IT Security Engineer (Governance, Incident Response& Vulnerability Management)
Mon to Fri Office hours/ Outram Work Location
Cat2B security clearance for this 1 year project renewable
Salary Package:
⢠Up to S$5,000 Basic
⢠1 Month Performance Bonus
⢠S$50 Monthly Mobile Phone Claim
⢠Additional S$100 Staff Amenities Claim given for Night Deployment or Weekend Patching Activities
Join a growing cybersecurity team responsible for protecting critical enterprise IT systems, applications, and infrastructure. We are seeking a hands-on IT Security Officer who enjoys security operations, incident response, vulnerability management, and compliance activities. You will be under Agency payroll for this 1 Yr project renewable assignment.
Key Responsibilities
Security Governance
⢠Develop, review and maintain information security policies, standards and procedures
⢠Support security risk assessments and risk register management
⢠Ensure compliance with security frameworks and regulatory requirements
Threat Detection & Incident Response
⢠Monitor and investigate security incidents using SIEM and EDR platforms
⢠Perform incident triage, root cause analysis and risk assessment
⢠Coordinate incident escalation and remediation activities
⢠Maintain incident response plans and playbooks
Vulnerability Management
⢠Perform vulnerability assessments and coordinate remediation activities
⢠Work closely with infrastructure, application and system owners to address security findings
⢠Prioritize vulnerabilities based on risk and business impact
⢠Track remediation progress and reporting
Compliance & Auditing
⢠Support internal and external security audits
⢠Prepare security documentation and evidence collection
⢠Assist in compliance reporting and governance reviews
Good to Have Exposure
⢠Cloud Security (AWS, Azure, GCP)
⢠IAM, SSO, MFA and PAM solutions
⢠Data Loss Prevention (DLP)
⢠Security Awareness Training
⢠Third-Party Risk Management
⢠Application Security and Secure SDLC
⢠OT / ICS / SCADA Security
Requirements
⢠Minimum 3 years of IT Security or Cybersecurity experience
⢠Hands-on experience in Security Operations, Incident Response or Vulnerability Management
⢠Experience using SIEM, EDR and Vulnerability Scanning tools
⢠Familiarity with security frameworks such as ISO27001, NIST or CIS Controls
⢠Strong stakeholder management and communication skills
⢠Ability to work independently and coordinate with multiple technical teams
Preferred Certifications
⢠Security+
⢠CEH
⢠GSEC
⢠CySA+
⢠SSCP
⢠CISSP (Advantageous)
⢠ISO27001 Lead Implementer/Auditor (Advantageous)
If you enjoy investigating security incidents, managing vulnerabilities and strengthening enterprise security posture, we would like to hear from you.
EA LicenseNo: 09C4235 I EA Reg: R1103307 (Hong Mei Lin)