Cybersecurity Engineer - Hybrid - Singapore

About the role

We are seeking a hands‑on Cybersecurity Engineer to strengthen security across a complex mix of legacy and modern cloud environments. The role focuses on practical implementation, monitoring, and continuous improvement of security controls while working closely with infrastructure, DevOps, and software teams.

Key responsibilities

• Implement, maintain and improve security controls on servers, endpoints, cloud services, identity platforms and network infrastructure.
• Support vulnerability management: scanning, validation, prioritisation, tracking and remediation reporting.
• Monitor and triage alerts from endpoint protection, SIEM, firewalls, VPNs and vulnerability scanners.
• Investigate suspicious activity, document findings and assist incident response.
• Collaborate with infrastructure teams on server hardening, patching, configuration baselines, backup security, firewall rules and segmentation.
• Embed security into CI/CD pipelines, repository management, dependency handling and secrets management.
• Support IAM practices including least‑privilege, MFA, role‑based access and privileged access reviews.
• Configure and tune security tools such as EDR, SIEM, vulnerability scanners and cloud security services.
• Contribute to security reviews for new systems, integrations and third‑party tools.
• Maintain security documentation and support compliance evidence gathering.

Required profile

• Hands‑on experience in cybersecurity, infrastructure security or security engineering.
• Strong understanding of vulnerability management, incident response, access control and secure configuration.
• Ability to work with cross‑functional teams and communicate risks to technical and non‑technical audiences.

Required skills

• Endpoint Detection and Response (EDR)
• Security Information and Event Management (SIEM) / logging tools
• Vulnerability scanners
• Cloud security services
• CI/CD pipeline security
• Multi‑Factor Authentication (MFA)
• Role‑Based Access Control (RBAC)
• Privileged Access Management
• Server hardening and patch management
• Firewall and VPN configuration