Search by job, company or skills

Astek

Security Engineer

Astek
Singapore
4-6 Years
Save
  • Posted 2 days ago
  • Be among the first 10 applicants
Early Applicant

Job Description

Application Security Engineer / DevSecOps Engineer

Role Overview

We are seeking an experienced security professional to drive application security initiatives across the software development lifecycle. The role focuses on threat modelling, secure development practices, vulnerability management, cloud security, and integrating security controls into modern DevOps and CI/CD environments.

Singapore Citizens only due to CAT Clearance requirement

Key Responsibilities

  • Conduct threat modelling and security risk assessments to identify, evaluate, and mitigate application security risks.
  • Implement and promote secure development practices aligned with OWASP Top 10 and OWASP Application Security Verification Standard (ASVS).
  • Integrate security testing into Agile, DevOps, and CI/CD pipelines using tools such as GitLab, GitHub, and Ansible.
  • Perform application security reviews and manage vulnerability remediation, patching, and risk tracking activities.
  • Utilise SAST tools including Fortify-on-Demand and SonarQube to identify and address code vulnerabilities.
  • Support security awareness initiatives and provide guidance to development and project teams.
  • Collaborate with stakeholders across development, infrastructure, and security teams to strengthen application security posture.

Requirements

  • Singapore Citizens only due to CAT Clearance requirement
  • Minimum 4 years of experience across software development, application security, and cloud computing (AWS).
  • Strong understanding of REST, SOAP, SSL/TLS, and web/mobile application architectures.
  • Experience with threat modelling, vulnerability management, and secure SDLC practices.
  • Familiarity with Agile, DevOps, CI/CD, and security automation.
  • Strong analytical, troubleshooting, and problem-solving skills.
  • Excellent communication and stakeholder management capabilities.

Preferred Skills

  • Experience with Government Commercial Cloud (GCC).
  • Certifications such as CISSP, OSCP, AWS Security, AWS DevOps Engineer, or equivalent.

Key Technologies

AWS, GCC, REST, SOAP, SSL/TLS, GitLab, GitHub, Ansible, Fortify-on-Demand, SonarQube, OWASP Top 10, OWASP ASVS, CI/CD, DevOps, Agile.

More Info

Job Type:
Permanent Job
Industry:
Other
Function:
Application Security
Employment Type:
Full time

About Company

Astek

Job ID: 149293081

Jobs by Skill - IT
Jobs by Skill - Non IT
International Jobs
Jobs in Top Cities
Popular Jobs
Last Updated: 18-06-2026 06:12:43 PM
Homejobs in SingaporeSecurity Engineer

Similar Jobs

Lead Dev Ops Security Engineer(IC) (Remote)

Creeno Solutions Private Limited
Remote

Skills:

AWSDatadogPrometheusGrafanaAWS CloudWatchJenkinsAWS CodePipelinePythonBashEc2S3RDSLambdaECSDev Ops SecurityCI/CDCircleCIGitLab CI/CD

Early Applicant

Security Engineer I

sistic.com pte ltd
S
Singapore

Skills:

Aws LambdaDlpFimWasVpcIpsFirewallTerraformIdsSiemIdentity ManagementWafPythonAWSLog aggregation toolsEDRMDRTransit Gateways

Network Security Engineer

progression search pte. ltd.
P
Singapore

Skills:

RsaVpnsIpsLoad BalancersSolarwindsIdsF5 LtmCisco IseWafCyberarkFortiManagerOPSWATCheck PointSplunk EnterpriseAzure VNetsAWS VPCsTenableFortinet FortiGateTrend Micro

(Lead) Cloud Security Engineer (AWS)

randstad pte. limited
R
Singapore, Raffles Link / Raffles Place

Skills:

Vulnerability ScanningCloud SecurityIpsSsoIdsSiemNetflowAWSOWASP Security StandardsSSDLCIAM architecturesADSecurity Hubidentity lifecycle managementsecurity frameworksrbacInspectorGuard DutyFPCpentesting tools

Security Engineer

apple south asia pte. ltd.
A
Singapore, Ang Mo Kio

Skills:

static code analysis CryptographyNetworkingOperating SystemsSystem AdministrationDevopsVulnerability AssessmentsInfrastructure SecurityPenetration Testingsecurity principlesReverse Engineeringforensic analysissecurity strategiesPhysical Securitysecure coding practicessecurity best practicesLLM technologies