Security Implementation Engineer

WHO WE ARE:

Build. Scale. Sustain.

PALO IT is a global technology consultancy that crafts tech as a force for good. We design, develop and scale digital and sustainable products and services to unlock value across the triple bottom line: people, planet, profit. We do the right thing, and we do it right. We're proud to be a World Economic Forum New Champion, and a B Corp-certified company.

• We are small enough to care locally, big enough to deliver globally (5 continents, 18 offices, +650 experts from +50 nationalities)
• We are robust and resilient (100% independent and 0 debt)
• We are entrepreneurs and passionate experts: We invest in what we believe genuinely and work as a collective intelligence
• We are positive, courageous, caring, doers and committed to excellence

YOUR ROLE:

The Security Implementation Engineer will work on implementing, analyse and assess the security strategy of technology platform and at enterprise level.

YOUR RESPONSIBILITIES:

• Implement security controls in cloud infrastructure (AWS, Azure, GCP), including services like AWS Inspector, GuardDuty, Security Hub, VPC, Security groups, WAF, AWS Config, Trusted Advisor.
• Manage the security aspects of DevOps/DevSecOps including Infrastructure as Code (IaC) deployment.
• Conduct vulnerability scanning (containers and infrastructure), threat modeling, and penetration testing.
• Drive secure software development practices across SDLC.
• Conduct secure design/code reviews, manage SAST/DAST/SCA.
• Implement application security practices including secure code repositories, SAST, DAST, SCA tools, OWASP Top 10, and SANS 25 guidelines.
• Manage identity and access management (IAM), privileged access management (PAM), and encryption mechanisms.
• Operate and manage incident response processes, change management, business continuity planning (BCP).
• Manage endpoint and on-premises security solutions.
• Remaining up to date with the latest security systems, tools, trends, and technology.

WHO YOU ARE:

• 5+ years of practical hands-on experience in security engineering, cloud security implementation, and DevSecOps.
• Proven experience in designing and deploying technical security solutions and controls in startup or dynamic environments.
• In-depth technical understanding of cloud services (compute, containers, storage, network, monitoring).
• Expertise with cloud security solutions and operational management (AWS, Azure, GCP).
• Proficiency in vulnerability management tools, container registry scanning, and infrastructure scanning technologies.
• Skilled in threat modeling and penetration testing (application and infrastructure).
• Deep understanding of data governance practices, data lifecycle management, and data loss prevention (DLP).
• Familiarity with scaling and capacity management techniques (auto-scaling).
• Certifications recommended: CCSK, CCSP, AWS Security Specialty
• You are passionate about technology and continuous learning comes naturally to you.
• You have excellent interpersonal, oral/written communication and cross-group collaboration skills.
• You are an independent thinker with a strong work ethic but also willing and able to conform to established architectural constraints.

We will be prioritizing applicants who have a current right to work in Singapore, and do not require sponsorship of a visa.

MORE ABOUT PALO IT:

We're eager to adapt to change, learn from our experiences and move to meet our planet's urgent needs. We are continuously taking action to:

• Become a climate net-zero company
• Attain 50% of revenue from projects with a positive impact
• Train 100% of our workforce on impact
• Achieve B Corp certification among all our offices across the globe
• Continuously measure & improve employee happiness

Our clients are amongst the world's most successful companies. We innovate with both established Fortune 1000s, SMEs and start-ups who aim to make an impact, become global leaders and address the world's most complex challenges.

What We Offer

• Stimulating working environments
• Unique career path
• International mobility
• Internal R&D projects
• Knowledge sharing
• Personalized training

For more on our team culture and benefits, check out our careers page.

PALO IT Singapore is an equal opportunity employer. Employment decisions will be based on merit, qualifications and abilities. Palo IT SG does not discriminate in employment opportunities or practices on the basis of race, colour, religion, sex, sexuality, national origin, age, disability, marital status or any other characteristics protected by law.

Protecting your privacy and the security of your data are longstanding top priorities for Palo-IT.

Your personal data will be processed for the purposes of managing Palo-IT's recruitment related activities, which include setting up and conducting interviews and tests for applicants, evaluating and assessing the results, and as is otherwise needed in the recruitment and hiring processes.

Please consult our Privacy Notice to know more about how we collect, use, and transfer the personal data of our candidates. Here you can find how you can request for access, correction and/or withdrawal of your Personal Data.