Cybersecurity Engineer | Hybrid (Singapore)

Cybersecurity Engineer | Hybrid (Singapore)

Location: Singapore (East Coast ) – Hybrid

We are looking for a Cybersecurity Engineer to strengthen security across a complex environment of infrastructure, applications, identity platforms, and cloud/on-prem systems.

This is a hands-on security engineering role focused on improving real-world security posture through practical implementation, monitoring, and continuous improvement of controls across systems and engineering processes. The environment includes a mix of legacy systems, modern cloud services, and distributed infrastructure, requiring a pragmatic and operational approach to security.

You will work closely with infrastructure, DevOps, software engineering, DBA, and technology teams to reduce risk, improve visibility, and embed security into day-to-day operations and delivery workflows.

What You’ll Be Doing

In this role, you will:

• Implement, maintain, and improve security controls across servers, endpoints, cloud services, identity platforms, and network infrastructure
• Support vulnerability management activities including scanning, validation, prioritisation, tracking, and remediation reporting
• Monitor and triage security alerts from endpoint protection, SIEM/logging tools, identity systems, firewalls, VPNs, and vulnerability scanners
• Investigate suspicious activity, document findings, and escalate incidents through defined response processes
• Support incident response activities including containment, evidence collection, remediation tracking, and post-incident reviews
• Work with infrastructure teams on server hardening, patching, configuration baselines, backup security, firewall rules, VPN access, and segmentation
• Partner with DevOps and engineering teams to embed security into CI/CD pipelines, repositories, dependency management, secrets handling, and release processes
• Support identity and access management practices including least privilege, MFA, role-based access, privileged access reviews, and onboarding/offboarding processes
• Assist with configuration and tuning of security tools including endpoint protection, SIEM, vulnerability scanners, and cloud security services
• Contribute to security reviews for new systems, integrations, infrastructure changes, and third-party tools
• Maintain practical security documentation including policies, runbooks, procedures, and operational guides
• Support compliance and audit activities by gathering evidence and tracking remediation actions (without owning governance end-to-end)
• Communicate security risks clearly to both technical and non-technical stakeholders, including impact, severity, and remediation status
• Contribute to security awareness by promoting practical, day-to-day security best practices across teams

What You Bring

• 3+ years of experience in cybersecurity, infrastructure security, security engineering, or similar hands-on roles
• Strong understanding of core security principles including vulnerability management, incident response, access control, and secure configuration practices
• Experience with security tooling such as EDR, SIEM/logging platforms, vulnerability scanners, identity systems, or firewall/VPN technologies
• Working knowledge of Windows and Linux system security including patching, hardening, logging, and troubleshooting
• Understanding of network security concepts including firewalls, VPNs, DNS, IDS/IPS, segmentation, and remote access controls
• Experience with identity and access management (MFA, RBAC, privileged access, least privilege, access reviews)
• Ability to investigate alerts, analyse logs, validate vulnerabilities, and drive issues through remediation
• Familiarity with DevSecOps principles including secure SDLC, dependency scanning, secrets management, and CI/CD security integration
• Ability to collaborate effectively with infrastructure, DevOps, engineering, DBA, and business teams without blocking delivery
• Strong documentation and communication skills, with the ability to explain risks and remediation clearly
• High ownership mindset with structured troubleshooting and incident investigation skills
• Comfortable working in distributed teams across multiple time zones

Nice to Have

• Experience with Microsoft security stack (e.g. Defender, Entra ID, Intune, Sentinel or related tooling)
• Experience in hybrid environments spanning on-prem infrastructure and cloud platforms (Azure, AWS, GCP)
• Familiarity with vulnerability remediation across servers, endpoints, networks, databases, and applications
• Knowledge of frameworks such as SOC 2, ISO 27001, NIST, CIS Controls, or GDPR
• Experience with secure baselines, patch management, configuration drift, and endpoint management practices
• Exposure to application security tooling (SAST, DAST, dependency scanning, container security)
• Relevant certifications such as Security+, CySA+, SSCP, CISSP Associate, CEH, or Azure Security Engineer
• Background in B2B technology, logistics, supply chain, distribution, manufacturing, or similar environments
• Apply today for Immediate consideration                                       #LI-JG1
•