-hoc activities instructed by manager.

Offensive Security Engineer (Red Team) - Information Security
Join to apply for the
Offensive Security Engineer (Red Team) - Information Security
role at
Shopee .
Job Responsibilities
Design and perform APT adversary emulation to assess infrastructure, systems, and applications against confidentiality, integrity, authentication, availability, authorization, and non-repudiation standards.
Translate requirements into test plans, develop and execute scripts or codes to identify vulnerabilities, following established standards and procedures.
Responsible for weaponization capabilities within the red team.
Research and identify undiscovered vulnerabilities (0-day) during red team engagements.
Requirements
Bachelor’s degree or higher in Computer Science, Information Technology, Programming & Systems Analysis, Engineering, or related fields.
At least 2 years of experience in red team roles or relevant security positions.
Strong security development skills, proficiency in Python, Go, with experience in web crawling and distributed development.
Ability to audit code, identify vulnerabilities such as command injection, insecure deserialization, stack overflows, and independently develop exploits.
Experience with frameworks like Puppeteer, Playwright, RabbitMQ, ELK, Yaklang, etc.
Excellent communication skills and teamwork spirit.
Self-motivated with quick learning ability.
Preferred Experience
Experience in penetration testing, red teaming, and familiarity with ATT&CK Framework kill chains (e.g., initial access, Windows AD testing, lateral movement).
Experience in APT offensive and defensive operations.
Proven record of bug bounty awards, contributions as Github star authors, etc.
Additional Details
Seniority level: Mid-Senior level
Employment type: Full-time
Job function: Information Technology
Industries: Software Development, Internet Marketplace Platforms, Technology, Information and Internet
Referrals can double your chances of interviewing at Shopee.
#J-18808-Ljbffr

AVP/Sr. Associate, Cyber Security Engineer, Information Security Services, Group Technology
Group Technology enables and empowers the bank with an efficient, nimble and resilient infrastructure through a strategic focus on productivity, quality & control, technology, people capability and innovation. We manage the majority of the bank’s operational processes and inspire to delight our business partners through our multiple banking delivery channels.
Responsibilities
Develop and maintain a comprehensive cybersecurity risk governance framework aligned with international standards such as ISO, NIST, and COBIT.
Conduct regular risk assessments to identify and analyze cybersecurity threats and vulnerabilities across all systems, applications, and business units.
Develop and implement risk mitigation strategies, including security controls, to address identified risks.
Monitor and analyze logs relating to potential cybersecurity threats or incidents.
Oversee the implementation and effectiveness of cybersecurity training programs.
Provide risk oversight and monitoring through independent reviews and objective assessments.
Collaborate with other departments and business units to ensure alignment on cybersecurity risk management practices.
Stay abreast of emerging cybersecurity threats, vulnerabilities, and regulatory requirements.
Assist in the interpretation of cybersecurity and technology-related legislation.
Participate in cybersecurity exercises to ensure the continued relevance and efficacy of the organization’s response capabilities.
Document and review the components of cybersecurity operations to ensure potential risks are considered.
Ensure that all areas of cybersecurity are reviewed and covered comprehensively.
Requirements
Bachelor’s degree in computer science, information security, or a related field. A relevant industry certification (e.g., CISSP, CISM, CRISC) is highly desirable.
Minimum of 5‐7 years of experience in cybersecurity risk management.
Strong understanding of cybersecurity frameworks, standards, and best practices (e.g., ISO 27001, NIST Cybersecurity Framework, COBIT).
Proven experience in conducting risk assessments, developing risk mitigation strategies, and implementing security controls.
Experience with regulatory compliance requirements related to cybersecurity.
Excellent communication, interpersonal, and presentation skills.
Benefits
We offer a competitive salary and benefits package and the professional advantages of a dynamic environment that supports your development and recognises your achievements.
Primary Location
Singapore-DBS Asia Hub
Job Posting Date
Oct 22, 2025, 10:06:57 AM
#J-18808-Ljbffr

Sr. Associate / Associate, Cyber Security Engineer, Information Security Services, Group Technology
Join to apply for the
Sr. Associate / Associate, Cyber Security Engineer, Information Security Services, Group Technology
role at
DBS Bank
Business Function
Group Technology enables and empowers the bank with an efficient, nimble and resilient infrastructure through a strategic focus on productivity, quality & control, technology, people capability and innovation. In Group Technology, we manage the majority of the Bank's operational processes and inspire to delight our business partners through our multiple banking delivery channels.
Responsibilities
Drive security projects across the region which involves vendor management, collaboration with stakeholders, business users and application teams
Lead overall end-to-end project delivery
Keep abreast of relevant technology to improve service delivery
Identify areas of improvement through process improvement and/or automation
Provide technical expertise and guidance to internal teams on cybersecurity-related matters
Contribute to the continuous improvement of security processes, tools, and technologies
Requirements
Degree in computer science, engineering, or other computer-related field of study
CISM, CISSP, GIAC, or relevant security certification would be an advantage
Prior experience in implementing/managing security solution
Process strong interest in new system development/evaluation
Ability to work in a fast-paced environment and keep pace with technical/operational innovation
Good communication skills
Self-motivated with ability to work with minimal supervision
Experience in managing endpoint-related security applications such as Anti-Virus, EDR and DLP
Knowledge and understanding of emerging risk areas, e.g. server, mobile, remote access, wireless technologies, DLP, Windows and Unix-based operating systems, etc
Apply now
We offer a competitive salary and benefits package and the professional advantages of a dynamic environment that supports your development and recognises your achievements.
Primary Location
Singapore-DBS Asia Hub
Job
Technology
Schedule
Regular
Job Type
Full-time
Job Posting
Oct 15, 2025, 10:15:57 AM
#J-18808-Ljbffr