Job Description

About the company

TMGM Singapore is a dynamic and rapidly growing startup within the global financial services industry. As part of a global company, TMGM Singapore offers a fast-paced, innovative environment with opportunities for growth and development.

About the role

We're seeking a talented

Security Engineer

to join our team and play a vital role in protecting our systems, infrastructure, and data. In this role, you'll be at the forefront of monitoring, investigating, and responding to threats, while also driving initiatives that strengthen our security posture. If you're passionate about security, love problem-solving, and thrive in fast-paced environments, we'd love to hear from you.

Key Responsibilities

Security Operations & Monitoring

Monitor security alerts, logs, and incidents via SIEM tools and EDR platforms. Investigate security events and lead incident response activities. Maintain threat detection and prevention systems, including IDS/IPS, firewalls, and Zero Trust solutions.

Identity & Access Management (IAM)

Implement and maintain RBAC, MFA, and least privilege access policies. Support integration of applications with SSO and SCIM where applicable.

Vulnerability & Risk Management

Conduct regular vulnerability assessments and penetration testing. Remediate identified risks in collaboration with IT and development teams. Ensure compliance with frameworks such as SOC 2, ISO 27001, and GDPR.

Cloud & Network Security

Apply security best practices across AWS, Azure, and other cloud platforms. Assist in the secure configuration of office network infrastructure, VPN, and Zero Trust access.

Policy & Governance Support

Contribute to security policies, standards, and technical guidelines. Participate in security awareness training and phishing simulation programmes.

Collaboration & Projects

Work alongside IT Operations to deploy and maintain security tools. Provide security expertise in projects, change management, and system upgrades.

Requirements

Minimum 3-5 years in security engineering or a related role, with proven success in incident response and security operations. Familiarity with ISO 27001, SOC 2, NIST, and GDPR. Proficiency with SIEM tools (Splunk, Microsoft Sentinel, ELK) and EDR platforms. Strong understanding of IAM, network security, and endpoint protection. Hands-on experience with AWS, Azure, or GCP. Knowledge of vulnerability scanning, remediation tools, and penetration testing practices. Strong problem-solving and analytical skills, with the ability to perform under pressure during incidents. Clear communication and stakeholder engagement abilities.

Benefits

Competitive salary and performance-based bonuses. Opportunities for career growth and development within a global company. Collaborative and inclusive work environment with exposure to cross-region operations. * Health and wellness benefits.