• Competitive
  • Singapore
  • Permanent, Full time
  • OCBC Bank
  • 2018-09-24

Security Engineer

Security Engineer

  1. Perform application penetration testing on web based application and thick-client application.
  2. Perform network penetration testing on systems.
  3. Exploit vulnerabilities to gain access, and expand access to remote systems.
  4. Document technical issues and recommend mitigation controls identified during security assessments.
  5. Research cutting edge security topics and new attack vendors
  6. Conduct compliance testing on web based application and thick-client application that meet predetermined Information Security Standards & Guidelines and other regulatory requirements such as MAS TRMG.
  7. Manage secure code review of applications.
  8. Manage RFP for engaging external vendor to conduct application penetration test. This include:
    1. Conducting RFP
    2. Evaluating and recommending vendor
  9. Manage external vendor security testing team.
  10. Serve as a subject testing team and external vendor secure code review team.


Qualifications
  1. Experience with Secure Code Review and Security Testing and their methodologies.
  2. Degree in computer degree/computer engineering/information security or equivalent.
  3. A working knowledge of aspects of information security is essential.
  4. Familiarity of MAS TRMG, PCI-DSS and other regulatory/industries requirements.
  5. Good communication (spoken and written) skills, able to work independently and as a team player.
  6. Certified Information Systems Security Professional, Certified Information Systems Auditor or Certified Ethical Hacker preferred.
  7. Candidate must be familiar with the following tools and have at least 3 to 5 years relevant experience in security testing
*LI-TK
Singapore Singapore Singapore SG