415 Security Testing jobs in Singapore

Select how often (in days) to receive an alert:

Seeking a highly skilled and motivated Senior Cyber Security Testing Specialist who is skilled in application and infrastructure penetration testing, vulnerability assessment and secure code review to conduct, guide and review the work of external and cross function team security testers. In this role, you will be responsible for assessing and enhancing the security posture of the organisation’s critical applications and infrastructure through comprehensive testing, vulnerability assessment, and penetration testing techniques. Your expertise will play a crucial role in identifying security vulnerabilities and recommending risk mitigation strategies to different senior stakeholders

Make An Impact By

• Coordinate and Oversee Penetration Testing & Vulnerability Assessment Engagements:
  • Manage and coordinate penetration testing and vulnerability assessment engagements with external vendors, ensuring effective communication and collaboration between internal stakeholders and vendors.
  • Work closely with Domain security champions to review and tailor the scope, rules of engagement, testing methodologies, and reporting for external penetration tests and vulnerability assessments.
  • Collaborate with cross-functional teams to provide guidance on Singtel's security standards, recommend best practices, and advise on effective remediation strategies.
  • Review penetration testing reports, prioritize identified vulnerabilities, and coordinate efforts to address them in a timely manner.
  • Track and report on the progress and outcomes of penetration testing and vulnerability assessments, ensuring that all findings are addressed appropriately.
• Maintenance of tools and Conduct Various Penetration Tests:
  • Perform different types of penetration testing (e.g., AI models, application, API, Infrastructure, etc.) following recognized methodologies, including OWASP and Singtel’s internal standards, utilizing both manual and automated testing methods, as needed.
  • Maintain and configure the tests required of automated testing tools to support black box and white box testing, and ensure alignment with latest industry test requirements e.g. OWASP, covering all forms of technologies e.g. Cloud Apps, On-prem Apps, COTS products, In-house developed Apps, AI models, APIs, OS, DB, VM, Network devices, etc.
  • Identify gaps in automated testing tools and propose new tooling required to augment testing program as needed
• Bug Bounty Program Management:
  • Oversee and manage the bug bounty program and associated platforms for identifying and addressing reported vulnerabilities.
  • Validate/ triage the reported vulnerabilities, assess their impact on Singtel’s systems, and collaborate with relevant stakeholders to prioritize and remediate the issues.
  • Track and report on findings and outcomes from the bug bounty program to ensure timely resolution.
  • Develop engaging programs to boost the visibility and popularity of Singtel's bug bounty program.
• Manage and conduct secure code reviews using scanning tools and techniques to identify security weaknesses in software code.
• Analyze the results from code scans and work closely with development teams to implement necessary security fixes.
• Assist in the creation and implementation of secure coding practices across the organization.
• Vulnerability Retesting and Documentation:
  • Retest security vulnerabilities arising from various sources e.g. Bug Bounty, Penetration testing, etc. after remediation and update reports with the latest results and outcomes.
  • Develop and maintain comprehensive documentation for all vulnerability assessments, secured code reviews and penetration tests, including detailed findings, methodologies, and recommendations for improvements etc.
• Stay Current with Security Trends and Threats:
  • Continuously monitor the latest security trends, emerging vulnerabilities, and attack techniques to ensure that security testing methodologies and tools remain up-to-date and effective.

Skills for Success:

• Bachelor's degree in Computer Science, Information Security, or a related field.
• Attained OSCP or CREST.
• At least 5 years of experience working in Cyber and Information security field
• Solid experience in application security testing, vulnerability assessment, secure code review and penetration testing.
• Proficiency in performing AI models, API and application security testing using manual techniques, as well as utilizing runtime vulnerability testing tools and/or code review tools.
• Strong understanding of OWASP Top 10, CWE/SANS Top 25, and other common vulnerability frameworks.
• Out of which, at least 3 years experience in delivering various AI model, API, application, infrastructure penetration testing, vulnerability assessment and secure code review.
• Proficiency in performing AI model, API and application security assessment using manual techniques.
• Proficient in using and managing various security tools and products like Fortify, AppScan, Webinspect, Burp Suite, Nessus, Guardrails AI, Giskard, Moonshot, Deepcheck, Evidently, Pyrit, Adversarial Robustness Toolbox (ART), PyRIT, etc.

Rewards that Go Beyond

• Full suite of health and wellness benefits
• Ongoing training and development programs
• Internal mobility opportunities

Are you ready to say hello to BIG Possibilities?

Take the leap with Singtel to unlock new opportunities and accelerate your growth. Apply now and start your empowering career!

NCS is a leading technology services firm that operates across the Asia Pacific region in over 20 cities, providing consulting, digital services, technology solutions, and more. We believe in harnessing the power of technology to achieve extraordinary things, creating lasting value and impact for our communities, partners, and people. Our diverse workforce of 13,000 has delivered large-scale, mission-critical, and multi-platform projects for governments and enterprises in Singapore and the APAC region.

As a Security Consultant provides expert IT security consultancy and advisory services, helping to

secure cyber assets, including networks, mobile applications, web applications, and IoT devices. The role involves security system configuration, source code review, and penetration testing.

What will you do?

• Conduct technical security assessments, including penetration testing, source code review, and security configuration analysis.
• Utilize industry-recognized processes and tools to identify and assess security vulnerabilities, aligning with strategic, tactical, and operational security objectives.
• Work closely with clients and internal teams to deliver eƯective security solutions and recommendations.
• Perform compliance audits and system reviews against industry best practices, security policies, and procedural guidelines.
• Clearly articulate security findings through detailed reports and presentations, tailored for both technical and non-technical stakeholders

The ideal candidate should possess:

• Experience in penetration testing, source code review, and host security assessments.
• Strong technical expertise in security testing methodologies, tools, and frameworks such as Metasploit, Kali Linux, Burp Suite, and Tenable Nessus.
• Proficiency in scripting languages (e.g., Python, Bash, or PowerShell) for security automation and testing.
• Solid understanding of web application technologies, network security principles, and the OSI model (including HTTP, DNS, SSH, FTP, etc.).
• Familiarity with established security testing methodologies, including the OWASP Web
• Security Testing Guide (OWSTG) and the Penetration Testing Execution Standard (PTES).Relevant industry certifications (e.g., OSCP, CREST CRT) are highly advantageous.
• Strong interpersonal and communication skills, with the ability to collaborate eƯectively in a team environment.
• A degree in cybersecurity, computer science, or a related field is preferred; however, candidates with a diploma or equivalent experience will be considered.

We are driven by our AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity —and we seek individuals who embody these values in both their professional and personal lives. We are committed to our Impact: Valuing our clients, Growing our people, and Creating our future .

Together, we make the extraordinary happen .

Learn more about us at ncs.co and visit our LinkedIn career site.

The Security Consultant delivers penetration testing & offensive security projects to ensure a successful

outcome that at least meets or exceeds the expectations of our clients.

• The customer recognises you as a subject matter expert and they have confidence in the comprehensiveness of the testing methodology and the accuracy of the results.
• The client has prepared the testing environment prior to the project start date so that the engagement is executed smoothly and without delay.
• Penetration testing projects are delivered efficiently and on schedule.
• The quality of the Penetration Testing Report by ensuring it has been peer reviewed and approved for release to the client.
• All client data is managed in strict accordance with Vantage Point Security data security and protection policies throughout the project.

The ideal candidate for this position should have a strong foundation in subject knowledge related to Information security, Cyber Security, and Data Privacy. Proficiency in Security Analysis, Network Security, and a good understanding of technology is essential, with IT certification being preferred.A minimum educational qualification of Graduation is required for this role. The candidate should possess 4 to 10 years of experience in Information Security, with a minimum of 2 years specifically in information security within the BFSI Insurance sector. Certifications such as OSCP, CEH, CISSP, CISA, CISM, and ISO 27001:2013 LA would be advantageous.As a part of this role, you will be responsible for managing Information Security Projects, Audits, and assessments. Conducting Technology Risk Assessments for processes and technologies, developing and reviewing IS standards, guidelines for new technologies, and performing periodic audits and assessments as per the Infosec calendar will be key responsibilities.You will also be accountable for establishing IS Standards, Checklists, and Guidelines, including managing internal and third-party Ethical hacking, Vulnerability Assessment, Penetration Testing, and Red Team assessment activities. Developing methodologies and checklists for performing Technology Risk Assessments and approval matrix based on the results, as well as defining BCP/DR standards, application security standards, and Vendor risk assessment standards are crucial aspects of this role.Collaboration with business teams to define roles within each application, reviewing training requirements for SOC/LAM/DLP teams, managing Information Security Projects and assessments, performing daily InfoSec operational activities, conducting Cyber security drills, monitoring and managing Information/Cyber Security Incidents, and supporting response and investigation activities related to cyber crises are part of the job responsibilities.Additionally, you will be required to assign detailed responsibilities and action steps to manage cyber crises, identify active risks and threat vectors, review regulatory impact and compliance obligations, and undertake any other tasks, activities, or projects delegated by the Chief Risk Officer (CRO) or Chief Information Security Officer (CISO).This position is based in Mumbai.,

• Job Tags information security, cyber security

• Interesting Opportunity Information Security Consultant - Penetration Testing

Sign-in & Get noticed by top recruiters and get hired fast

Data Privacy, Security Analysis, Network Security,Good understanding of technology

Information Security, Analytical Skills, Leadership Skills, Communication Skills,Cybersecurity, Problemsolving Skills

Business Impact Analysis, Risk Management, Identity , Access Management, Infrastructure Security, Application Security, Cloud Security, SOX, ISO, PII, Privacy Regulations, MS Office, Compliance, ITIL, GCP, Azure, AWS, Penetration Testing,Cyber Security Auditor, Corrective Action Plan, Information Security Policy, Data Governance , Security, Third Party Risk Management, PCI, NIST CSF, NIST 80053, NIST RMF, MS Teams, Threat Hunting, DFIR, Zero Trust Architectures, Network Protection

Application Security, Malware Analysis, Communication Skills, Presentation Skills, Adaptability,Cybersecurity, Cybersecurity Principles, IT Industry

Data Privacy, Security Analysis, Network Security,Good understanding of technology

Information Security, Analytical Skills, Leadership Skills, Communication Skills,Cybersecurity, Problemsolving Skills

Business Impact Analysis, Risk Management, Identity , Access Management, Infrastructure Security, Application Security, Cloud Security, SOX, ISO, PII, Privacy Regulations, MS Office, Compliance, ITIL, GCP, Azure, AWS, Penetration Testing,Cyber Security Auditor, Corrective Action Plan, Information Security Policy, Data Governance , Security, Third Party Risk Management, PCI, NIST CSF, NIST 80053, NIST RMF, MS Teams, Threat Hunting, DFIR, Zero Trust Architectures, Network Protection

Application Security, Malware Analysis, Communication Skills, Presentation Skills, Adaptability,Cybersecurity, Cybersecurity Principles, IT Industry

ACTIVELY HIRING

Select how often (in days) to receive an alert:

NCS is a leading technology services firm that operates across the Asia Pacific region in over 20 cities, providing consulting, digital services, technology solutions, and more. We believe in harnessing the power of technology to achieve extraordinary things, creating lasting value and impact for our communities, partners, and people. Our diverse workforce of 13,000 has delivered large-scale, mission-critical, and multi-platform projects for governments and enterprises in Singapore and the APAC region.

As a Security Engineer, you'll play a crucial part in maintaining, monitoring, and enhancing our IT security infrastructure. You'll be at the forefront of incident response, patch management, and system integrity, ensuring our digital assets remain secure and operational

What will you do?

• Incident Management: Respond to managed security technologies’ fault alerts and/or customer escalation. This includes performing incident/problem escalation within SLA to internal technical teams or external product vendor until resolution.
• Troubleshooting: Provide support for security solutions, including troubleshooting product-specific technical issues within SLA and work with internal teams/external vendors to resolve technical issues.
• Patch Management: Plan and apply regular updates to mitigate vulnerabilities and maintain system compliance.
• Service and Change Requests: Respond to inbound Change Requests (CRs), Service Requests (SRs) or other queries within SLA.
• System Monitoring: Continuously monitor security systems and perform regular health checks and tasks to ensure operational effectiveness.
• Collaboration: Work closely with IT and cybersecurity teams for reporting and to enhance security measures into ongoing operations.
• Proactive Measures: Stay current with the latest cybersecurity trends and implement proactive measures to improve security posture.
• Compliance: Ensure adherence to security standards and develop / update comprehensive documentation and guides.

The ideal candidate should possess:

• Bachelor’s degree or diploma in Computer Science, Information Technology, Cybersecurity, or a related field.
• 1-5 years of experience in IT or cybersecurity roles.
• Knowledge in AWS cloud native security tools and services such as AWS IAM, Firewall/WAF, GuardDuty, KMS etc.
• Practical working expertise with one or more of the following technologies Firewall (i.e FortiGate, Checkpoint, Palo Alto), Cyberark, Carbon Black, Tenable, Tripwire, ExtraHop, Symantec, Splunk etc.
• Sound fundamental knowledge on IP networking (e.g. TCP/IP, routing, etc.) and Firewalls (e.g. Checkpoint, Fortigate, Palo Alto)
• Strong analytical and problem-solving skills.
• Excellent communication and teamwork abilities.

We are driven by our AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity —and we seek individuals who embody these values in both their professional and personal lives. We are committed to our Impact: Valuing our clients, Growing our people, and Creating our future .

Together, we make the extraordinary happen .

Learn more about us at ncs.co and visit our LinkedIn career site.

Roles & Responsibilities

As a Systems Specialist, you will be supporting various cybersecurity functions, including:

1. Staying updated with the latest vulnerabilities, security trends, and techniques in cyber threats and hacking methodologies.
2. Conducting research on emerging threats and vulnerabilities, and providing recommendations to enhance the organization's security posture.
3. Performing proactive threat hunting exercises to identify and investigate potential security incidents and suspicious activities within the network.
4. Documenting all findings, analysis, recommendations, and investigation results clearly, and generating reports for management and stakeholders.
5. Developing and tuning security monitoring rules, correlation logic, and detection signatures.
6. Utilizing various security technologies, including SIEM tools, network traffic analysis tools, EDR systems, vulnerability management systems, and threat intelligence platforms.
7. Collaborating with other cybersecurity teams, such as incident response, security operations, and threat intelligence, to share findings and coordinate investigations.
8. Developing and implementing a cyber intelligence framework to systematically collect, process, and leverage intelligence for cybersecurity decision-making.
9. Integrating the cyber intelligence framework with the SOC and incident response teams to effectively detect, prevent, and respond to threats.
10. Monitoring and collecting information from sources like threat feeds, security vendors, dark web forums, and social media to identify emerging threats.
11. Analyzing threat intelligence data to identify patterns, trends, and risks.
12. Prioritizing and triaging threats based on relevance and potential impact.
13. Conducting in-depth analysis of threat actors, their tactics, and motivations, and providing insights on potential risks.
14. Producing reports, briefings, and alerts on threats, trends, and risks for stakeholders, including technical details for cybersecurity teams and executive summaries for management.
15. Providing intelligence support during security incidents to help incident response teams understand threats and guide containment and remediation efforts.
16. Supporting vulnerability management by analyzing threat data to identify vulnerabilities and exploit trends, aiding in patching and mitigation.
17. Collaborating with threat hunters and cybersecurity teams to refine threat hunting strategies based on intelligence insights.

Qualifications

1. Fundamental knowledge of application security, including interpretation of HTTP response codes and WAF violations.
2. Understanding of network security best practices.
3. Knowledge of cyber threats and hacking methodologies.
4. Strong problem-solving skills and ability to work under pressure; willingness to learn.
5. Proficiency with Microsoft Office products like Word and Excel.
6. Additional certifications such as CCNA, CCNP, CISSP are a plus.
7. Ability to work beyond business hours, including weekends, when necessary.

Direct message the job poster from Triple-A

About Triple-A

Triple-A is a global payment institution licensed in the United States, Europe, and Singapore, enabling businesses worldwide to pay and get paid in both local and digital currencies.

We empower businesses to reach over 560M digital currency owners, boost revenue, and optimise costs through stablecoin and cryptocurrency payments, while eliminating volatility, custody, and compliance risks. Our commitment is to build a more efficient, inclusive global payment ecosystem by bridging the gap between local and digital currencies.

Registered with the United States Financial Crimes Enforcement Network (FinCEN), licensed by the Monetary Authority of Singapore (MAS), and Banque de France’s ACPR in Europe, Triple-A is trusted by over 20,000 businesses worldwide to make global crypto payments simple, secure, and cost-effective. For more information, visit

Join the team

We are a dynamic and passionate team building towards a more efficient global payment ecosystem. We actively bridge the gaps in cross-border payments, between traditional & digital currencies, and Web2 and Web3.

Guided by our CEO, Eric Barbier, who brings 20 years of experience and a proven track record in building and scaling payment companies worldwide, Triple-A is growing our team. If you’re bold, tenacious, and creative, we believe you’d be a perfect match for us!

About the Role

We are seeking a hands-on Security Engineer to strengthen our security posture. You will embed security into our cloud infrastructure, applications, devops pipelines and operational processes, ensuring compliance with global regulators and industry standards. You will partner with engineering, compliance and product teams to anticipate, detect and mitigate security risks in our platform.

Key Responsibilities

• Design, implement and maintain security controls for cloud environments and on-premise systems
• Conduct threat modeling, code reviews and architecture risk assessments for new features
• Manage vulnerability management program: regular scans, prioritization, remediation verification
• Develop and maintain security monitoring (SIEM/SOAR), intrusion detection and alerting workflows
• Lead incident response: triage, forensics, root-cause analysis, reporting to regulators as required
• Automate security testing within CI/CD pipelines (SAST, DAST, container and infrastructure as code checks)
• Define and enforce identity and access management policies
• Collaborate with compliance teams to support audits and certifications
• Coach engineering teams on secure coding practices, facilitate security training and awareness programs
• Stay current on blockchain-specific threats, including wallet and key-management attacks, consensus-layer exploits, and exchange and custody vulnerabilities

Qualifications & Experience

• Bachelor’s or Master’s degree in Computer Science, Information Security or related field
• 3+ years’ experience in application/cloud security, ideally in regulated environments such as financial services, payments or digital assets
• Strong hands-on skills: threat modeling, vulnerability scanning tools, pen-testing frameworks, SIEMs, Kubernetes security
• Familiarity with blockchain fundamentals, crypto key management and wallet security, plus an understanding of consensus-layer and exchange/custody-related threats.
• Familiarity with global regulatory and compliance frameworks for financial services, payments and digital assets.
• Experience embedding security into Agile/DevOps workflows, infrastructure as code

Core Competencies

• Analytical problem-solving and strong attention to detail
• Excellent communication skills; able to translate technical risks into business impact for stakeholders
• Self-motivated, collaborative team player in a fast-paced, global environment
• Continuous learner, proactive in researching and applying new security technologies

• Seniority level Associate

• Employment type Full-time

• Job function Engineering and Information Technology

Referrals increase your chances of interviewing at Triple-A by 2x

Tampines, East Region, Singapore 18 hours ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

At Paradigm, we are changing the future of finance! By joining us at this early stage, you’ll be building cutting-edge, distributed financial service infrastructure that will reshape financial services across CeFi and DeFi markets.

About Paradigm

• Paradigm is a zero-fee, institutional liquidity network for derivatives traders across CeFi and DeFi.
• We provide unified access to multi-asset, multi-protocol liquidity on demand without compromising on execution preferences, costs, and immediacy.
• We’ve built the largest network of institutional counterparties in crypto, with over 1000 institutional clients trading over $10 B per month.
• We are a diverse, global team led by our organizational principles and united by our mission to bring on-demand liquidity for traders, anytime and anywhere, without compromises. We also strive to ship faster than anyone else in the industry!
• We are backed by the best traders and investors in the space, including Jump Capital, Genesis Trading, Dragonfly Capital, QCP Capital, Optiver US, IMC, GSR Markets, Akuna Capital, Fidelity Digital Assets CMT Digital, Goldentree Asset Management, Amber Group, OK Group, Bybit Fintech, and CoinShares.

The role

As a core member of our infrastructure team, you will build and maintain major features, through inception, design, implementation and launch, working closely with product and engineering disciplines across the company. You will spend the majority of your time on cross-functional self-contained feature teams focused on delivering value to the customer, while other projects will be more internally focused on integrations, scalability, and performance.

Responsibilities

• Own the site reliability process and systems from design and implementation to deployment and maintenance
• Educate the platform software engineering team on reliability best practices and collaborate to evolve the software engineering process to accommodate reliability principles
• Provide service outage escalation response alongside software engineers
• Manage multiple Kubernetes clusters across multiple environments and regions
• Manage and build core services and infrastructure across the entire engineering organization
• Help build an adaptable, high-velocity team
• Participate in on-call rotations to assist in resolving production incidents

Things that we believe are critical

• Expertise in Security and DevSecOps
• Strong compliance knowledge - SOC 2
• Expertise in site reliability engineering in a multi-datacenter production cloud environment with demanding up-time, real-time performance, and security requirements
• Experience adopting and employing open-source, home-grown, and commercial technology products as appropriate in support of the Infra Engineering mission
• Strong familiarity with AWS and Kubernetes
• Experience with leading teams and projects
• Comfort working with senior management to allocate and prioritize engineering energy in support of the Infra Engineering mission in a real-world resource-constrained environment
• Experience with cloud infrastructure and networking in a production context
• Experience building and/or using low-latency cross-region databases or high-volume trading applications
• Experience with HashiCorp tools (Vault, and Terraform)
• Experience with Kafka, Redis, and Postgres
• Experience with cloud providers beyond AWS (Azure, GCP, etc.)
• Expertise in cloud network security

This position is flexible on-site or hybrid position at our headquarters office in Singapore. We are able to provide financial and logistical support for work Visa procurement and relocation for Singapore, if applicable.

At Paradigm we're doing something different. Moving forward we ask all candidates to send in a video with their application, telling us why they want to be part of the team.
The video should be no longer than 1 minute and via a link to a streaming platform of your choice. (No files or download links will be accepted)

• Competitive Pay: Top-tier compensation in the industry.
• Generous PTO : Unlimited vacation.
• Full Benefits : Comprehensive packages tailored by country.
• Technology & Learning Allowances : 3,500 USD for your first-year setup, $,000 USD refresh every 2 years, plus 1,000 USD annually for learning and development.

Paradigm is an equal opportunity employer.

*

indicates a required field

First Name *

Last Name *

Email *

Phone *

Resume/CV *

Enter manually

Accepted file types: pdf, doc, docx, txt, rtf

Which country are you located in? *

Are you legally authorized to work in the country where you are located? * Select.

Will you now or in the future require sponsorship for employment visa status (e.g., H-1B visa status)? * Select.

Would you be open to relocation to Singapore, either now or in the future? * Select.

Do you have any history with Crypto? Either professional or personal? *

Mantle Network is an EVM-compatible Ethereum layer 2 (L2) ecosystem designed to enhance scalability and efficiency on the Ethereum blockchain. Our ecosystem includes Mantle Network, a decentralized autonomous organization (DAO) called Mantle Governance, and an Ether (ETH) liquid staking protocol, Mantle LSP.

The Mantle token ($MNT) is central to our ecosystem, serving as both the product and governance token, seamlessly linking the various network elements.

According to L2BEAT, Mantle Network is ranked as the eighth largest L2 network by total value locked (TVL), making it one of the most prominent L2 solutions. Mantle LSP ranks as the fourth largest liquid staking protocol by TVL, as per DefiLlama. Mantle also boasts one of the world's largest treasuries, valued at $3.8 billion, leveraging this to incentivize ecosystem growth.

• Identify requirements risks and conduct security reviews during the development process, including code audits, pre-release testing, and post-launch risk monitoring.
• Follow up on security vulnerabilities and alerts, assisting in fixing issues until resolution.
• Provide security training for developers and offer effective solutions for security issues in code.
• Respond to security incidents promptly to resolve issues.
• Continuously monitor and analyze security intelligence, performing risk alerts.
• Coordinate regularly with business units to update on security status, requirements, and standards, ensuring implementation.

• Bachelor's degree or above with over 5 years of experience in penetration testing and code auditing.
• Proficiency in at least one programming language (e.g., Node.js, Golang).
• Knowledge of security incident response techniques and procedures.
• Familiarity with penetration testing, APT attack-defense techniques, and internal network penetration (including lateral privilege escalation, evasion techniques, tunneling, etc.).
• Understanding of common internet business security design and data security best practices.
• Familiarity with encryption algorithms, TLS, OAuth, JWT, and related technologies.
• Knowledge of major public blockchains (BTC/ETH) and digital currency wallet principles.
• Proactive thinking and strong learning ability.

• Experience with threat modeling, SDL/devsecops practices.
• Experience with APT tracing.
• Development experience with security tools and platforms.
• Experience in emergency response planning, ongoing intelligence tracking, and operational activities.

If you believe you have valuable experience to contribute but do not meet all criteria, we still welcome your application. We consider all candidates.