This role is for a technical support position and will be responsible to oversees Middleware Vulnerability & compliance Management.
Role includes to plan and rectify middleware products security vulnerabilities and compliance deviation.
Role also involves helping to ensure the quality of Core Middleware services remains consistently high and Create Middleware management reporting and dashboard and adhere to all IT security policies to maintain system integrity and quality.
The candidate must have excellent technical knowledge matched by a “can do” hands‐on attitude to develop automatic process to generate reports and dashboard and always work to minimize operational risk.
Also capable of develop scripts to manage repetitive or mass deployment tasks.
The successful candidate will be a member of a dynamic IT team and may work with other IT teams in Asia, Europe and Americas, so must possess strong organization skills, have good time management skills too
Key Responsibilities
Technical Management
Responsible for the overall Middleware Vulnerability Management of Core Middleware systems in APAC (infrastructure in Singapore, Hong Kong, Japan and China) and regional oversight of the rest of APAC countries.
Must have a mindset to provide continuous team and service improvements, be risk adverse in change management, focus on mitigating middleware vulnerabilities and be eager to improve the monitoring, efficiency, reliability, capacity and quality of all IT services.
Strive to ensure 100% uptime for all Core Middleware systems infrastructure in APAC, taking into account business requirements.
Able to plan, test and execute Production changes successfully following a robust Change Management process.
Responsible for updating all live production documentation under their scope.
Has direct hands on experience managing to reduce hardware and software obsolescence across IT.
Business relationships
Work closely with all major stakeholders of the Core Middleware Systems, and any team(s) with direct influence and dependencies.
Must build a strong relationship with our internal customers in APAC.
Governance
Follow all CIB and Security policies
Contribute to management reports and dashboards
Report all variances from Norms and Standards
Ensure and practice all production Disaster Recovery and BCP processes are in place
Requirement
Competencies (Technical / Behavioral)
Essential Technical Knowledge/Skills
At least 10 - 15 years of technical experience in following middleware technologies listed below:
Open-source Apache Server (2.4.x)
Open-source Tomcat application Server (9.x, 10.x, 11.x)
Microsoft IIS server (IIS 10.x)
REDHAT Jboss EWS (Apache / Tomcat 5.x, 6.x)
REDHAT EAP application server (EAP 7.x)
Wildfly application server (35.x, 36.x)
IBM WebSphere Application server BASE & ND (8.x, 9.x)
IBM WebSphere MQ server (8.x, 9.0, 9.1, 9.2)
Oracle WebLogic server (12.x, 14.x)
Analysis, remediation planning and execution for all overdue Vulnerabilities for IBM MQ, IBM WAS, Apache, Tomcat, Jboss EAP/EWS products.
Analysis, remediation planning and execution for all Critical Compliance deviations on Digital Platform assets, and ideally on High deviations for IBM MQ, IBM WAS, Apache, Tomcat, Jboss EAP/EWS.
Assess and implement Middleware technologies in line with compliance baseline and best practices, avoiding any disruptions to the business.
Understand the principles of vulnerability scoring, including CVE, to accurately assess and prioritize tasks according to potential impact.
Work with owners (system, network, application define realistic remediation timelines and verify patch applicability.
Draft remediation tickets, track progress in the ticketing system (e.g., ServiceNow) and close the loop with validation testing.
Ability to extract key details from large documents and take necessary action.
Should be good with Excel built-in automation features.
Re‐scan remediated assets to confirm vulnerability closure.
Generate weekly, monthly, and quarterly dashboards (KPI: Mean Time to Remediate, % of assets compliant, open critical findings) using Tableau, Power BI, or Excel macros.
Present status and trend analysis to senior leadership and cross‐functional committees (e.g., Security Steering, Streeco, IT Governance).
Develop Ansible playbooks (Linux & Windows) and scripts (PowerShell, Python, Bash) to automate patch deployment, configuration hardening, and reporting.
Enhancement of the current processes for remediation for all APAC assets where the remediation owner is Digital Platform (including assets provided to and supported for CIB, WM, Cardif entities), on the vulnerability management and compliance management remits.
Continuous improvement of the security watch process for the products under APAC Digital Platform management, to proactively plan for patching.
Experience in creating and producing Weekly/Monthly reports and Dashboard KPI.
Obtain skill for reporting: Tableau / Power query / Excel Micro programing / Power BI / SQL query / Python / API.
Optional skill set: Prometheus / Grafana / Kibana / ELK
Obtain skill for automation: Ansible scripting + Ansible tower
Middleware Skill: IBM MQ, IBM WAS, Apache, Tomcat, Jboss EAP/EWS
To apply security vulnerability fixes on timely manner as per business needs.
To apply security hardening policies for middleware products on timely manner as per business needs.
Must have excellent written and verbal communication skills.
Productive teamwork and strong analytical skills.
Demonstrate a systematic and logical approach to problem-solving.
Good presentation and documentation skills.
Have knowledge and experience using agile methodologies and/or has been part of DevOps teams.
Knows ITIL concepts and can apply them effectively.
Other Value-Added Competencies
A professional certification in any of the application server technology listed.
Analytical thinking and strong diagnostic information gathering
Initiative and multitasking
Detail‐oriented with solid time‐keeping and multitasking skills.
Familiarity with Agile/Scrum, DevOps pipelines, and ITIL.
Interested applicants, please email your resume to Karin Chan Wei Kien
Email:
CEI Reg No: R
Recruit Express Pte Ltd
UEN: W
EA Licence No: 99C4599
#J-18808-Ljbffr