Senior Cybersecurity engineer

Senior Cybersecurity Engineer

Roles and Responsibilities

1. Manage security solutions to protect the Bank’s IT Security Infrastructure from cyber threats, including intrusion detection/prevention systems, firewalls, and cryptography systems.
2. Design and implement security principles for hosting web applications.
3. Design, validate, implement, and document end-to-end process workflows on security implementations.
4. Review and develop security framework, information security policies, processes/procedures, and guidelines on an ongoing basis.
5. Identify security gaps, perform threat risk assessments in the current setup, propose mitigating measures, and react to cybersecurity resilience.
6. Undertake new security projects to improve security controls, efficiency, and ease of use without compromising compliance needs.
7. Review and reaffirm the security controls for application go-live and enforce them in respective platforms, including the virtual environment.
8. Proficient in handling web security zero-day vulnerabilities and must have expert skills in cybersecurity operations.
9. Analyze web security policies/signature-based updates and assess the risk for banking applications.
10. Handle internal customer inquiries with firewall consultation and troubleshoot technical issues effectively.
11. Communicate with external vendors over technical support and solutions for new projects.
12. Proactively identify areas of improvement and implement fixes and solutions to automate/fine-tune processes with new or existing tools.
13. Lead incident response activities for detecting and recovering from cyberattacks.
14. Perform vulnerability assessments and recommend solutions for security gaps.
15. Monitor the network for suspicious activities and anomalies that emerge as part of web applications.
16. Monitor and adhere to IT governance principles and controls related to cybersecurity architecture.

Requirements

1. Bachelor’s degree in computer science or equivalent is a must.
2. At least 10 years of experience in the IT security domain.
3. At least 10 years of experience in handling cybersecurity incidents and collaborating with operational teams.
4. At least 10 years of experience with Illumio Zero Trust, Checkpoint R81.10, Fortigate Firewalls, and a good understanding of NAC principles.
5. In-depth knowledge of current cyber threats, vulnerabilities, and attack vectors.
6. Proficient in Microsoft Office products, Tufin suite, micro-segmentation, web application firewalls, and IPS/IDS platforms.
7. Strong fundamental understanding of Internet security and critical controls.
8. SME in WAF platforms, especially F5 Advanced WAF and VMware AVI NG WAF (MOD Sec).
9. Guide engineers on WAF operational activities and handle the network security team.
10. Good in analyzing and reviewing IPS policies on Cisco Firepower Threat Defense systems (FTD), Fortiguard, and Fortinet security control features.
11. Expert in handling zero-day vulnerabilities and mitigate web-based attacks with custom scripts/iRules.
12. Act as SPOC for cyber drill/BAS (Breach & Attack Simulation) activities and coordinate with infrastructure teams to report vulnerabilities for review.
13. Analyze web security events and conduct revival sessions with application teams to strengthen security policies.
14. Good in packet capture analysis and firewall rule coding principles and rule compliance.
15. Proficiency in writing programming/scripting languages (Python, Unix/Linux, etc.) is a plus.
16. Familiarity with common security frameworks and standards, such as ISO 27001 & NIST, and the ability to specify where and how security controls should be applied or engineered.
17. Good working knowledge of security risk management, vulnerability management, application security, and security incident response.
18. Excellent communication and advocacy skills, both verbal and written, with the ability to express complex technical issues comprehensibly.

Interested candidates may apply through the application system or send their application to dinud@morganmckinley.com. Shortlisted candidates will be notified.

By sending us your personal data and curriculum vitae (CV), you consent to Morgan McKinley Pte Ltd and its affiliates collecting, using, and disclosing your personal data for the purposes set out in the Privacy Policy available at https://www.morganmckinley.com/sg/privacy-policy. You acknowledge that you have read, understood, and agree with the Privacy Policy.

Morgan McKinley Pte Ltd
Dinu Dinesh

EA License No: 11C5502

EAP Registration No: R22110286