4 Security Testing jobs in Singapore

Overview

Risk Services - Cyber Security Testing Associate - 2026 Intake. At PwC, we help clients build trust and reinvent so they can turn complexity into competitive advantage. We’re a tech-forward, people-empowered network with more than 370,000 people in 149 countries. Across audit and assurance, tax and legal, deals and consulting we help clients build, accelerate and sustain momentum. Find out more at

Our Risk Services Team provides an invaluable safeguard in today’s complex operating environment with insights and independent assurance. We work with clients to deliver business control to help them protect and strengthen every aspect of their business from people to performance, systems to strategy, business plans to business resilience. We help clients manage, mitigate and control risks from potential cybersecurity breaches to possible breaks in the supply chain. We assess and prepare businesses by looking into their technology, finance, data analytics, regulatory requirements, data security and privacy, internal audit, and the third parties our clients rely on, to help clients deliver quality results and meet their strategic objectives. We work with our clients to build trust across their digital/technology-enabled businesses and address areas such as the loss or misuse of important data, failure to react to changes in the market, implementing and reviewing systems or business processes, while also verifying that third-party providers effectively manage and control current and future cybersecurity threats through rigorous penetration testing and red teaming exercises. In the Cybersecurity team, we help clients to achieve their business objectives by providing various services such as penetration testing, red teaming, source code review, etc.

• Penetration Testing – identify and exploit vulnerabilities to help clients secure assets and protect sensitive data, with hands-on experience and professional growth.
• Red Teaming – simulate adversary tactics to test organizational defenses, focusing on achieving objectives, conducting covert operations, and maintaining long-term access to compromised systems.
• Cybersecurity Assessment – assess clients’ security posture through host configuration reviews against industry benchmarks, source code reviews, architecture reviews, and cybersecurity risk assessment.

• Computer Science, Computer Engineering, and Information Technology students from reputable local and overseas universities
• Strong fundamental knowledge of information technology and cyber security
• Knowledge of security testing tools (e.g. Kali Linux, Covenant, Metasploit, nmap, Burp Suite, etc.)
• Willingness to develop professionally and contribute to a team
• Highly motivated, enthusiastic, confident, and creative with strong interpersonal and communication skills
• Critical thinking and problem solving
• Commitment to teamwork and excellence
• Knowledge of scripting languages (e.g. Bash, Python)
• Penetration testing certifications (e.g. CEH, CRT, OSCP) is an advantage
• Participation in CTF, disclosed information security flaws, CVE publications, or offensive security research is an advantage

• Available for work visa sponsorship: Yes
• Government clearance required: No
• Job Posting End Date: (not specified in description)
• Education: Degrees/Field of Study required and preferred not specified
• Experience level: Internship
• Employment type: Full-time
• Job function: Other
• Industry: Accounting

For questions, email

Overview
The Penetration Testing function will be responsible for planning and overseeing the delivery of testing and certification services, or designing and performing tests and check cases to determine if infrastructure components, systems and applications meet security standards for confidentiality, integrity, authentication, availability, authorisation and non-repudiation. The role translates requirements into test plans, writes and executes test scripts or code in line with standards and procedures to determine vulnerability from attacks. It certifies components and reports on testing outcomes, providing recommendations and managing stakeholder expectations while ensuring compliance with assessment and testing standards, processes and tools. The role may also develop the organisational security testing capability and support knowledge management.
Responsibilities
Operate a hands-on role involving penetration testing and vulnerability assessment of ICT systems (e.g., Web, Mobile, Thick Client, Network).
Plan and create penetration testing methods, scripts, and tests.
Carry out scoping activities to identify components requiring penetration testing.
Define test requirements and criteria for penetration testing.
Create reports and recommendations from findings, security issues and risk levels.
Advise on methods to fix or lower security risks to the Development Team.
Present findings, risks, and conclusions to stakeholders.
Automate penetration testing activities to save time and effort.
Mentor and train new joiners and junior resources on Penetration Testing activities.
Involve in security testing and tools procurement activities.
Contribute to Penetration Testing process improvement.
Requirements
5+ years of relevant experience including Penetration Testing on Web Applications, Mobile, Thick Client and Infrastructure applications.
Business risk awareness with strong reporting, writing, and client presentation skills. Consulting experience within a Professional Services organization.
Strong analytical skills and ability to work independently.
Responsible for delivery of project objectives; good sense of ownership.
Programming skills in at least one of: SAP, ABAP, .NET, Python, Ruby, Java or Regular expressions.
Experience in the healthcare industry is an advantage.
Must have OSCP or CREST-CRT certifications; additional certifications like OSCE or CISSP are a plus.
Good team player with excellent verbal and written communication skills.
#J-18808-Ljbffr