Cybersecurity Engineer

We are seeking an experienced cybersecurity engineer with proven hands-on penetration testing experience (e.g., OSCP-certified) and strong knowledge of cybersecurity products and solutions. The Cybersecurity Engineer will contribute to vulnerability assessments and penetration testing, while also supporting broader cybersecurity operations, product deployments, and project delivery. The role requires both technical competence and professional maturity, as you will engage directly with customers and stakeholders. The role offers a competitive monthly base salary ranging from SGD 5,000 to 7,000, complemented by annual performance-based bonuses that reward excellence and results. Responsibilities Vulnerability Assessment & Penetration Testing Conduct VAPT on web applications, networks, and systems to identify and validate security risks. Use industry-standard tools (e.g., Burp Suite, Nmap, Nessus, Metasploit, Wireshark) to assess and exploit vulnerabilities. Perform source code reviews and mobile application penetration testing to identify security flaws in applications beyond infrastructure testing. Document findings, prepare detailed reports, and recommend remediation measures. Support internal R&D to improve testing methodologies and keep updated on emerging threats and attack techniques. Cybersecurity Operations & Product Support Operate and support security tools and solutions (e.g., Trend Micro XDR, Palo Alto, Checkpoint, FortiGate, RSA, BeyondTrust). Collaborate with MSSPs and internal teams to monitor, investigate, and respond to incidents. Participate in patching, upgrades, and preventive maintenance for security infrastructure. Project Delivery & Customer Engagement Support security-related project implementation and operationalization of products/solutions. Manage or assist in project tasks such as scheduling, tracking deliverables, and liaising with vendors/customers. Act as a technical point of contact during client engagements, demonstrating professionalism and clear communication. Provide timely updates, service reports, and ensure SLA compliance. Recommend enhancements to improve security operations, efficiency, and resilience. Stay current with cybersecurity trends, new attack vectors, and toolsets. Perform other duties as assigned by the Manager to support team and organizational goals. Requirements Diploma or Bachelor’s degree in Computer Science, Information Security, or related discipline. Possesses OSCP, CREST (CPSA, CRT) certifications. A minimum of 2–5 years of experience in cybersecurity, including hands-on VAPT. Strong understanding of network protocols, web application architectures, and common vulnerabilities (e.g., OWASP Top 10). Proficiency with penetration testing tools (Burp Suite, Nmap, Nessus, Metasploit, Wireshark). Knowledge and experience with endpoint, network, and various security products (e.g., Palo Alto, FortiGate, Microsoft Defender, Darktrace). Familiarity with vulnerability management, incident response, and security monitoring processes. Strong analytical, problem-solving, and reporting skills. Effective communication skills with the ability to engage directly with customers and cross-functional teams. Professional maturity, integrity, and ability to handle customer-facing situations confidently. Ability to manage tasks independently, while also collaborating effectively in a team. Adaptable and able to work under pressure with tight SLAs. Possession of additional certifications such as CISSP, OSCE 3, Security+, cloud security (AWS/Azure/GCP) are advantageous. Scripting or automation skills in Python, Bash, or PowerShell are advantageous. Why you should apply Competitive remuneration and benefits. Flat hierarchy with minimal bureaucracy. Learning opportunities through courses, seminars, and conferences. Be at the forefront of innovation and gain access to cutting-edge technologies. Contribute to enhancing Singapore’s position as a thriving Innovation Hub. #J-18808-Ljbffr