Cybersecurity Engineering Specialist

4 weeks ago

Singapore CREDIT AGRICOLE CORPORATE AND INVESTMENT BANK Full time
Roles & Responsibilities

Who we are.

Crédit Agricole Corporate and Investment Banking (Crédit Agricole CIB) is the corporate and investment banking arm of Crédit Agricole Group, world's 10th largest bank by total assets.

Our Singapore center ("ISAP" or "Information Systems Asia Pacific") is the 2nd largest IT setup (after Paris Head Office)" for Crédit Agricole CIB's worldwide business. We work daily with international branches located in 30 markets by:

· Envisioning and preparing the Bank's futures information systems

· Partnering and supporting core banking flagships and transverse areas in their large-scale development projects.

· Providing premium In-house Banking applications

This unique positioning empowers us to bring our core banking business a sustainable competitive advantage on the market.

We seek innovative and agile people sharing our mindset to support ambitious and forthcoming technological challenges.

Position

We are looking for a Cybersecurity Engineering Specialist with expertise in Security Engineering and Risk Management. Joining the IT Security Officer team within the Chief Information Security Officer (CISO) department, you will focus on reviewing and assessing the security of our corporate desktops, servers, infrastructure applications and networks. Your responsibilities will include policy enforcement, risk management and cyber risk assessments, ensuring alignment with internal information security policies, standards, and external regulatory requirements. This role requires a strong understanding of security best practices, knowledge in Cloud technologies, and hands-on experience with enterprise security tools and frameworks. You will collaborate with the Credit Agricole CIB security community across ASIA and with other global entities.

Main Responsibilities

1. Security Engineering

  • Ensure security requirements are incorporated early into the systems development lifecycle of the enterprise IT infrastructure, systems, and applications.
  • Ensure governance through regular review, reporting and monitoring to ensure compliance with Policies and Standards, and alignment with regulatory requirements.
  • Evaluate and recommend security tools, technologies, and frameworks to strengthen the security posture of the bank.
  • Collaborate with stakeholders including IT infrastructure, DevOps, and application teams to ensure security measures and best practices are integrated throughout the development lifecycle of financial applications and services.
  • Prepare RFQ and evaluation criteria, Proof of concept (POC) during product evaluation. Consulting with vendors to implement security solutions.
  • Stay updated on emerging security threats and proactively provide solutions to safeguard IT systems from evolving risks.

2. Governance and Risk Management

  • Conduct Cybersecurity Risk Assessments on IT systems and/or applications. (on-premises and cloud infrastructure).
  • Ensure security measures described in the risk analysis of IT projects are properly implemented.
  • Ensure that the audit on the Information systems has security measures in place that comply with the security policies and standards.
  • Identify gaps, deficiencies, or deviations on the implementation of the controls and analyse areas for improvement.
  • Collaborate with cross functional teams to provide evidence and insights during internal and external audits.

3. Identity and Access Management (IAM)

  • Ensure Identity Access Management (IAM) policies around access management such as Role-based access control (RBAC), password management, Privileged access management (PAM) comply with security policies and standards.

4. Data Protection

  • Ensure the implementation of data protection strategies are aligned with regulatory and operational requirements of the banking sector. This includes data classification, encryption, and key management (HSM, KMS).
  • Ensure the implementation of data loss prevention (DLP) solutions is adequate to mitigate the risk of unauthorized access, leakage, or alteration of critical data.
  • Ensure data access controls that are implemented follow security policies and standards, and regulatory requirements.

5. Collaboration and Support

  • Work closely with cross-functional teams such as IT infrastructure, DevOps and Risk management including technology and business stakeholders, to ensure that security requirements are incorporated into system designs and day-to-day operations.
  • Ensure security training and awareness is provided within the bank to foster a culture of vigilance and proactive security.
  • Pro-active self-starter demonstrates initiative and works independently with minimum supervision.
  • Able to work independently and in a collaborative environment.

Qualifications and Profile

Education

  • Bachelor's Degree in Computer Science, Information Technology or equivalent.
  • Minimum of 5-7+ years of experience in Information Security, Governance or Risk Management.
  • Professional Certifications: CISSP, CISM, CISA, Cloud or equivalent (preferred).
  • Experience in the financial services sector is highly desirable, with a strong understanding of the banking regulatory environment.

Requirements

  • Minimum of 5-7 years of experience in cybersecurity domain, with a focus on securing enterprise information systems, network security or cloud security.
  • Experience in the financial services sector is highly desirable, with a strong understanding of the banking regulatory environment.
  • Proficiency with security tools: IPS, VPN, Proxy, AV, EDR, vulnerability management.

Technical Skills

  • Hands-on experience such as network security, endpoint, EDR and data encryption.
  • Strong understanding of SIEM, network security, incident response, and threat detection and response.
  • Knowledge of software development lifecycle (SDLC), DevOps and integration with security assessment "Shift Left" is preferred.

Soft Skills

  • Analytical mindset with the ability to identify complex security challenges and devise effective solutions.
  • Effective communication skills, capable of engaging both technical and non-technical stakeholders in a clear and concise manner.
  • Meticulous, with a proactive approach to identifying and mitigating potential security risks.
  • Ability to work independently as well as part of a collaborative, cross-functional team.
Tell employers what skills you have

Information Security
Security Governance
Vulnerability Management
Security Training
Risk Management
Information Technology
IPS
Access Control
CISA
Evidence
Encryption
Loss Prevention
Network Security
VPN
CISSP

  • Associate Cybersecurity Specialist

    3 weeks ago

    Singapore RED ALPHA CYBERSECURITY PTE. LTD. Full time

    Roles & ResponsibilitiesLINK FOR FASTER APPLICATION: https://www.careers-page.com/redalpha/job/L5699YYRJoin our Alpha Specialist Training Programme (ASTP), a unique 6-month bootcamp designed to equip you with skills and hands-on experience to defend against real-world cyber threats and solve complex security challenges. After completing the program, you'll...

  • Associate Cybersecurity Specialist

    3 weeks ago

    Singapore RED ALPHA CYBERSECURITY PTE. LTD. Full time

    Roles & ResponsibilitiesLINK FOR FASTER APPLICATION: https://www.careers-page.com/redalpha/job/L5699YYRJoin our Alpha Specialist Training Programme (ASTP), a unique 6-month bootcamp designed to equip you with skills and hands-on experience to defend against real-world cyber threats and solve complex security challenges. After completing the program, you’ll...

  • Cybersecurity Consultant

    2 weeks ago

    Singapore ENSIGN INFOSECURITY (CYBERSECURITY) PTE. LTD. Full time

    Roles & ResponsibilitiesDuties and Responsibilities:This individual will play a crucial role in developing and managing information cybersecurity for our clients. As a Cybersecurity Consultant, you will be responsible for developing, evaluating, and reviewing information security policies in accordance with relevant standards and frameworks such as ISO27001,...

  • Cybersecurity Engineer

    4 weeks ago

    Singapore ST ENGINEERING INFO-SECURITY PTE. LTD. Full time

    Roles & ResponsibilitiesST Engineering is a global technology, defence and engineering group with offices across Asia, Europe, the Middle East and the U.S., serving customers in more than 100 countries. The Group uses technology and innovation to solve real-world problems and improve lives. Our dedication to excellence and our strong track record have earned...

  • Cybersecurity Engineer

    2 weeks ago

    Singapore ST Engineering Full time

    Responsibilities:Assist in the design, implementation, and monitoring of security systems and controls across the organization.Perform vulnerability assessments and risk analysis to identify potential weaknesses in the organization's IT environment.Monitor security logs, alerts, and reports to detect suspicious activities and incidents.Help troubleshoot and...

  • OT Cybersecurity Engineer

    2 weeks ago

    Singapore LICO RESOURCES PTE. LTD. Full time

    Roles & ResponsibilitiesLico Resources, a specialist in Cybersecurity & Tech GRC recruitment, is collaborating with a prominent global organization known for its leadership in energy solutions and digital transformation. We are looking for an experienced OT Cyber Security Engineer to join their innovative team in Singapore. This role involves supporting...

  • Technical Director, Cybersecurity Products

    2 weeks ago

    Singapore ST Engineering Full time

    ST Engineering is a global technology, defence and engineering group with offices across Asia, Europe, the Middle East and the U.S., serving customers in more than 100 countries. The Group uses technology and innovation to solve real-world problems and improve lives through its diverse portfolio of businesses across the aerospace, smart city, defence and...

  • Senior Cybersecurity Specialist

    3 weeks ago

    Singapore TALENTSIS PTE. LTD. Full time

    Roles & ResponsibilitiesWe are seeking an experienced Senior Cybersecurity Specialist to lead and strengthen our client's organization's cybersecurity governance, design and architecture. This is a direct permanent position with our client.Responsibilities:Develop, implement, and maintain cybersecurity governance frameworks, policies, and procedures. ...

  • Cybersecurity Specialist

    3 weeks ago

    Singapore TALENTSIS PTE. LTD. Full time

    Roles & ResponsibilitiesCompany's ProfileAs an international technology and engineering company, they specialise in providing innovative digital and security solutions to their esteemed clients. They are well-known for their dedication of quality delivery standards with thousands of engineers globally supporting projects. They have an international presence...

  • Cybersecurity Engineer/Lead

    2 weeks ago

    Singapore DCI CONSULTANTS PRIVATE LIMITED Full time

    Roles & ResponsibilitiesResponsibilitiesThe Cybersecurity Engineer role is to design and implement network management, network design and cybersecurity solution to a simulator system. You are responsible to communicate closely with project team and vendors to support business units to deliver simulator system. You will participate and contribute in the...

  • Cybersecurity Engineer

    2 weeks ago

    Singapore SKY & F PTE. LTD. Full time

    Roles & Responsibilities1. The candidate(s) should possess a Degree in Computer Science, Engineering or Equivalent.2. At least 1-3 years of working experience in cybersecurity domain and IT technology.3. At least 1 year of working experience in project co-ordination.4. Required to have at least one relevant Cybersecurity Certifications such as CCNP, CISA,...

  • Cybersecurity Specialist

    3 weeks ago

    Singapore SEDHA CONSULTING PTE. LTD. Full time

    Roles & ResponsibilitiesJob Summary:We are seeking a skilled Cybersecurity Specialist with expertise in internet and email security, and secure communication protocols. The ideal candidate will have a strong background in IPv4, IPv6, HTTPS, cryptography protocols, SSL/TLS, StartTLS, DNSSEC, SPF, DMARC, DANE, and DKIM. This role involves providing technical...

  • Technical Director, Cybersecurity Products

    3 weeks ago

    Singapore ST ENGINEERING INFO-SECURITY PTE. LTD. Full time

    Roles & ResponsibilitiesST Engineering is a global technology, defence and engineering group with offices across Asia, Europe, the Middle East and the U.S., serving customers in more than 100 countries. The Group uses technology and innovation to solve real-world problems and improve lives through its diverse portfolio of businesses across the aerospace,...

  • Cybersecurity Specialist

    3 weeks ago

    Singapore SEDHA CONSULTING PTE. LTD. Full time

    Roles & ResponsibilitiesJob Summary:We are seeking a skilled Cybersecurity Specialist with expertise in internet and email security, and secure communication protocols. The ideal candidate will have a strong background in IPv4, IPv6, HTTPS, cryptography protocols, SSL/TLS, StartTLS, DNSSEC, SPF, DMARC, DANE, and DKIM. This role involves providing technical...

  • Cybersecurity Specialist

    3 weeks ago

    Singapore EVOLUTION RECRUITMENT SOLUTIONS PTE. LTD. Full time

    Roles & ResponsibilitiesJob Responsibilities Conduct comprehensive assessments of internal IT systems to identify vulnerabilities and potential security risks. Establish and manage security monitoring tools such as EDR, NDR, Microsoft Sentinel etc. to detect and analyse security risks and threats. Lead investigation of security incidents by analysing...

  • Cybersecurity Specialist

    3 weeks ago

    Singapore EVOLUTION RECRUITMENT SOLUTIONS PTE. LTD. Full time

    Roles & ResponsibilitiesJob ResponsibilitiesConduct comprehensive assessments of internal IT systems to identify vulnerabilities and potential security risks. Establish and manage security monitoring tools such as EDR, NDR, Microsoft Sentinel etc. to detect and analyse security risks and threats. Lead investigation of security incidents by analysing logs,...

  • Technical Director, Cybersecurity Products

    3 weeks ago

    Singapore St Engineering Info-security Pte. Ltd. Full time

    ST Engineering is a global technology, defence andengineering group with offices across Asia, Europe, the Middle Eastand the U.S., serving customers in more than 100 countries. TheGroup uses technology and innovation to solve real-world problemsand improve lives through its diverse portfolio of businessesacross the aerospace, smart city, defence and public...

  • Cloud and Cybersecurity Specialist

    5 days ago

    Singapore Align Recruitment Pte Ltd Full time

    We are looking for a highly skilled Cloud and Cybersecurity Specialist to join our team at Align Recruitment Pte Ltd. As an IT Infrastructure Manager, you will be responsible for leading a team of IT professionals and overseeing the implementation of comprehensive infrastructure solutions.Key ResponsibilitiesThe successful candidate will have the following...

  • Marine Cybersecurity Specialist

    3 weeks ago

    Singapore IO3 PTE. LTD. Full time

    Roles & ResponsibilitiesJobscope1. Manage cybersecurity project.2. Identify and assess cybersecurity risks for ships, ports, and other maritime assets.3. Conducting cybersecurity assessments on maritime systems, including shipboard IT and OT systems and shore-based infrastructure.4. Implement and maintain security measures for navigation, communication, and...

  • Marine Cybersecurity Specialist

    3 weeks ago

    Singapore IO3 PTE. LTD. Full time

    Roles & ResponsibilitiesJobscope1. Manage cybersecurity project.2. Identify and assess cybersecurity risks for ships, ports, and other maritime assets.3. Conducting cybersecurity assessments on maritime systems, including shipboard IT and OT systems and shore-based infrastructure.4. Implement and maintain security measures for navigation, communication, and...