84 Vulnerability Assessment jobs in Singapore

Job Responsibilities:

Legal Support

• Conduct and coordinate legal research, draft legal memoranda, and assess legal risks, including monitoring and analyzing updates in local laws and regulations.
• Assist in the preparation, review, and analysis of legal documents such as commercial agreements, Letters of Intent (LOIs), Memorandums of Understanding (MOUs), Non-Disclosure Agreements (NDAs), legal opinions, and corporate resolutions.
• Perform additional legal tasks as assigned or required.

Secretarial and Administrative Support

• Provide corporate secretarial support, including drafting minutes of shareholder and board meetings, and preparing resolutions related to specific transactions.
• Organize and maintain an internal digital repository of contracts, ensuring accurate recordkeeping of all relevant documentation and communications.

Compliance Program Support

• Assist with various compliance initiatives, including training sessions and ad hoc compliance projects.
• Support the resolution of compliance-related issues, such as audit findings and whistleblowing reports.
• Ensure regulatory and compliance documentation, including policies and procedures, are current and aligned with applicable legal requirements.

Additional Responsibilities

• Collaborate closely with teams across the company and within subsidiaries in the ASAO region to understand and support business and operational needs.

Requirements:

• Bachelor's degree in Law or equivalent qualification.
• Attorney qualification in any jurisdiction.
• Minimum of 2 years of legal experience, either in a law firm or an in-house legal or business environment
• Strong understanding of business-related laws and regulations.
• Proficient in legal and contractual analysis.
• Strong interpersonal skills with the ability to work collaboratively across teams.
• Highly organized with the ability to manage multiple tasks and projects simultaneously.

HOW TO APPLY:

Interested applicants, please click on “Apply Now” and provide the below details in your resume.

We regret only shortlisted candidates will be notified.

Important Note: Trust Recruit Pte Ltd is committed to safeguarding your personal data in accordance with the Personal Data Protection Act (PDPA).
Please read our privacy statement on our corporate website

Trust Recruit Pte Ltd
EA License No: 19C9950
EA Personnel: Nyon Hock Sen
EA Personnel Reg No: R24124070

Work Location: Changi Naval Base, office at Lavender area

Working days: 5.5 days 8am to 5pm, Alternate Saturday 8am to 5pm Full Day

Salary: $7000 to $9000

Requirements

Bachelor's degree in Occupational Safety and Health, Engineering (preferably Civil or Environmental), Construction Management, or a related field.

Must be a MOM registered Safety Officer (Registered WSHO Certified), ECO is an additional benefit.

Min 5 years of experience in a safety-related role in the construction industry

Proven track record of managing and improving workplace safety programs.

Experience with site inspections, hazard identification, risk assessments, and accident investigations.

Familiarity with construction-specific safety practices

Knowledge of Workplace Safety and Health Act, Construction Safety Regulations, and relevant codes of practice.

Job scope

Develop, implement, and review the company’s Safety Management System (SMS) to ensure compliance with local regulations, industry best practices, and organizational needs.

Maintain and ensure the continuous improvement of the SMS, including emergency response procedures, risk assessments, and hazard control measures.

Conduct audits to assess the effectiveness of the SMS and identify areas for improvement.

Ensure that all activities at the workplace comply with the Workplace Safety and Health (WSH) Act and other relevant regulations and standards.

Stay updated with changes in safety legislation and advise senior management on necessary changes to policies or procedures.

Prepare and submit safety reports and documentation required by regulatory authorities such as the Ministry of Manpower (MOM).

Liaise with government agencies and third-party safety auditors during inspections and audits.

Conduct risk assessments to identify potential hazards in the workplace, including those related to machinery, work processes, chemicals, and ergonomics.Develop and implement safety control measures to mitigate identified risks and prevent accidents or injuries.

Oversee the safe use of equipment and machinery by establishing protocols and ensuring maintenance standards are met.

Design and implement safety training programs for employees, contractors, and visitors to ensure they understand workplace hazards and follow safe practices.

Ensure that employees are adequately trained on the safe use of equipment, PPE (Personal Protective Equipment), emergency response procedures, and any other site-specific safety protocols.

Coordinate and lead regular safety briefings, toolbox talks, and induction programs for new hires and contractors.

Lead investigations into workplace accidents, incidents, and near-misses to identify root causes and recommend corrective actions.

Prepare detailed accident investigation reports and submit them to management and regulatory authorities.

Implement corrective actions and follow up to ensure that identified hazards are eliminated and safety improvements are sustained.

Conduct regular safety inspections and audits of the workplace to ensure compliance with safety regulations and company policies.

Monitor safety performance and implement necessary adjustments based on findings from safety inspections and audits.

Develop and maintain emergency response procedures, including fire drills, first aid protocols, and evacuation plans.

Act as the point of contact for any emergency situations, providing guidance and support during the response.

Track key safety performance indicators (KPIs), including accident rates, near misses, and safety audit findings, and report results to senior management.

Analyze safety trends and propose strategies for reducing accidents, improving safety performance, and fostering a safety culture across the organization.

Prepare safety reports for senior management meetings, detailing current safety performance, challenges, and actions taken.

Any other ad hoc duties as assigned by management or superior.

WhatsApp: (Shermaine)

Siah Sze Ming Reg No: R24125414

The Supreme HR Advisory Pte Ltd EA No: 14C7279

Job Description:

• Design and perform tests and check cases to determine if infrastructure components, systems and applications meet confidentiality, integrity, authentication, availability, authorisation, and non-repudiation standards.
• Translate requirements into test plan, write and execute test scripts or codes in line with standards and procedures to determine vulnerability to attacks.
• Certify infrastructure components, systems and applications that meet security standards.

Requirements:

• Minimum total seven years’ work experience as Penetration Testing Specialist

Job Description:

• Design and perform tests and check cases to determine if infrastructure components, systems and applications meet confidentiality, integrity, authentication, availability, authorisation, and non-repudiation standards.
• Translate requirements into test plan, write and execute test scripts or codes in line with standards and procedures to determine vulnerability to attacks.
• Certify infrastructure components, systems and applications that meet security standards.

Requirements:

• Minimum total three years’ work experience as Penetration Testing Specialist

The Security Consultant delivers penetration testing & offensive security projects to ensure a successful

outcome that at least meets or exceeds the expectations of our clients.

• The customer recognises you as a subject matter expert and they have confidence in the comprehensiveness of the testing methodology and the accuracy of the results.
• The client has prepared the testing environment prior to the project start date so that the engagement is executed smoothly and without delay.
• Penetration testing projects are delivered efficiently and on schedule.
• The quality of the Penetration Testing Report by ensuring it has been peer reviewed and approved for release to the client.
• All client data is managed in strict accordance with Vantage Point Security data security and protection policies throughout the project.

Singapore

We are seeking an accomplished and proactive Senior Penetration Tester to lead our offensive security and penetration testing projects.

The successful candidate will possess extensive practical experience, hold multiple industry-recognised certifications, and demonstrate strong leadership qualities.

You will be expected to manage concurrent projects, mentor junior team members, and ensure that all engagements meet or exceed our clients’ expectations.

Technical Leadership:

• Act as the primary technical authority for both internal teams and client engagements.
• Provide strategic guidance and mentorship to ensure comprehensive coverage of testing scenarios.

Project Management:

• Collaborate with Project Managers to define project scope, develop detailed Statements of Work (SOW), and allocate testing resources.
• Oversee the scheduling and execution of penetration testing projects, ensuring milestones are met and delays minimised.

Penetration Testing:

• Conduct thorough manual and automated penetration tests across web applications, networks, infrastructure, IoT devices, mobile applications, thick clients and emerging technologies.
• Develop, update, and author new test cases to address evolving security threats and technological advancements.

Reporting and Communication:

• Document findings, vulnerabilities, and recommendations in detailed and accurate reports.
• Ensure all reports undergo peer review and receive appropriate approval before delivery to clients.
• Maintain clear and open communication channels with clients regarding testing methodologies, project progress, and remediation advice.

Compliance and Data Security:

• Manage client data in strict accordance with our data security and protection policies.
• Ensure that all engagements adhere to legal, regulatory, and industry-specific requirements.

Expertise Recognition:

Clients recognise you as a subject matter expert with confidence in the rigour and accuracy of our penetration testing approach.

Efficient Project Delivery:

Projects are delivered on schedule, with clearly defined scopes and communicated timelines.

High-Quality Reporting:

Penetration testing reports are comprehensive, thoroughly documented, and approved for client distribution.

Team Development:

Junior team members are well-prepared and continuously upskilled, contributing to a high-performing security team.

Essential Experience:

• A robust track record in delivering complex penetration testing and offensive security projects.
• Extensive hands-on experience in manual testing across diverse environments including web, network, IoT, and mobile platforms.

Certifications:

• Multiple relevant penetration testing certifications are required (e.g., CREST, OSCP, OSWE, GPEN, etc.).
• Maintaining current certifications and an ongoing commitment to professional development is essential.

Leadership and Multitasking:

• Demonstrated leadership skills with the ability to manage and mentor a diverse team.
• Proven ability to manage multiple projects simultaneously while ensuring attention to detail and quality.

Communication Skills:

• Excellent written and verbal communication skills in English, with the ability to clearly articulate complex technical information to non-technical stakeholders.

Please note that only candidates who meet the above criteria, particularly in terms of multiple industry-relevant certifications and extensive hands-on experience, will be considered for this role.

Applications from those who do not satisfy these essential requirements will not be reviewed.

• Occasional travel to client sites may be required.
• We offer a competitive salary and benefits package reflective of the seniority and expertise required for this role.

If you are a seasoned professional with a passion for offensive security and a proven track record in penetration testing leadership, we encourage you to apply.

The Associate Security Consultant attains CREST CRT certification, learns other security assurance skills and assists in delivering penetration testing & offensive security projects to ensure a successful outcome that at least meets or exceeds the expectations of our clients.

• Mentored to achieved CREST CRT certification within 4 months of joining Vantage Point.
• Complete the Associate Consultant training program to become competent with the use of penetration testing tools and techniques, including manual testing, automated application vulnerability scanning/testing tools and source code review techniques.
• Perform penetration testing projects as part of a team to ensure they are delivered efficiently and on schedule.
• All client data is managed in strict accordance with Vantage Point Security data security and protection policies throughout the project.

• Achieve CREST CRT certification within 4 months of joining Vantage Point.
• Complete the Associate Consultant training program comprising the learning of penetration testing tools and techniques, including manual testing, automated application vulnerability scanning/testing tools and source code review techniques.
• Support Senior Consultants and Security Consultants to perform manual penetration tests of websites, services, infrastructure, networks, IoT Devices, and mobile applications to discover and report exploitable vulnerabilities.
• Clearly document findings and recommendations.
• Help to provide an environment where everybody is continuing to learn and develop.
• Continuously learn and master new hacking methods in new and emerging technologies.

Location:

Other locations: Primary Location Only

Date: 7 Mar 2025

Requisition ID: 1534795

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all.

We are looking to hire motivated and driven penetration testers to join our team of cybersecurity professionals. As a cybersecurity professional in EY Singapore, you will have the chance to work in engagement teams serving our clients in providing independent assessments or implementation of cyber solutions. As EY Singapore is a member of the whole global EY network, you will be part of an international connected team of specialists helping our clients with their most complex cybersecurity needs and contributing toward their business resilience.

You will be part of the Cybersecurity Attack & Penetration team at EY Singapore. This team provides technical cyber assessments that aim to assist clients gain insight and context to their cyber threats, and provide pragmatic recommendations to mitigate these threats. As a penetration tester in the Attack & Penetration team, your responsibilities include:

• Perform cybersecurity threat modelling
• Perform IT and OT network penetration testing
• Perform IOT penetration testing
• Perform red team assessments
• Conduct social engineering exercises
• Support in incident response

Through the technical assessments stated above, you will then advise clients on the security issues, including explanation on the technical details and how they can remediate the vulnerabilities in the processes and controls.

• Communication – Demonstrate that you listen and understand before responding
• Knowledgeable – Demonstrate deep technical capabilities and understanding of the client’s problems.
• Curiosity – Be proactive, learn fast and seek to identify issues that others might miss.
• Integrity – Conduct yourself as per EY’s values, and do not be afraid to admit mistakes.
• Impact – Consistently deliver exceptional quality work that positively impacts the projects that you are on.
• Teamwork – You seek to ensure that the team succeeds, rather than only yourself.

To qualify for the role you must have

• A degree in Computer Science, Computer Engineering, Information Technology or equivalent
• Industry-recognised penetration testing certifications such as, but not limited to:

a) Offensive Security Certified Professional (OSCP);

b) Offensive Security Web Expert (0SWE);

c) Offensive Security Certified Expert (OSCE);

d) Offensive Security Exploitation Expert (OSEE); and/or

e) Relevant certification from the Council of Registered Ethical Security Testers (CREST), such as CRT, CCT etc.

• Candidates with at least 2 years of working experience as a penetration tester will be considered for the Senior Consultant positions.
• Candidates with less than 2 years of working experience as a penetration tester will be considered for the Associate Consultant positions.

EY offers a competitive remuneration package where you’ll be rewarded for your individual and team performance. We are committed to being an inclusive employer and are happy to consider flexible working arrangements. Plus, we offer:

• Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next.
• Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way.
• Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs.

If you can demonstrate that you meet the criteria above, please contact us as soon as possible.

The exceptional EY experience. It’s yours to build.

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.

Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

Press Tab to Move to Skip to Content Link

Select how often (in days) to receive an alert:

Select how often (in days) to receive an alert:

NCS is a leading technology services firm that operates across the Asia Pacific region in over 20 cities, providing consulting, digital services, technology solutions, and more. We believe in harnessing the power of technology to achieve extraordinary things, creating lasting value and impact for our communities, partners, and people. Our diverse workforce of 13,000 has delivered large-scale, mission-critical, and multi-platform projects for governments and enterprises in Singapore and the APAC region.

As a Security Operations Center (SOC) Analyst, you'll play a crucial part in maintaining, monitoring, and enhancing our IT security infrastructure. You'll be at the forefront of incident response, patch management, and system integrity, ensuring our digital assets remain secure and operational.

What will you do?

• Act as Incident first responder for a 24/7 staffed SOC.
• Monitor security sensors and review logs to identify network anomalies or intrusions.
• Perform initial analysis of security alerts.
• Escalate security incidents using established policies and procedures in a timely manner.
• Work with customers to analysis potential security incidents, identifying root cause and implement mitigation step(s)/ remedial action(s).
• Performing Response action based on standardize workflow and agreement with clients.
• Assist with the development of incident response plans, workflows, and SOPs.
• Provide threat and vulnerability analysis security advisory services.
• Fulfil Change Requests, Service Requests and respond to internal / external enquiries with regards to Incident Management.

The ideal candidate should possess:

• Professional security certifications such as GCIA will be an advantage.
• Experience in managing security alerts and identifying network intrusions
• Able to work well as a team and with different stakeholders

We are driven by our AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity —and we seek individuals who embody these values in both their professional and personal lives. We are committed to our Impact: Valuing our clients, Growing our people, and Creating our future .

Together, we make the extraordinary happen .

Learn more about us at ncs.co and visit our LinkedIn career site.