Jobfoundry
Jobfoundry
Singapore Airlines

Information Technology - Cyber Security Applications Engineer

Singapore Airlines
AviationSearch by LocationOnsitePosted 3 weeks ago
Apply on company site

About the role

This Cyber Security Applications Engineer role focuses on ensuring IT solutions across the enterprise are designed and developed with built-in security. The position involves providing technical guidance, conducting threat modeling, and performing security assessments for cloud and emerging technologies.

AviationOnsite651

Key Responsibilities

  • Provide security consultancy, technical guidance, expertise, solutioning and education for enterprise
  • Advise application and infrastructure teams on application and infrastructure security design that is relevant and fit for purpose
  • Align security architecture frameworks and standards with business strategies and functions
  • Maintain Cyber risk management framework and perform assessment of applications for emerging areas like cloud security and machine learning
  • Advise and review application security design to detect potential security issues and propose remediation tasks
  • Develop application security blueprints
  • Propose and/or develop training courses to advance developers' security knowledge
  • Perform threat modelling on security critical applications
  • Define scope and review the results of security tests, reviews and audits to ensure security assurance is achieved
  • Manage individual project priorities, deadlines and deliverables

Requirements

  • Degree in IT or related fields
  • At least 5 years in information security, especially in the application security space
  • Professional security certifications CISSP, CSSLP, CEH, CCSP preferred
  • Technical proficiency in security areas such as network design, zero trust, Internet of Things, or cryptography
  • Strong in-depth working knowledge in secure application development techniques
  • Experience in Secure by Design principles and secure source code review
  • Prior experience with tools such as Static Application Security Testing (SAST), Dynamic Application Security (DAST), or Software Composition Analysis (SCA)
  • Strong understanding of Agile, DevSecOps, OWASP Top 10, and securing cloud technologies
  • Familiar with common web/mobile application vulnerabilities and technical knowledge to address and mitigate them
  • Knowledge of cyber security threats, vulnerabilities, hacking and exploit methods
  • Any prior vulnerability management experience preferred
  • Strong oral, written, presentation and inter-personal skills
  • Possess positive attitude with drive, initiative, enthusiasm, and a keen sense of urgency
  • Able to work independently and in a team-oriented, collaborative environment