Job Summary
The Security Operations Engineer is responsible for managing and maintaining the Authority's cybersecurity infrastructure, including endpoint protection, privileged access management, vulnerability assessment systems, and security monitoring tools.
This role ensures the security posture of critical systems through proactive monitoring, incident response, system maintenance, and implementation of security enhancements across the organisation's technology stack.
Key Responsibilities
Manage and maintain primary security systems including Rufus AV API, Ivanti endpoint management, Trend Micro Deep Security Manager, Trend Micro Apex One, GCC Trend Micro platforms, and Trellix Endpoint DLP solutions
Provide secondary support for RSA two-factor authentication, CyberArk Enterprise/MEPS+/SWIFT environments, and Tenable vulnerability management systems
Execute security infrastructure projects including CIS hardening implementations, system migrations, and platform consolidations
Monitor and respond to security vulnerabilities and zero-day threats, implementing appropriate mitigation measures and patches
Support system upgrades and migrations across multiple platforms whilst ensuring minimal disruption to business operations
Deploy and configure security monitoring tools including File Integrity Monitoring (FIM) and Smart Protection Servers
Collaborate with cross-functional teams including EDP/USC for endpoint security tool deployments and updates
Maintain security compliance through regular system hardening, configuration management, and policy enforcement
Participate in disaster recovery planning and contribute to architectural planning for managed security tools in cloud environments
Provide technical documentation, standard operating procedures, and knowledge transfer to support team operations
Respond to security incidents and provide after-hours support as required for critical security systems.
What we are looking for
Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field
Minimum 3-5 years of hands-on experience in cybersecurity operations and security tool management
Proven experience with endpoint security platforms (Trend Micro, antivirus solutions)
Experience with privileged access management systems (CyberArk preferred)
Knowledge of vulnerability management tools and processes (Tenable, Nessus)
Understanding of enterprise security frameworks and compliance requirements
Experience with system administration on Windows and Linux platforms
Familiarity with security incident response procedures and methodologies
Strong analytical and problem-solving skills with attention to detail
Ability to work independently and manage multiple concurrent projects
Excellent communication skills for stakeholder engagement and technical documentation.
Preferred Qualifications
Master's degree in Cybersecurity or related advanced qualification
Professional certifications such as CyberArk Defender/Sentry, CISSP, GCIH, or equivalent security certifications
Experience with automation tools and scripting (Ansible, Python, PowerShell)
Knowledge of cloud security platforms and hybrid infrastructure environments
Familiarity with SIEM tools and security monitoring platforms
Experience with Singapore Government security standards and compliance frameworks (IM8, CSA guidelines)
Understanding of financial sector security requirements and regulations
Project management experience and ability to lead technical initiatives
What will you be working on
Security Infrastructure Modernisation: Supporting ongoing platform migrations, system upgrades, and integration projects to maintain current security technology stack
GCC Security Tool Migration: Contributing to the architectural planning and implementation of managed security tools in the Government Data Centre environment
Endpoint Security Enhancement: Implementing advanced security measures including reference server setups, subnet blocking, and unauthorised access prevention
Security Monitoring Expansion: Deploying File Integrity Monitoring solutions and enhancing visibility through integration with monitoring platforms like Techlens
#J-18808-Ljbffr