Location: Singapore, Singapore
Thales is a global technology leader trusted by governments, institutions, and enterprises to tackle their most demanding challenges. From quantum applications and artificial intelligence to cybersecurity and 6G innovation, our solutions empower critical decisions rooted in human intelligence. Operating at the forefront of aerospace and space, cybersecurity and digital identity, we’re driven by a mission to build a future we can all trust.
In Singapore, Thales has been a trusted partner since 1973, originally focused on aerospace activities in the Asia-Pacific region. With 2,000 employees across three local sites, we deliver cutting-edge solutions across aerospace (including air traffic management), defence and security, and digital identity and cybersecurity sectors. Together, we’re shaping the future by enabling customers to make pivotal decisions that safeguard communities and power progress.

SUMMARY:

CDS Asia provides a range of cybersecurity services and solutions to our regional clients with a strong focus on Operational Technology.
Our ambition is to scale up our existing business and increase our footprint in the region with a refreshed strategy and mandate to leverage our global capability and win new business in our core markets.
We are actively seeking an IT Security Engineer to take up this role in design, development and implementation of IT and OT cybersecurity solutions within our existing install base.

REQUIREMENTS:

• Minimum of 5 years of experience in security engineering
• Must have either Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM)
• Previous consulting or professional services experience will be an advantage
• Experience of working with internal experts/external vendors to resolve technical issues independently
• Knowledge of computer networking concepts and protocols, and network security methodologies.
• Knowledge of risk management processes (e.g., methods for assessing and mitigating risk)
• Knowledge of regional laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.
• Knowledge of installation, integration, and optimisation of system components
• Knowledge of network access, identity, and access management (e.g., public key infrastructure, Oauth, OpenID, SAML, SPML).
• Knowledge of software development and engineering models (e.g., Agile, Lean, Waterfall Model, Spiral Model)

• Define overall security solution strategies based on customer requirements.
• Act as the single point of contact for customer security queries.
• Analyse design constraints, analyse trade-offs and detailed system and security design, and consider life cycle support.
• Design and develop cybersecurity or cybersecurity-enabled solutions.
• Design or integrate appropriate cybersecurity capabilities into overall system designs.
• Develop and execute system testing and validation procedures and documentation.
• Develop designs to meet specific operational needs and environmental factors (e.g., access controls, automated applications, networkedoperations)
• Identify and direct the remediation of technical problems encountered during testing and implementation of new systems.
• Provide guidelines for implementing developed systems to customers or installation teams.
• Design and develop system administration and management functionality for privileged access users.
• Ensure that design and development activities are properly documented and updated as necessary
• Perform security reviews and identify security gaps in architecture
• Provide input to implementation plans, standard operating procedures, maintenance documentation, and maintenance training materials