IT Security Engineer

We are seeking for skilled IT Security engineer - Cybersecurity with 2 -4 years of experience or fresh graduates encouraged to apply
- Senior Cybersecurity Engineer (min with 4-year experience)
- Cybersecurity Engineer (min with 2-year experience)

**Job Requirements**:
**Operating Hours**:
Mon - Thu: 8.30am - 6pm

Fri: 8.30am - 5.30pm

Note: Engineer is expected to standby to work after office hours, weekends, and public holiday.

**Scope of Work**:
**For Security & Vulnerabilities Assessment and Remediations Management**
- Engineer shall perform vulnerabilities assessment based on the vulnerabilities identified by Customer Cyber Security team and any other security vendors.
- Engineer shall work closely with Customer Cyber Security team and/or any other security vendors to provide the remediation and/or workaround solution to close

the vulnerabilities. Engineer shall test the remediation and/or workaround solution in the development environment first before deploying the remediation

to production.
- Engineer shall prioritise and resolve all the vulnerabilities according to customer remediation timeline.
- Engineer shall perform the necessary coordination with various parties for impact analysis, schedule for downtime, patching and any other related.
- Engineer is required to provide the necessary documentation on vulnerabilities remediation before implementation on production.
- Engineer is required to provide the necessary fall-back plan if the implementation fail on production.
- Engineer is required to raise the necessary ticket for implementation and schedule for downtime.
- Engineer is required to provide the necessary monthly report on vulnerabilities assessment, remediation schedule, status etc.
- The software products within the scope are as follows:
i. Solaris OS

ii. Linux OS (Oracle Linux, RedHat Linux, other Linux variations)

iii. Windows OS

iv. Hypervisor such as Nutanix, VMware Esxi, Vxrail, Microsoft Hyper-V and Azure, Oracle VM for x86 and Sparc

v. Web Server (Apache and IIS)

vi. OpenSSL

**ICT Infrastructure Project Delivery and System Administration**
- Engineer shall ensure smooth rollout of customers projects.
- Engineer to provide technical support for the project coordination, implementation, and rollout work of all customer projects.
- Engineer to provide IT consultancy services which includes but not limited to providing technical advice for the infrastructure services required for the setup, configuration, and commissioning of the customer projects.
- Engineer shall ensure all systems are well maintained.
- Engineer is expected to function as part of customer team in providing 24x7 operation support for system implementations arising from system changes, patches and security vulnerabilities fixes.
- To ensure the reliability and good working condition of the systems, the Engineer is expected and not limited to perform the following maintenance tasks.
- Periodic OS/firmware evaluation and recommendation exercises to recommend standard versions of OS/firmware for various intranet hardware platforms; quarterly for extranet and internet hardware platforms. The exercises shall cover security aspects, availability aspects, as well as pitfalls on operational aspects.
- Prepare, coordinate and execute the OS/firmware patching/upgrading of computer devices in accordance to the schedule and frequency stipulated by customer.
- Perform basic housekeeping tasks such as server configuration, backup, daily syslog/alert monitoring, health check, ORCA trend charts monitoring, etc.
- Monitor server performance via customer’s existing monitoring tools or scripts.
- follows:

- Network performance indicators - network load, utilization etc.
- Hardware resource performance indicators - CPU, memory, etc.
- Continual assessment on overall performance & network health collectively to identify potential bottlenecks by looking at resource and traffic profiles.
- Performance indicators shall be reflected in a section within the monthly reports for ease of reference and discussions.
- Reviews of server setup to support Capacity Planning purposes shall be carried out every 6 months.
- Condition of current server performance
- Proposal to enhance or tune the server for better performance
- Updates of firmware and hardware releases that may affect the eventual performance and upgrade path of the components - such information as imminent obsolescence, End-of-Sales and End-of-Support status must be communicated to customer.

Requirement:

- Degree/Diploma in Information Technology/Computer Science or equivalent
- Working experience in Network Security
- Degree in Computer Science, Cyber Security or related field.
- Knowledge of Networking, firewall and other security technology.

**Job Types**: Full-time, Contract
Contract length: 12 months

Schedule:

- Holidays
- Monday to Friday
- Weekend availability

**Experience**:

- Cybersecurity: 2 years (preferred)

Work Location: In person