IT Security Engineer

• Company Thales Solutions Asia Pte. Ltd
• No. of Openings 10+
• Salary Not Disclosed
• Work Type on-site

Job Description :

JOB OBJECTIVE

CDS Asia provides a range of cybersecurity services and solutions to our regional clients. Our ambition is to scale up our existing business and increase our footprint in the region with a refreshed strategy and mandate to leverage our global capability and win new business in our core markets.

CDS Asia is actively seeking an IT Security Engineer to take support in design, developing and implementing OT cybersecurity solutions within our existing install base.

The role will require someone that this is a problem solver, determined and enthusiastic. They will bring experience of implementing a wide variety of cybersecurity products and solutions within large complex system development. They will have the ability to apply cybersecurity and principles to organizational requirements and be able to identify and remediate critical infrastructure systems that were designed without system security considerations.

Roles & Responsibilities

• Build and develop the overall security implementation strategy based on customers’ requirements
• Experience in managing the security configuration of the system: create and approve baselines, perform configuration audits, system security assessments.
• Experience in working closely with various teams such as design authority, software team, systems team, network team, etc.
• Act as technical interface on security issues with customers responding to queries and providing cyber security solutions
• Implement, configure and test the proposed cyber security solutions. Hands-on experience in implementing at least three of the solutions – DAM, PAM, SIEM, Firewalls, MFA.
• Perform all security-engineering activities with a Lean engineering mind-set. Develop and execute system testing and validation procedures and documentation. Identify and direct the remediation of technical problems.
• Independently manage the risks and/or opportunities during the project implementation phase, including managing the subcontractors and partners
• Contribute to the management of the risks and/or opportunities during the project implementation phase, including managing subcontractors and partners

Work Experience Requirements

• Minimum of 7 years’ experience of security engineering
• Strong critical thinking and problem-solving skills and a passion for information security
• Experience of working with internal experts/external vendors to resolve technical issues independently
• Fluent communicator in both written and spoken English;
• Previous consulting or professional services experience
• Knowledge of network security, data security and system security
• Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).
• Knowledge of regional laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.
• Knowledge of information security systems engineering principles.
• Knowledge of network access, identity, and access management (e.g., public key infrastructure, Oauth, OpenID, SAML, SPML).
• Knowledge of various operating systems.
• Knowledge of secure configuration management techniques.

Qualification, Certification & Educational Requirements

Mandatory

• Degree in Information Security (preferred) or Information Technology or Computer Science
• Certified Information Systems Security Professional (CISSP), or
• Certified Information Security Manager (CISM)

Preferred

• Information Security Masters degree from either:
• U.S. National Centres of Academic Excellence in Cyber Defence; or,
• those certified by U.K. National Cyber Security Centre
• CREST Registered Technical Security Architect (CRTSA); or
• Information Systems Security Architecture Professional (CISSP-ISSAP).

Preferred Skills

• Skill in creating policies that reflect system security objectives.
• Skill in designing countermeasures to identified security risks.
• Skill in designing security controls based on cybersecurity principles and tenets.
• Skill in developing and applying security system access controls.
• Skill in discerning the protection needs of information systems and networks.

Desired Skills and Experience

Information Security, Security Architecture, Defence, Remediation, Cyber Security, Architect, System Testing, Risk Management, Information Technology, Configuration Management, Operating Systems, Audits, Systems Engineering, Network Security, CISSP, Firewalls.