Cybersecurity Engineer (Hybrid, Singapore)

About the role

We are seeking a hands‑on Cybersecurity Engineer to strengthen the security posture of a complex environment that spans legacy infrastructure, modern cloud services, and distributed systems. The role is hybrid, based in Singapore, and works closely with infrastructure, DevOps, software engineering, DBA and other technology teams.

Key responsibilities

• Implement, maintain and improve security controls across servers, endpoints, cloud services, identity platforms and network infrastructure.
• Run vulnerability management processes: scanning, validation, prioritisation, tracking and remediation reporting.
• Monitor and triage alerts from endpoint protection, SIEM, firewalls, VPNs and vulnerability scanners; investigate suspicious activity and support incident response.
• Collaborate with infrastructure teams on server hardening, patching, configuration baselines, backup security, firewall rules and network segmentation.
• Embed security into CI/CD pipelines, repository management, dependency handling, secrets management and release processes.
• Support identity and access management practices such as least‑privilege, MFA, role‑based access and privileged access reviews.
• Configure and tune security tools including EDR, SIEM, vulnerability scanners and cloud security services.
• Contribute to security reviews for new systems, integrations and third‑party tools, and maintain practical security documentation.

Required profile

• Hands‑on experience in cybersecurity, infrastructure security or security engineering.
• Strong understanding of vulnerability management, incident response, access control and secure configuration.
• Proven ability to work with cross‑functional technology teams and communicate risks to both technical and non‑technical stakeholders.

Required skills

• Endpoint Detection and Response (EDR) tools.
• Security Information and Event Management (SIEM) and logging platforms.
• Vulnerability scanning and management solutions.
• Cloud security services (e.g., AWS, Azure, GCP security features).
• CI/CD pipeline security, secrets management and dependency scanning.
• Multi‑Factor Authentication (MFA) and Identity & Access Management (IAM) solutions.
• Server hardening, patch management and configuration baselines.
• Firewall, VPN and network segmentation technologies.