Job Summary
The Security Operations Engineer is responsible for managing and maintaining the Authority's cybersecurity infrastructure, including endpoint protection, privileged access management, vulnerability assessment systems, and security monitoring tools.
This role ensures the security posture of critical systems through proactive monitoring, incident response, system maintenance, and implementation of security enhancements across the organisation's technology stack.
Key Responsibilities
- Manage and maintain primary security systems including Rufus AV API, Ivanti endpoint management, Trend Micro Deep Security Manager, Trend Micro Apex One, GCC Trend Micro platforms, and Trellix Endpoint DLP solutions
- Provide secondary support for RSA two-factor authentication, CyberArk Enterprise/MEPS+/SWIFT environments, and Tenable vulnerability management systems
- Execute security infrastructure projects including CIS hardening implementations, system migrations, and platform consolidations
- Monitor and respond to security vulnerabilities and zero-day threats, implementing appropriate mitigation measures and patches
- Support system upgrades and migrations across multiple platforms whilst ensuring minimal disruption to business operations
- Deploy and configure security monitoring tools including File Integrity Monitoring (FIM) and Smart Protection Servers
- Collaborate with cross-functional teams including EDP/USC for endpoint security tool deployments and updates
- Maintain security compliance through regular system hardening, configuration management, and policy enforcement
- Participate in disaster recovery planning and contribute to architectural planning for managed security tools in cloud environments
- Provide technical documentation, standard operating procedures, and knowledge transfer to support team operations
- Respond to security incidents and provide after-hours support as required for critical security systems
What we are looking for
Requirements:
- Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field
- Minimum 3-5 years of hands-on experience in cybersecurity operations and security tool management
- Proven experience with endpoint security platforms (Trend Micro, antivirus solutions)
- Experience with privileged access management systems (CyberArk preferred)
- Knowledge of vulnerability management tools and processes (Tenable, Nessus)
- Understanding of enterprise security frameworks and compliance requirements
- Experience with system administration on Windows and Linux platforms
- Familiarity with security incident response procedures and methodologies
- Strong analytical and problem-solving skills with attention to detail
- Ability to work independently and manage multiple concurrent projects
- Excellent communication skills for stakeholder engagement and technical documentation
Preferred Qualifications:
- Master's degree in Cybersecurity or related advanced qualification
- Professional certifications such as CyberArk Defender/Sentry, CISSP, GCIH, or equivalent security certifications
- Experience with automation tools and scripting (Ansible, Python, PowerShell)
- Knowledge of cloud security platforms and hybrid infrastructure environments
- Familiarity with SIEM tools and security monitoring platforms
- Experience with Singapore Government security standards and compliance frameworks (IM8, CSA guidelines)
- Understanding of financial sector security requirements and regulations
- Project management experience and ability to lead technical initiatives