Job Description

Who are we?We are ADDX, the entry point into private markets, and we aim to democratize private market investments. As a team, we strive to build a future where everybody can access financial ecosystems easily, fairly, and safely. Our team\'s belief is real economies benefit when capital flows freely and efficiently, especially in the private market space.Why join us?\xc2\xb7 We have built the world\'s first fully regulated platform for digital securities, licensed by the Monetary Authority of Singapore (MAS).\xc2\xb7 ADDX is a global private market exchange headquartered in Singapore. To date, ADDX has listed more than 60 deals on its platform and worked with blue-chip names such as Hamilton Lane, Partners Group, Investcorp, Singtel, UOB, CGS-CIMB, as well as Temasek-owned entities Mapletree, Azalea, SeaTown and Fullerton Fund Management.. The full-service capital market platform has raised a total of US$140 million in funding since its inception in 2017.\xc2\xb7 We are backed by companies such as Singapore Exchange (SGX), the Stock Exchange of Thailand (SET), Temasek subsidiary Heliconia Capital, Japan Investments Corporation, the Development Bank of Japan (DBJ), UOB, KB Securities, Tokai Tokyo Financial Holdings and Hamilton Lane.We are growing, and we are looking for talented individuals to join our team and take us forward as the leader of the private market. If you believe in a future of fair financial markets, just like we do, we\'ve been waiting for you at ADDX.Job SummaryThe ideal candidate will be responsible for the implementation and maintenance of company\'s systems from security perspective to detect and protect from potential cyber threats. This is a great opportunity for someone passionate about preventing data breaches, malware infections, and other cybersecurity incidents to make a significant impact.Responsibilities\xc2\xb7 Conduct vulnerability assessments and penetration testing (VAPT) to identify and remediate security weaknesses in the systems and applications.\xc2\xb7 Primary contact for security alert monitoring and analyse network traffic for suspicious activity, including potential intrusions and unauthorized access attempts.\xc2\xb7 Design, implement and maintain security controls for AWS cloud environment, including IAM, S3, EC2 and other relevant services.\xc2\xb7 Collaborate with the Enterprise IT team to ensure secure configurations for containerized applications and serverless functions on AWS.\xc2\xb7 Automate security tasks and leverage AWS security best practices (AWS Well-Architected Framework) based on Security by Design approach.\xc2\xb7 Implement and maintain endpoint security solutions, including Antivirus/ Malware Protection, Vulnerability Management, Endpoint Detection and Response (EDR), and Data Loss Prevention (DLP).\xc2\xb7 Develop, maintain, and implement security policies and procedures to ensure compliance with industry regulations and best practices.\xc2\xb7 Investigate and respond to security incidents, including data breaches and malware infections.\xc2\xb7 Work collaboratively with IT and development teams to integrate and maintain security considerations into the software development lifecycle (SDLC) in AWS cloud environment.\xc2\xb7 Provide security awareness training to employees to promote safe computing practices.\xc2\xb7 Stay informed about critical security threats and implement mitigation strategies for container escapes and serverless injection vulnerabilities.\xc2\xb7 Stay up to date on the latest cyber threats and vulnerabilities relevant to the company\'s technology environment.Qualifications\xc2\xb7 Bachelor\'s degree in Computer Science, Information Security, or a related field (preferred).\xc2\xb7 Minimum of 5 years of experience in cyber security, with a focus on operations (network security, vulnerability management, etc.), governance & compliance.\xc2\xb7 Professional security certification (CISSP, CEH, CRISC, etc.) is strongly recommended.\xc2\xb7 Strong understanding of cloud security principles, threats, and vulnerabilities specific to AWS environments.\xc2\xb7 Experience with regulatory and data protection laws within Singapore.\xc2\xb7 Strong leadership skills with experience with cross-functional global teams and working with senior stakeholders.\xc2\xb7 Experience with security tools and technologies relevant to AWS, including implementing IAM roles, S3 bucket policies, and AWS security groups.\xc2\xb7 Experience with cloud-native security tools like SAST and DAST.\xc2\xb7 Experience with container technologies (Docker, Kubernetes) and serverless frameworks (AWS Lambda).\xc2\xb7 Excellent analytical and problem-solving skills.\xc2\xb7 Strong communication and interpersonal skills.\xc2\xb7 Ability to work independently and as part of a team.Due to our limited capacity, we regret that only shortlisted candidates will be notified.

ADDX