[What the role is]
About Economic Development BoardEDB is the lead government agency responsible for planning & executing strategies to enhance Singapore's position as a global business centre and grow the Singapore Economy. We dream, design and deliver solutions that create value for investors and companies in Singapore. Through that, we attract economic opportunities and jobs for the people of Singapore and help shape our country's economic future.
[What you will be working on]
What the role is
As part of the IT Info Security team, the Security engineer will support Cyber and Data security programs, IT security operations, IT compliance and risk management to protect the organization’s systems, business applications and data against cyber threats.
Focusing on Cyber and Data Security domain, you'll facilitate and support the assessments, implementation and operations of Cyber and Data security programs and initiatives.
IT security operations - you'll support the daily operations, incident response, security testing, vulnerability assessments, security monitoring, awareness and trainings, reporting, lead and participate in project initiatives to protect the organizations datasets and enhancement of security posture.
IT compliance and risk management - you'll support the facilitation of audits and risk assessments of IT systems. Ensuring security compliance, the management and maintaining of effective cyber and data security procedures.
What you will be working on
Support Cyber and Data Security programs, assessment, implementation, and operations.
Support security operations and leverage on existing and emerging methods to detect security intrusions or violations.
Support and maintain SOC centric engineering and technical solutions to address changing trend landscape and increasing demand for automation in cyber security monitoring and incident response.
Perform Incident Response to detect and report incidents. This includes the analysis of incidents’ root causes, and implementation of mitigation and/or prevention processes and policies.
Support the review of IT risk assessment and treatment techniques that can effectively identify, pre-empt, and mitigate significant security loopholes and weaknesses for system and technology to support business initiatives through in-depth analysis to identify and manage cybersecurity risks, threats, and vulnerabilities.
Support IT related audit & compliance assessments and provide recommendations to remediate issues discovered through the assessments.
Monitor and track cybersecurity risk mitigation.
Keep abreast of latest cybersecurity developments and practices and apply the necessary to the organisation.
What we are looking for
To meet the challenges of this role, you must have/be:
Bachelor’s degree in Computer Science, Information Security or a related field preferred.
Over 3 years of experience in the Information Security field with hands-on experience in IT security project management.
Hands-on experience in implementing, managing and support of Cyber and Data security tools such as WAF (Imperva Incapsula), AWS native security tools (Guard duty, Security Hub etc), SIEM (Splunk), Vulnerability Assessment (Nessus) & Code Scan, Threat Hunting (Carbon Black EDR), DLP (MacAfee), IAM, AIP etc.
Understand components and services of both on-premises and commercial cloud environments, such as AWS, Azure, and GCP, including their native security tools and architectures for effective security monitoring.
Experience in supporting IT security incidents, security testing and security operation.
Experience in supporting IT audit, risk assessments and recommend relevant appropriate mitigation controls for issues discovered through the assessments with documentation.
Experience in the development, review, and maintenance of IT Cyber and Data Security related SOPs and policies.
A cohesive, effective team player and communicator with positive and eager to learn attitude.
Problem solving skills, with strong analytical and able to work under pressure.
Knowledge and ability to effectively leverage generative AI tools and technologies to enhance productivity, problem-solve, and innovate across various work tasks.
Certifications in CISSP, CISM, CISA, CCSP,CEH or GIAC would be advantageous.
Singaporean.
[What we are looking for]
What we are looking for
To meet the challenges of this role, you must have/be:
Bachelor’s degree in Computer Science, Information Security or a related field preferred.
Over 3 years of experience in the Information Security field with hands-on experience in IT security project management.
Hands-on experience in implementing, managing and support of Cyber and Data security tools such as WAF (Imperva Incapsula), AWS native security tools (Guard duty, Security Hub etc), SIEM (Splunk), Vulnerability Assessment (Nessus) & Code Scan, Threat Hunting (Carbon Black EDR), DLP (MacAfee), IAM, AIP etc.
Understand components and services of both on-premises and commercial cloud environments, such as AWS, Azure, and GCP, including their native security tools and architectures for effective security monitoring.
Experience in supporting IT security incidents, security testing and security operation.
Experience in supporting IT audit, risk assessments and recommend relevant appropriate mitigation controls for issues discovered through the assessments with documentation.
Experience in the development, review, and maintenance of IT Cyber and Data Security related SOPs and policies.
A cohesive, effective team player and communicator with positive and eager to learn attitude.
Problem solving skills, with strong analytical and able to work under pressure.
Knowledge and ability to effectively leverage generative AI tools and technologies to enhance productivity, problem-solve, and innovate across various work tasks.
Certifications in CISSP, CISM, CISA, CCSP,CEH or GIAC would be advantageous.
Singaporean.