Cyber Security Engineer

Cyber Security Engineer is responsible for maintaining and improving the organization's cybersecurity posture on an ongoing basis. S/he will work with external experts to implement security solutions, and work with vendors to monitor, detect and contain cybersecurity incidents to minimize impact to the organization.

Responsibilities

• Review and development of security framework, information security policies, processes / procedures and guidelines on an ongoing basis
• Work with vendor to conduct security assessments and penetration tests.
• Identify security gaps, perform threat risk assessments in current setup and propose mitigating measures.
• Standardize and refine security incident response and escalation processes.
• Mitigate and contain threats when detected.
• Escalate security incidents and non-compliances on a timely basis.
• Work with IT infrastructure team to evaluate, implement and enhance the network perimeter security, endpoint security, SIEM, secured remote access, MFA, Identity Access Management and Privileged Access Management.
• Monitor information security alerts triage, mitigate, and escalate issues as needed.
• Provide security advisory to end users on regular basis.
• IT Security Management of various aspect, e.g. network security, server security, application security, end point security, email security, physical access security, logical access security, etc.
• Keep abreast of industrial IT security advancements and introduce appropriate security enhancements to IT infrastructure and systems.

Requirements

• Degree in engineering, science or information technology, or equivalent education.
• At least 3 years of related work experience in cybersecurity management and security governance.
• Good working knowledge of security risk management, security governance framework and compliance (IT Security Audit / log review), technical vulnerability management (vulnerability assessment, penetration testing), application security, security technologies (system hardening,
  IDS/IPD, firewall), security incident response and security assessment.
• Strong understanding of ISO27001 standard.
• Hands-on experience at least 4 of the following IT Security Tools:
  a. Next Generation Firewall (e.g., FortiGate, Palo Alto, Cisco FirePower)
  b. SASE (Zscaler, Netskope, Skyhigh)
  c. Tenable Security Center Continuous View
  d. Endpoint Protection (e.g., Symantec, Trend Micro, Sophos Endpoint)
  e. Email Security (e.g., Mimecast, ProofPoint, Cisco Email Security)
  f. Data Loss Prevention (e.g., Symantec, ForcePoint, Digital Guardian)
  g. SIEM (e.g., Splunk, QRadar)
  h. CyberArk PAM and IAM

Interested candidate who wish to apply for the advertised position, please click on "Apply Now". We regret that only shortlisted candidates will be notified.

EA License NO.: 01C4394

By sending us your personal data and curriculum vitae (CV), you are deemed to consent to PERSOLKELLY Singapore Pte Ltd and its overseas subsidiaries and affiliates collecting, using and disclosing your personal data to prospective employers/companies based in any country for purposes of evaluating suitability for employment, conducting reference checks, administering employment related services and such other purposes stated in our privacy policy. Our full privacy policy is available at www.persolkelly.com.sg. If you wish to withdraw your consent, please drop us an email to let us know. Please feel free to contact us if you have any queries.