Lead Red Team Engineer (product And Vulnerability Research)

Singapore, Singapore

Job Description


What the role is:The Government Technology Agency (GovTech) is the lead agency driving Singapore\'s Smart Nation initiatives and public sector digital transformation. As the Centre of Excellence for Infocomm Technology and Smart Systems (ICT & SS), GovTech develops the Singapore Government\'s capabilities in Data Science & Artificial Intelligence, Application Development, Smart City Technology, Digital Infrastructure, and Cybersecurity.At GovTech, we offer you a purposeful career to make lives better. We empower our people to master their craft through continuous and robust learning and development opportunities all year round. Our GovTechies embody our Agile, Bold and Collaborative values to deliver impactful solutions.GovTech aims to transform the delivery of Government digital services by taking an "outside-in" view, putting citizens and businesses at the heart of everything we do.Play a part in Singapore\'s vision to build a Smart Nation and embark on your meaningful journey to build tech for public good. Join us to advance our mission and shape your future with us today!Learn more about GovTech at tech.gov.sgDo you want to play a critical role in securing our smart nation initiatives by uncovering weaknesses in various domains of cybersecurity programs even before the real threat actors come to play? And are you up to race against the real threat actors before organisations are compromised?We are seeking a Lead Cybersecurity Engineer to join our Cyber Security Group\'s Advanced Cyber Attack Simulation Team. You will be part of the team that helps to protect our government\'s assets from cyber-attacks by assessing cybersecurity aspects of new developments in our smart nation initiatives, and demonstrate ability to quickly assimilate to knowledge in new technologies.As part of this team, you will lead the team to conduct more thorough security assessments that span across cloud, infrastructure, system, web and mobile applications, etc. and discover deeper rooted vulnerabilities.What you will be working on:

  • Build up capabilities in vulnerability research, and competencies in OS internals - This includes areas such as reverse engineering of binaries, exploitation of vulnerabilities, and familiarity with various Operating System kernel exploit and exploit mitigation techniques
  • Conduct security assessments, including but not limited to Penetration Testing (PT), Vulnerability Assessment (VA) and Source code review on products, services and IT assets
  • Propose and develop customised tools or extensions to enhance testing
  • Perform research, literature review and evaluation of emerging offensive and defensive technologies, techniques and practices
  • Analyse, document and present findings
  • Support stakeholders such as security engineers and developers by providing guidance to remediate security risks identified from security assessments
What we are looking for:
  • Degree in Information Security, Computer Science/Engineering, IT, or equivalent
  • Penetration testing-specific certifications such as GPEN, CRT, OSCP, OSWE
  • Experience with (a) disassembly and analysis of x86 and x64 binaries, (b) network packet capture and analysis
  • Appreciation or experience with (a) major cloud service providers offerings, (b) application/operating system/infrastructure architecture, (c) DevSecOps or software development lifecycle
  • Familiarity with security principles, policies and industry best practices
  • Strong passion in cybersecurity
  • Good communication & presentation skills
  • Collaborative and inquisitive team player who is self-motivated, creative and versatile
Added advantage if you possess the following:
  • Advanced penetration testing specific certifications, with a focus on reverse engineering and binary exploitation, such as GXPN, OSED, OSCE, is an advantage
  • Understanding of Windows system programming, kernel debugging and/or driver development
  • Public disclosure of vulnerabilities or relevant awards/participations from Capture-The-Flags (CTF) competitions
GovTech is an equal opportunity employer committed to fostering an inclusive workplace that values diverse voices and perspectives, as we believe that diversity is the foundation to innovation.Our employee benefits are based on a total rewards approach, offering a holistic and market-competitive suite of perks. These include leave benefits to meet your work-life needs and employee wellness programmes.We champion flexible work arrangements (subject to your job role) and trust that you will manage your own time to deliver your best, wherever you are, and whatever works best for you.Learn more about life inside GovTech at go.gov.sg/GovTechCareers.Stay connected with us on social media at go.gov.sg/ConnectWithGovTechAbout Government Technology Agency:The Government Technology Agency (GovTech) is the lead agency driving Singapore\'s Smart Nation initiatives and public sector digital transformation. As the Centre of Excellence for Infocomm Technology and Smart Systems (ICT & SS), GovTech develops the Singapore Government\'s capabilities in Data Science & Artificial Intelligence, Application Development, Smart City Technology, Digital Infrastructure, and Cybersecurity. At GovTech, we offer you a purposeful career to make lives better. We empower our people to master their craft through continuous and robust learning and development opportunities all year round. Our GovTechies embody our Agile, Bold and Collaborative values to deliver impactful solutions. GovTech aims to transform the delivery of Government digital services by taking an "outside-in" view, putting citizens and businesses at the heart of everything we do. Play a part in Singapore\'s vision to build a Smart Nation and embark on your meaningful journey to build tech for public good. Join us to advance our mission and shape your future with us today! Learn more about GovTech at tech.gov.sg.

Government Technology Agency

Beware of fraud agents! do not pay money to get a job

MNCJobz.com will not be responsible for any payment made to a third-party. All Terms of Use are applicable.


Job Detail

  • Job Id
    JD1442654
  • Industry
    Not mentioned
  • Total Positions
    1
  • Job Type:
    Full Time
  • Salary:
    Not mentioned
  • Employment Status
    Permanent
  • Job Location
    Singapore, Singapore
  • Education
    Not mentioned