Cyber Security Engineer

Position: Cyber Security Engineer

Department: BCS Security, Cyber Defense

Reporting To: VP, Cyber Defense

The following outlines the job responsibilities which are summarized. It is intended as a guideline only and not meant to be exhaustive and subject to changes over time as the role develops.

About BCS

BCS is NETS’ wholly owned subsidiary and is an entity within the NETS Group. It manages and operates clearing and payment infrastructure for the Singapore Automated Clearing House, including Fast And Secure Transfers (FAST), Inter-bank GIRO (IBG), Cheque Truncation System (CTS), and provides services for PayNow and SGQR Central Repository.

Position Summary

You will work in a fast-paced, highly collaborative environment with cross-functional teams. You are a security practitioner in cyber security standards, protocols, and frameworks, and ensure the organization’s compliance to applicable regulations such as the Cyber Security Act, MAS Cyber Hygiene and Technology Risk Management Notices. You are proficient in various mainstream cybersecurity solutions.

Key Responsibilities

• Manage, operate, administer, and optimise the organisation’s portfolio of cybersecurity solutions, e.g., IDS/IPS, email defences, EPP, DLP, vulnerability management, PAM (Cyberark and Beyondtrust), IAM/IGA, DAM, proxy, NGFW.
• Responsible for day-to-day cybersecurity operational activities pertaining to security solutions assigned.
• Responsible for end-to-end security solution design and project implementation.
• Identify security controls based on secure-by-design methodology to ensure solutions adopt their required security posture.
• Implement, operationalise, and optimise new cybersecurity solutions as required.
• Own and update the security solution documents to ensure they are up to date.
• Maintain high quality standards as you creatively and strategically problem solve throughout the product delivery process.
• Assist with security incident response activities including containment and recovery as and when they arise.
• Stay current on the latest cybersecurity industry trends, technologies, and techniques, and support the team in conducting cybersecurity awareness training within the company.
• Support colleagues and cover duties internally from time to time.

Requirements

• Degree or Diploma in Computer Science, Computer Engineering, or Information Security related fields.
• Experience in administering security solutions, e.g. Cyberark, Beyondtrust, Trendmicro Deep Security and Apex One, Tenable security center, IMPERVA Securesphere, NGFW.
• Deep understanding of various Operating Systems, e.g., Linux, Unix, and Windows.
• Experience with programming/scripting (Python, PowerShell, etc.) would be advantageous.
• At least 2 years of experience supporting cybersecurity operations in an AWS environment will be advantageous.
• Security certifications such as GSEC, GCIH, GCIA, GCFA, GCFE or GNFA are highly desirable.
• Product certifications in PAM, DAM, VM are advantageous.
• Familiarity with MAS Cyber Hygiene (PSN06) and Technology Risk Management (PSN05) Notices, MAS Technology Risk Management Guidelines, and Cybersecurity Act and Cybersecurity Code of Practice (CCoP).
• Excellent problem-solving and analytical skills with a keen eye for detail.
• Effective communicator who can create and maintain constructive relationships with stakeholders, vendors, and colleagues across departments.
• Able to work independently and manage work well to meet project deadlines.

Updated: April 2024