POSITION

Location: ST Engineering Hub
Company: ST Engineering IHQ Pte. Ltd.
Department: Chief Information Security Office
We are seeking an experienced Security Engineer/Manager to strengthen the security of our enterprise systems, applications, and cloud platforms. In this position, you will lead efforts in security architecture reviews, threat modelling, risk assessments, and the review and analysis of vulnerability assessment and penetration testing reports, with a strong focus on cloud security across SaaS, PaaS, and IaaS environments. This role requires a blend of technical expertise, the ability to interpret and validate security testing outcomes, and strong collaboration skills to work with stakeholders in designing and implementing secure solutions.

REQUIREMENTS

• Bachelor’s degree in computer science, cybersecurity, or a related discipline (or equivalent experience).
• 3–5+ years of experience in security engineering, threat modelling, or cloud security.
• Strong expertise in SaaS, PaaS, and IaaS security models, including shared responsibility frameworks.
• Proven ability to review and interpret penetration testing and vulnerability assessment reports, with familiarity in common tools (e.g., Burp Suite, Metasploit, Nessus, Nmap) and vulnerability management platforms.
• Familiarity with DevSecOps practices, CI/CD pipelines, and infrastructure-as-code (e.g., Terraform, CloudFormation).
• Experience in hardening and securing workloads on AWS, Azure, or GCP.
• Industry certifications preferred but not mandatory. (e.g., OSCP, CISSP, CCSK, CCSP, CEH, GIAC).
• Excellent communication and problem-solving skills, with the ability to translate technical findings into business impact.
• Familiarity with implementing cryptographic solutions aligned with industry standards such as NIST, ISO/IEC, and FIPS 140-3

• Perform security architecture reviews for on-premises, cloud (SaaS, PaaS, IaaS), and hybrid environments.
• Lead threat modelling exercises to proactively identify risks in system designs and application workflows.
• Conduct risk assessments and provide actionable recommendations aligned with business priorities and compliance standards.
• Support vulnerability assessments and penetration testing on web apps, APIs, networks, and cloud services.
• Partner with engineering and DevOps teams to design and implement secure cloud configurations (e.g., AWS, Azure, GCP).
• Establish and maintain security baselines for SaaS platforms and third-party integrations.
• Collaborate with stakeholders to ensure alignment with frameworks such as NIST CSF, ISO 27001, OWASP, and CIS Benchmarks.
• Support incident response investigations and post-incident remediation.
• Continuously monitor emerging security threats, vulnerabilities, and best practices in cloud security.