Title:  Backend API Developer (DSC|SN)

ST Engineering is a global technology, defence and engineering group with offices across Asia, Europe, the Middle East and the U.S., serving customers in more than 100 countries. The Group uses technology and innovation to solve real-world problems and improve lives through its diverse portfolio of businesses across the aerospace, smart city, defence and public security segments. Headquartered in Singapore, ST Engineering ranks among the largest companies listed on the Singapore Exchange.

Join our Cyber Team

We are an industry leader in cybersecurity with over two decades of experience, we deliver a holistic suite of trusted cybersecurity solutions to empower cyber resilience for government and ministries, critical infrastructure, and commercial enterprises. Backed by our indigenous capabilities and deep domain expertise, we offer robust cyber-secure products and services in cryptography, cybersecurity engineering, digital authentication, SCADA protection, audit and compliance. We specialise in the design and build of security operations centres for cybersecurity professionals and provide managed security services to strengthen the cybersecurity posture of our government and enterprise customers.

Job Overview:

• Co-design & optimise large-scale data systems: Collaborate on database schema design for managing high-volume datasets
• Develop 5G-aligned APIs: Build RESTful/gRPC APIs compliant with 3GPP standards to interface with 5G core components.
• Implement real-time correlation & threat detection: Use Kafka Streams or equivalent frameworks to correlate network indicators with metadata.
• Secure API and data workflows: Enforce OAuth2/JWT authentication, input validation, and rate limiting to mitigate vulnerabilities (SQLi, XSS) aligned with OWASP API Security Top 10.
• Ensure compliance and integrity: Apply GDPR/HIPAA standards to API data handling and implement audit trails for regulatory reporting.
• Modern infrastructure practices: Establish baseline security configurations for Kubernetes & Linux infrastructure, including container hardening and automated CI/CD pipelines.
• Collaborative development: Work with QA and DevOps teams to integrate security testing (SAST/DAST) into deployment workflows.
• Documentation ownership: Maintain detailed API security documentation, including threat models, access control policies, and audit logs.

Minimum Qualifications:

Core technical skills:

•Expertise in Docker/Kubernetes for designing, deploying, and scaling containerised services.

•Strong background in data-driven system design (e.g., time-series databases, stream processing).

•Proficiency in Git, Agile/SCRUM methodologies, and CI/CD toolchains

API and security:

•Experience securing RESTful/gRPC APIs with OAuth2, JWT, and rate-limiting frameworks.

•Knowledge of OWASP API Security Top 10 and compliance standards (GDPR, HIPAA).

Preferred Qualifications:

•5G protocols: Familiarity with 3GPP specifications (TS 29.500-series), HTTP/2 SBIs, or 5G NR protocols (NGAP, PFCP).

•Streaming platforms: Production experience with Apache Kafka, Pulsar, or Redpanda for high-throughput data pipelines.

•Time-series APIs: Prior work on APIs handling telemetry, IoT, or network metrics.

Soft Skills:

•Strong communication skills to collaborate with cross-functional teams (frontend, QA, network engineers).

Work Location: Jurong East

Find out more:  https://www.stengg.com/cybersecurity

ST Engineering believes in fostering a culture where team members are encouraged to overcome challenges, explore new ideas, and work together to succeed. We value individuals who are determined to push beyond the boundaries, and have a thirst for knowledge, continuous learning, and self-improvement.