470 Vulnerability Assessments jobs in Singapore

Role Overview

Our client, a leading global commodities brokerage and financial services firm, is seeking an IAM Operations Analyst to support and manage identity lifecycle processes, authentication, authorization, and access control across a full stack of business applications. The role will work closely with IT, security, and infrastructure teams to ensure secure and compliant access management.

Key Responsibilities

• Design and implement IAM frameworks aligned with security best practices and business needs

• Manage user provisioning, deprovisioning, and role-based access control across multiple systems

• Ensure compliance with regulations (e.g., GDPR, SOX) and internal security policies

• Maintain documentation of user access policies and audit logs for reporting purposes

• Conduct role-based access control (RBAC) reviews to minimize excessive or inappropriate permissions

• Collaborate with IT, security, and business stakeholders to align IAM initiatives with organizational goals

• Lead investigations into access-related incidents and recommend remediation measures

• Promote security awareness and train staff on access policies and procedures

• Oversee IAM team activities, including performance appraisals and ensuring SLAs are met

• Monitor and manage Jira queues to ensure timely resolution of requests

Requirements

• Strong knowledge of IAM tools (e.g., Okta, SailPoint, CyberArk, Azure AD) and technologies such as SSO, MFA, and RBAC

• Solid understanding of security principles such as least privilege, identity governance, and privileged access management

• Familiarity with compliance frameworks and regulations such as GDPR, SOX, HIPAA, ISO

• Strong problem-solving, analytical, and communication skills with the ability to work across technical and non-technical teams

• Experience conducting audits, producing reports, and ensuring IAM systems comply with legal and regulatory standards

• Ability to respond effectively to access-related incidents and manage IAM operations in high-pressure situations

• Experience working in regulated industries such as financial services

• Proven ability to engage stakeholders and present IAM risks and performance to senior leadership

Yang Lily, Recruit Avenue Pte. Ltd.

EA License Number: 23C1935 | EA Personnel Number: R

Select how often (in days) to receive an alert:
NCS is a leading technology services firm that operates across the Asia Pacific region in over 20 cities, providing consulting, digital services, technology solutions, and more. We believe in harnessing the power of technology to achieve extraordinary things, creating lasting value and impact for our communities, partners, and people. Our diverse workforce of 13,000 has delivered large-scale, mission-critical, and multi-platform projects for governments and enterprises in Singapore and the APAC region.
As a Security Analyst, this incumbent will perform initial analysis (e.g. analysing and reviewing alerts, eliminating false positives and determining severity of threats) to determine impact of compromise
What will you do?
Perform initial analysis (e.g. analysing and reviewing alerts, eliminating false positives and determining severity of threats) to determine impact of compromise
Conduct basic investigations of security events, including malware infections and unauthorized access attempts.
Determine the nature, mechanisms and scope of incident by performing event correlation and historical searches to determine the extent of a security compromise
Escalate complex or highly suspicious alerts for further investigation and response.
Record details of all activities, including investigations performed, findings and remediation steps taken.
Collects data, evidence, and context necessary for further escalation.
Perform event correlation across the In-Scope Institutions to identify similar attack pattern and spread of attack.
Handling case management, generating tickets and reports when required, and tracking open tickets until closure
The ideal candidate should possess:
Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, or related field.
Able to commit to permanent night shifts
Team player and able to work independently.
Experience in analysing data and review alerts
We are driven by our
AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity —and we seek individuals who embody these values in both their professional and personal lives. We are
committed to our Impact: Valuing our clients, Growing our people, and Creating our future .
Together, we
make the extraordinary happen .
Learn more about us at ncs.co and visit our LinkedIn career site.
#J-18808-Ljbffr

Overview

Join to apply for the Security Analyst 3 role at Oracle .

We are looking for professionals with experience protecting critical infrastructure to help defend Oracle cloud infrastructure. Our team is skilled in threat hunting, analyzing indicators of compromise (IOCs), investigating adverse security events, security incident management, and digital forensics across IaaS, PaaS and SaaS environments. You will be part of a corporate security operations center responsible for defending infrastructure from adversaries and insider threats. This includes using tools to analyze and respond to threats, creating tools/scripts to aid in analysis, and responding in real time to adverse security events. The Senior SOC Analyst will leverage advanced security tooling and automation to rapidly detect and respond to real-time security alerts and events and conduct detailed root cause investigations. The analyst will work closely with other SOC personnel, forensics, incident response, and engineering partners to mitigate a wide variety of threats and malicious activity.

• Support shifts and on call rotations
• Detect and respond to security events and threats from alerting, escalations, and other sources
• Lead complex investigations and conduct deep analysis of security events focused on rapid containment, remediation, and mitigation
• Work closely with security engineering teams to improve monitoring, detection, and tooling
• Understand the threat landscape, emerging trends, and incorporate this understanding into day-to-day security monitoring
• Operate SOC technologies, including but not limited to a Security Information Event Management (SIEM) platform, IDS, SOAR, Firewalls, Anti-Malware solutions, and insider threat tooling
• Assist with security incident response activities
• Prepare assigned reports for the SOC manager
• Provide high quality written and verbal reports as required
• Actively monitor and respond to the SIEM alert queue and triage alerts
• Investigate alerts using standard operating procedures
• Monitor several screens, systems, and alerts simultaneously
• This role is open to Singaporeans only
• Must meet eligibility requirements for obtaining and maintaining a Singapore government security clearance
• This role may involve working on government projects which require security clearance; willingness to provide necessary personal details for clearance is required

• 8+ years of Incident Response, Security Operations Center, and/or Forensic Analyst experience
• Comfortable working in an ambiguous, fast-paced, unpredictable environment
• Experience in a highly collaborative, team-centric, event-driven operations team
• Experience with querying across large data sets to understand complex problems
• Strong attention to detail
• Experience in fields such as national security, military, intelligence, law enforcement, criminology, or related areas
• Experience with Windows, UNIX/Linux, and MacOS
• Experience performing open source research on a variety of topics
• Excellent verbal and written communication skills with the ability to convey technical information to non-technical staff

As a world leader in cloud solutions, Oracle uses tomorrow’s technology to tackle today’s challenges. We’ve partnered with industry-leaders in almost every sector—and continue to thrive after 40+ years of change by operating with integrity. We know that true innovation starts when everyone is empowered to contribute. We’re committed to growing an inclusive workforce that promotes opportunities for all. Oracle careers open the door to global opportunities where work-life balance flourishes. We offer competitive benefits based on parity and consistency and support our people with flexible medical, life insurance, and retirement options. We also encourage employees to give back to their communities through our volunteer programs.

Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans’ status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.

Job Summary

We’re looking for a Full stack developer-Cybersecurity Analyst to support our team in Job Singapore . This role offers the opportunity to work on meaningful projects, collaborate with talented colleagues, and contribute to the success of a growing company. If you’re someone who takes initiative, values continuous learning, and thrives in a collaborative setting, we’d love to hear from you.

• Possess a degree in Computer Science/Information Technology or related fields.
• At least 5 to 7 years working in a cybersecurity operations function or similar.
• Deep understanding of cybersecurity frameworks, attack techniques (MITRE ATT&CK), and threat detection methodologies .
• Working knowledge of Data Science, AI technologies such as NLP, Machine Learning and Generative AI .
• Experienced with programming languages, preferably Python, C++/C# or R with experience in AI-related libraries (e.g., TensorFlow, PyTorch, Scikit-learn ).
• Strong analytical and practitioner skills, combined with excellent written and verbal communication skills.
• Ability to break down complex problems and articulate them clearly to a non-technical audience.
• Relevant certifications in SANS, OffSec or other relevant credentials is a plus.
• Ability to work independently and as part of a team in a fast-paced, dynamic environment.

RiDiK is a global technology solutions provider and a subsidiary of CLPS Incorporation (NASDAQ: CLPS), delivering cutting-edge end-to-end services across banking, wealth management, and e-commerce. With deep expertise in AI, cloud, big data, and blockchain, we support clients across Asia, North America, and the Middle East in driving digital transformation and achieving sustainable growth. Operating from regional hubs in 10 countries and backed by a global delivery network, we combine local insight with technical excellence to deliver real, measurable impact. Join RiDiK and be part of an innovative, fast-growing team shaping the future of technology across industries.

• Associate

• Contract

• Other

• IT Services and IT Consulting

Overview

APAC Senior Talent Acquisition Specialist @Shell Infotech RiDiK | Hiring for Technical Roles

We’re looking for a Full stack developer-Cybersecurity Analyst to support our team in Singapore . This role offers the opportunity to work on meaningful projects, collaborate with talented colleagues, and contribute to the success of a growing company. If you’re someone who takes initiative, values continuous learning, and thrives in a collaborative setting, we’d love to hear from you.

• Possess a degree in Computer Science/Information Technology or related fields.
• At least 5 to 7 years working in a cybersecurity operations function or similar.
• Deep understanding of cybersecurity frameworks, attack techniques (MITRE ATT&CK), and threat detection methodologies .
• Working knowledge of Data Science, AI technologies such as NLP, Machine Learning and Generative AI .
• Experienced with programming languages, preferably Python, C++/C# or R with experience in AI-related libraries (e.g., TensorFlow, PyTorch, Scikit-learn) .
• Strong analytical and practitioner skills, combined with excellent written and verbal communication skills.
• Ability to break down complex problems and articulate them clearly to a non-technical audience.
• Relevant certifications in SANS, OffSec or other relevant credentials is a plus.
• Ability to work independently and as part of a team in a fast-paced, dynamic environment.

• Degree in Computer Science/Information Technology or related field.
• 5–7 years in cybersecurity operations or equivalent.
• Knowledge of cybersecurity frameworks, MITRE ATT&CK, and threat detection.
• Familiarity with Data Science and AI technologies (NLP, ML, Generative AI).
• Proficiency in programming languages (Python, C++/C#, or R) and AI libraries (TensorFlow, PyTorch, Scikit-learn).
• Strong communication skills and ability to convey technical concepts to non-technical stakeholders.
• Independent and collaborative work style in a fast-paced environment.
• Relevant certifications (e.g., SANS, OffSec) a plus.

RiDiK is a global technology solutions provider and a subsidiary of CLPS Incorporation (NASDAQ: CLPS). We deliver end-to-end services across banking, wealth management, and e-commerce, with expertise in AI, cloud, big data, and blockchain. We operate from regional hubs in multiple countries, supported by a global delivery network and a focus on digital transformation and sustainable growth.

• Seniority level: Associate
• Employment type: Contract
• Job function: Other
• Industries: IT Services and IT Consulting

Join to apply for the Security Analyst 3 role at Oracle

1 week ago Be among the first 25 applicants

Join to apply for the Security Analyst 3 role at Oracle

Job Description

We are looking for professionals with experience protecting critical infrastructure to help us defend Oracle cloud infrastructure. Our team is skilled in threat hunting, analyzing indicators of compromise (IOCs), investigating adverse security events, security incident management, and digital forensics across laaS, PaaS and SaaS environments. You will be part of a corporate security operations center responsible for defending infrastructure from adversaries and insider threats. This includes using tools to analyze and respond to threats, creating tools/scripts to aid in analysis, and responding in real time to adverse security events. Our team is the last line of defense if security controls are breached. We are expanding the team and working on ambitious new initiatives. The Senior SOC Analyst will leverage advance security tooling and automation to rapidly detect and respond to real-time security alerts and events and conduct detailed root cause investigations. The analyst will work closely with other SOC personnel, forensics, incident response, and engineering partners to mitigate a wide variety of threats and malicious activity.

Job Description

We are looking for professionals with experience protecting critical infrastructure to help us defend Oracle cloud infrastructure. Our team is skilled in threat hunting, analyzing indicators of compromise (IOCs), investigating adverse security events, security incident management, and digital forensics across laaS, PaaS and SaaS environments. You will be part of a corporate security operations center responsible for defending infrastructure from adversaries and insider threats. This includes using tools to analyze and respond to threats, creating tools/scripts to aid in analysis, and responding in real time to adverse security events. Our team is the last line of defense if security controls are breached. We are expanding the team and working on ambitious new initiatives. The Senior SOC Analyst will leverage advance security tooling and automation to rapidly detect and respond to real-time security alerts and events and conduct detailed root cause investigations. The analyst will work closely with other SOC personnel, forensics, incident response, and engineering partners to mitigate a wide variety of threats and malicious activity.

Career Level – IC3

Description

• Support shifts and on call rotations
• Detect and respond to security events and threats from alerting, escalations, and other sources
• Lead complex investigations and conduct deep analysis of security events focused on rapid containment, remediation, and mitigation
• Work closely with security engineering teams to improve monitoring, detection, and tooling
• Understand the threat landscape, emerging trends, and incorporate this understanding into day-to-day security monitoring
• Operate SOC technologies, including but not limited to a Security Information Event Management (SIEM) platform,Intrusion Detection Systems (IDS), SOAR, Firewalls, Anti-Malware solutions, and insider threat tooling
• Assist with security incident response activities
• Prepare assigned reports for the SOC manager
• Provide high quality written and verbal reports as required
• Actively monitor and respond the SIEM alert queue and triage alerts
• Investigate alerts using standard operating procedures
• Monitor several screens, systems, and alerts simultaneously
• This role is open to Singaporeans only
• Must meet eligibility requirements for obtaining and maintaining a Singapore government security clearance.
• This role will involve the successful applicant working on government projects which may require security clearance being obtained and maintained as a condition of employment. Candidates applying for this role must be willing to provide necessary personal details for the application and maintenance of necessary security clearance.
  
  
  

• 4+ years of Incident Response, Security Operations Center, and/or Forensic Analyst experience
• Comfortable working in an ambiguous, fast-paced, unpredictable environment
• Experience working in a highly collaborative, team centric, event driven operations team
• Experience with querying across large data sets to understand complicated and difficult to solve problems
• Strong attention to detail
• Experience in one or more of the following fields of work: National security, military, intelligence, law enforcement, criminology, and/or foreign areas and language
• Experience with variety of operating systems and threats that target them including Windows, UNIX/LINUX, and MacOS
• Experience performing open source research on a variety of topics
• Excellent verbal/non-verbal communication skills with proficient ability to deliver technical information to non-technical staff
  
  
  

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries IT Services and IT Consulting

Referrals increase your chances of interviewing at Oracle by 2x

Get notified about new Security Analyst jobs in Singapore .

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Get AI-powered advice on this job and more exclusive features.

Bare Cove Technology (BCT) is an award-winning IT and cybersecurity solutions provider. Our team is made up of proven leaders in the fields of cybersecurity, software development, cloud technologies, and IT infrastructure and design. We support the top asset managers in the Asia Pacific region, helping our clients meet the evolving expectations of institutional investors and global regulators.

Bare Cove Technology is in a rapid-growth phase and onboarding new clients across Singapore, Hong Kong, Australia, and the UK. To support our continued growth, Bare Cove is looking to hire several new members to the team.

ABOUT THE ROLE

Bare Cove Technology is looking for a Cyber Security Analyst to join our growing team. The candidate will be focused on providing high-quality cybersecurity services, including penetration testing, vulnerability scanning, managing phishing campaigns, and conducting security training. This role presents an exciting opportunity for candidates who possess technical experience and expertise in cybersecurity and are looking for a unique opportunity to leverage their technical expertise to enhance our clients' security posture.

This role can be based in either of BCT’s Hong Kong or Singapore offices. Singapore candidates must be Singapore citizens or Permanent Residents.

Job Duties:

• Conduct penetration testing to identify and demonstrate the ability to exploit vulnerabilities in clients' systems and networks.
• Perform vulnerability scanning to detect and assess security weaknesses.
• Manage phishing campaigns, including the creation, execution, and analysis of phishing simulations.
• Develop and deliver security awareness training to educate clients and internal staff on cybersecurity best practices.
• Provide detailed reports on findings from penetration tests and vulnerability scans, including recommendations for remediation.
• Coordinate with internal and client teams on the remediation of findings.
• Analyse real phishing alerts, antivirus alerts, zero-day vulnerability alerts, and provide comprehensive updates to the respective stakeholders.
• Collaborate with clients to understand their security needs and provide tailored cybersecurity solutions.
• Stay up-to-date with the latest cybersecurity trends, threats, and technologies.

SKILLS AND QUALIFICATIONS

Required Skills and Qualifications:

• Prior experience in conducting penetration testing and vulnerability scanning.
• Strong understanding of cybersecurity principles and best practices.
• Experience with phishing campaign management and security awareness training.
• Proven ability to function in a self-directed environment, with high levels of attention to detail.
• Must excel in a fast-paced, agile environment where critical thinking and strong problem-solving skills are required for success.
• Innovative thinker who is positive, proactive and readily embraces change.
• Ability to handle clients professionally at all times.
• Willing to work outside standard business hours when necessary.
• Strong written and verbal English communication skills are required; Cantonese and Mandarin are a plus.

Preferred Skills and Qualifications:

• Relevant certifications such as CEH, OSCP, CISSP, CREST or similar are preferred.
• Experience with cloud security (M365, AWS, Azure, etc.).
• Knowledge of scripting languages such as Python or PowerShell.
• Familiarity with regulatory requirements and compliance standards (e.g., GDPR, ISO 27001).

• Seniority level Entry level

• Employment type Full-time

• Job function Information Technology
• Industries IT Services and IT Consulting

Referrals increase your chances of interviewing at Bare Cove Technology by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

IT Security Officer

Avensys is a reputable global IT professional services company headquartered in Singapore. Our services include enterprise solution consulting, business intelligence, business process automation, and managed services. With over a decade of success, we are among the top trusted providers in Singapore, serving clients across banking and financial services, insurance, information technology, healthcare, retail, and supply chain.

We are currently hiring an IT Security Officer . This is an exciting opportunity to expand your skills, achieve job satisfaction, and maintain work-life balance. Details are as follows:

Job Type: Long Term Contract

The IT Security Officer should have at least one (1) year of relevant experience and will be responsible for:

• Providing expertise, oversight, and reporting on security and compliance matters within the scope of engagement;
• Investigating, managing, and responding to security incidents;
• Monitoring GITSir Alerts and GCSOC;
• Overseeing vulnerability assessments, audit log activities, baseline compliance, and privilege user account management;
• Conducting yearly security awareness training for internal teams and agencies;
• Validating RFI items and sharing findings with teams during audits;
• Updating and enforcing account security policies, procedures, standards, and guidelines, ensuring compliance among FM and subcontractor personnel;
• Managing security services provided by FM and third parties;
• Reporting security risks and issues to ITSM, covering threat, vulnerability, compliance, and incident management, based on operational reports such as:
• VMS (Nessus) reports
• Monthly security log reviews
• Security reporting services
• Quarterly privilege access reviews
• Monthly Imperva DAM and Carbon Black reports
• Antivirus reports
• Patch and asset management scorecards
• Account reviews and asset inventory reports
• Reporting to the MOH IFC Security team for BAU security functions and issues.

Interested candidates can submit their CVs via email to or apply online.

Consultant Details

Name: Khalid Farooq

Company: Avensys Consulting Pte Ltd

EA License: 12C5759

Privacy Statement: Data collected will be used solely for recruitment purposes and in accordance with data protection laws and our privacy policy.

We are seeking a proactive Cyber Security Analyst to support our ongoing Data Loss Prevention modernization initiative, with a particular focus on advanced capabilities enabled by Microsoft Purview. This role is critical in enhancing our data protection posture through automated classification, labeling, and policy enforcement. This is a 12-month engagement.

• Participate in the implementation and optimization of automated sensitivity labeling across enterprise data assets
• Develop and manage trainable classifiers to improve detection accuracy and reduce false positives
• Configure and maintain manual and auto-application of labels to support regulatory and business requirements
• Collaborate with cross-functional teams to align DLP policies with data governance and compliance objectives
• Monitor and fine-tune DLP rules and workflows to ensure effective coverage and minimal disruption
• Provide technical expertise during the migration and integration of DLP capabilities into Microsoft Purview

• Proven experience in DLP engineering, preferably within enterprise environments
• Hands-on expertise with Microsoft Purview or similar data protection platforms
• Strong understanding of data classification, labeling frameworks, and policy enforcement mechanisms
• Familiarity with regulatory requirements related to data protection (e.g., GDPR, PDPA)
• Excellent problem-solving skills and ability to work independently and collaboratively