The Government Technology Agency (GovTech) seeks to transform the delivery of Government Digital Services by taking an "outside-in" view, putting citizens and businesses at the heart of everything we do. We also develop the Smart Nation infrastructure and applications, and facilitate collaboration with the public to co-develop technologies.
Join us as we support Singapore\xe2\x80\x99s vision of building a Smart Nation - a nation of possibilities empowered through info-communications technology and related engineering.
Do you want to play a critical role in securing our smart nation initiatives by uncovering weaknesses in various domains of cybersecurity programs even before the real threat actors come to play? And are you up to race against the real threat actors before organisations are compromised?
We are seeking a cybersecurity specialist to join our Cyber Security Group\xe2\x80\x99s Research & Innovation Team. You will be part of the team that helps to protect our government\xe2\x80\x99s assets from cyber-attacks by assessing cybersecurity aspects of new developments in our smart nation initiatives, and demonstrate ability to quickly assimilate to knowledge in new technologies.
As part of this team, you will perform security assessments that span across cloud, infrastructure, system, web and mobile applications, etc.
What you will be working on:
Conduct security assessments, including but not limited to Penetration Testing (PT), Vulnerability Assessment (VA) and Source code review on products, services and IT assets
Propose and develop customised tools or extensions to enhance testing
Perform research, literature review and evaluation of emerging offensive and defensive technologies, techniques and practices
Analyse, document and present findings
Support the team\xe2\x80\x99s development of the Cybersecurity Product Roadmap
Support stakeholders such as security engineers and developers by providing guidance to remediate security risks identified from security assessments
What we are looking for:
Degree in Information Security, Computer Science/Engineering, IT, or equivalent
Experience with (a) disassembly and analysis of x86 and x64 binaries, (b) network packet capture and analysis
Appreciation or experience with (a) major cloud service providers offerings, (b) application/operating system/infrastructure architecture, (c) DevSecOps or software development lifecycle
Familiarity with security principles, policies and industry best practices
Strong passion in cybersecurity
Good communication & presentation skills
Collaborative and inquisitive team player who is self-motivated, creative and versatile
Added advantage if you possess the following:
Penetration testing-specific certifications such as GPEN, CREST, OSCP, OSWE is an advantage
Understanding of Windows system programming, kernel debugging and/or driver development
Public disclosure of vulnerabilities or relevant awards/participations from Capture-The-Flags (CTF) competitions
We are an equal opportunity employer and value diversity at our company as we believe that diversity is meaningful to innovation. Our employee benefits are based on a total rewards approach, offering a holistic and market-competitive suite of perks. This includes generous leave benefits to meet your work-life needs. We trust that you will get the job done wherever you are, and whatever works best for you \xe2\x80\x93 so work from home or take a break to exercise if you need to*. We also believe it\xe2\x80\x99s important for you to keep honing your craft in the constantly-evolving tech landscape, so we provide and support a plethora of in-house and external learning and development opportunities all year round.
*Subject to the nature of your job role that might require you to be onsite during fixed hours
MNCJobz.com will not be responsible for any payment made to a third-party. All Terms of Use are applicable.