Cybersecurity Engineer/Manager

Overview

Lead cybersecurity initiatives for cloud/on‑prem infrastructure and applications

Key Responsibilities

• vulnerability assessment
• security automation
• cloud architecture
• security design
• incident escalation
• risk communication

Tasks

-Collaborate with application developers and database administrators to deliver creative solutions to difficult technology challenges and business requirements -Support maintenance team in difficult or chronic problems, escalate the issue to vendor, identifying the root cause and preventive measures. -Support presales team on infrastructure & Application security solutioning in bids -Interpret security and technical requirements into business requirements and communicate security risks to relevant stakeholders ranging from business leaders to engineers -Conduct in-depth assessments on the applications using SAST, DAST, Penetration Testing, Red Teaming Activities to determine application security posture and potential vulnerabilities. -Work closely with Project Managers/ Application Development Team in planning the implementation tasks -Provide system architecture design and planning for new IT infrastructure deployments in both hosted and cloud environments -Lead and influence multi-disciplinary teams in implementing and operating cyber security controls for cloud and on premise environment; micro-services, containers, applications, operating systems, databases, and networks -Automate security controls, data and processes to provide better metrics and operational support -Conduct security design review with customers -Develop and implement server security and hardening -Supports the monitoring and tuning of detection and security automation tools -Perform initial installation and configuration of new IT infrastructure & security deployments in both hosted and cloud environments -Involve in the project or lead the project related with IT infrastructure & Application security whenever required. -Lead the track in security testing and remediation, conduct Application, Server and Network vulnerability assessment. -Deliver Application Security Assessment activities with entities and external suppliers/customers. -Serves as the domain expert (SME) on Cybersecurity matters

Requirements

• virtualization
• bachelor
• networking
• pentesting
• cissp
• python

What You Bring

-Experience of working and securing Virtualization Technologies -Minimum Bachelor in Computer Science or IT related studies -Knowledge of networking and IP/TCP protocol -Experience in Windows and other OS good to have. -Good communication skills and positive working attitude. -In-depth knowledge in network and systems security issues -At least 5 years of experience in Vulnerability Assessment, Penetration Testing & Source Code Reviews of Web, Mobile and Thick Client Applications -Relevant certifications such as CISSP/CISA/CISM, CREST, CEH would be advantageous -Knowledge and experience in scripting or programming languages (ex. Python, Perl, Ruby, PowerShell, C, C#, Java) in order to develop custom scripts or tools. -Minimum 8 years’ experience in IT industry with 6 years in network/systems/Application security arena. -In-depth knowledge on network and systems security issues and ability to offer advisories and troubleshooting support. -Hands-on experience in security-related tasks such as OS tightening, patching and updating, virus scanning will be an added advantage. -Experience with firewall technologies and products, including NextGen firewalls and firewall management tools

People Also Searched For

About Certis

-Evolved through heavy-civil style expansion into a tech-enabled security powerhouse corporatised in 2005. -Backed by Temasek, it became an ops-tech specialist by integrating physical security, facilities management, customer service, and technology. -Signature 'Security+' model integrates armed guard services with smart tech, command-control systems (like ARGUS), and cloud infrastructure via AWS collaboration. -Operates across Asia Pacific and Middle East, guarding VVIPs, airports, and major venues like Jewel Changi in Singapore, Australia, Hong Kong, Qatar, and China. -Typical projects include airport security, cash-in-transit logistics, facility management, tech-driven monitoring, and aviation screening.

Sector Specialisms