Cybersecurity Engineer/Manager

Overview

Lead cyber security initiatives across cloud/on-premise environments and guide teams.

Key Responsibilities

• security controls
• app security
• architecture design
• security monitoring
• vulnerability assessment
• security automation

Tasks

-Support maintenance team in difficult or chronic problems, escalate the issue to vendor, identifying the root cause and preventive measures. -Serves as the domain expert (SME) on Cybersecurity matters -Lead and influence multi-disciplinary teams in implementing and operating cyber security controls for cloud and on premise environment; micro-services, containers, applications, operating systems, databases, and networks -Deliver Application Security Assessment activities with entities and external suppliers/customers. -Provide system architecture design and planning for new IT infrastructure deployments in both hosted and cloud environments -Support presales team on infrastructure & Application security solutioning in bids -Work closely with Project Managers/ Application Development Team in planning the implementation tasks -Supports the monitoring and tuning of detection and security automation tools -Automate security controls, data and processes to provide better metrics and operational support -Lead the track in security testing and remediation, conduct Application, Server and Network vulnerability assessment. -Develop and implement server security and hardening -Perform initial installation and configuration of new IT infrastructure & security deployments in both hosted and cloud environments -Collaborate with application developers and database administrators to deliver creative solutions to difficult technology challenges and business requirements -Conduct in-depth assessments on the applications using SAST, DAST, Penetration Testing, Red Teaming Activities to determine application security posture and potential vulnerabilities. -Conduct security design review with customers -Involve in the project or lead the project related with IT infrastructure & Application security whenever required. -Interpret security and technical requirements into business requirements and communicate security risks to relevant stakeholders ranging from business leaders to engineers

Requirements

• cissp
• ceh
• virtualization
• firewalls
• python
• pen testing

What You Bring

-Relevant certifications such as CISSP/CISA/CISM, CREST, CEH would be advantageous -Good communication skills and positive working attitude. -Experience of working and securing Virtualization Technologies -In-depth knowledge in network and systems security issues -Minimum 8 years’ experience in IT industry with 6 years in network/systems/Application security arena. -Experience in Windows and other OS good to have. -Experience with firewall technologies and products, including NextGen firewalls and firewall management tools -Minimum Bachelor in Computer Science or IT related studies -Knowledge and experience in scripting or programming languages (ex. Python, Perl, Ruby, PowerShell, C, C#, Java) in order to develop custom scripts or tools. -Hands-on experience in security-related tasks such as OS tightening, patching and updating, virus scanning will be an added advantage. -In-depth knowledge on network and systems security issues and ability to offer advisories and troubleshooting support. -Knowledge of networking and IP/TCP protocol -At least 5 years of experience in Vulnerability Assessment, Penetration Testing & Source Code Reviews of Web, Mobile and Thick Client Applications

People Also Searched For

About Certis

-Evolved through heavy-civil style expansion into a tech-enabled security powerhouse corporatised in 2005. -Backed by Temasek, it became an ops-tech specialist by integrating physical security, facilities management, customer service, and technology. -Signature 'Security+' model integrates armed guard services with smart tech, command-control systems (like ARGUS), and cloud infrastructure via AWS collaboration. -Operates across Asia Pacific and Middle East, guarding VVIPs, airports, and major venues like Jewel Changi in Singapore, Australia, Hong Kong, Qatar, and China. -Typical projects include airport security, cash-in-transit logistics, facility management, tech-driven monitoring, and aviation screening.

Sector Specialisms