Title:  Cyber Security Engineer

Job ID:  22275
Location: 

Land - 249 Jalan Boon Lay, SG

Description: 

Job Description:

Responsible for the following roles & responsibilities (but not limited to the following), covering primarily all N2 and N3 computers and systems in the company:

  • Perform Log Review on classified computers and systems.
  • Perform Change Management and maintain records for audit purposes.
  • Conduct Cyber Risk Assessment on classified computers & systems.
  • Handle and follow up on Cyber Security Incident Management.
  • Conduct Cyber hygiene awareness & education for computer users.
  • Conduct internal and support external Cyber Security Compliance Audits
  • Ensuring adherence to internal security policies, IT governance frameworks, and compliance controls.
  • Track and remediate vulnerabilities, ensuring computers and system meet security patching and compliance standards.
  • Conduct Vulnerability Management (VA Scanning) on classified network computers and systems.
  • Enforce Data Security and Encryption requirements on classified computers and systems.
  • Formalize and archival of network security processes & flows, develop SOPs for compliance.
  • Implement GPOs to maintain Secured Configurations to prevent breaches
  • Daily basic cyber security operation and maintenance.
  • Conduct security audits and prepared reports, highlighting areas for improvement.
  • Coordinate and supporting external audits, risk assessments, and regulatory submissions.
  • Assist with implementation of security standards aligned to MSD, GISO, IT and other relevant authorities’ frameworks.

 

Job Requirements to have 1 or more of the following certifications:

  • CSSA+ — Cyber Security System Administration  (cum CEH / ComTia Security+ within 6 months of appointment)  
  • CISA — Certified Information Systems Auditor
  • CISM — Certified Information Security Manager
  • ISO 27001 – Internal Audit — ISO/IEC 27001 Information Security Management Systems (ISMS) Internal Auditor.
  • ISO 27001 – Lead Implementer — ISO/IEC 27001 Information Security Management Systems (ISMS) Lead Implementer.
  • CISSP — Certified Information Systems Security Professional.
  • GCIH - GIAC Certified Incident Handler