Job title: Infosecurity Officer (Application & Infrastructure)

Job Description

Infosecurity Officer (Applications & Infrastructure)

  • Salary up to $10000/per month
  • 18-21 Als + AWS
  • Government Project

Overview

The Infosec Officer is responsible for supporting the agency's cybersecurity efforts across applications, IT infrastructure, cloud environments, and Operational Technology (OT) systems. The role works closely with project teams, developers, infrastructure engineers, and system owners to identify, track, and remediate security risks while ensuring compliance with government security requirements.

Key Responsibilities

Application Security

  • Review System Security Plans (SSPs) and ensure applications meet security requirements.
  • Track and follow up on security vulnerabilities identified through VMS, Cloudscape, VA/PT, and source code reviews.
  • Support secure SDLC practices, including SAST, DAST, and dependency scanning.
  • Facilitate threat modelling exercises and support Government Bug Bounty Programme (GBBP) activities.
  • Monitor and manage third-party library and software vulnerabilities.

Infrastructure & Cloud Security

  • Track and manage infrastructure vulnerabilities, ensuring timely remediation and patching.
  • Support security hardening of Azure GCC 2.0 cloud environments.
  • Configure and monitor security tools such as Microsoft Defender and Trend Micro Vision One.
  • Support security monitoring, log management, and incident detection activities.
  • Review privileged access controls, WAF configurations, and DDoS protection measures.
  • Assist in asset management, attack surface monitoring, and IM8 audit preparation.

Operational Technology (OT) Security

  • Assess OT systems against IM8 and OT security requirements.
  • Identify security gaps and work with system owners to implement remediation plans.
  • Support security improvements for systems such as CCTV and Building Management Systems.

Requirements

  • Degree in Cybersecurity, Information Technology, Computer Science, or a related field.
  • Experience in cybersecurity, application security, infrastructure security, cloud security, or related areas.
  • Knowledge of:
    • Vulnerability Management
    • OWASP Top 10
    • Secure SDLC
    • Security Monitoring and Incident Response
    • Cloud Security (Azure preferred)
    • Network and Endpoint Security
  • Familiarity with Microsoft Defender, Trend Micro Vision One, and CI/CD security tools is an advantage.
  • Knowledge of Singapore Government IM8 policies and GCC 2.0 is preferred.
  • Strong communication and stakeholder management skills.

What We Offer

  • Opportunity to contribute to government digital transformation initiatives.
  • Exposure to applications, infrastructure, cloud, and OT security domains.
  • Continuous learning and professional development opportunities.
  • Collaborative and purpose-driven work environment.

Interested candidates may click on apply or apply via email to kenwi.g@scientecconsulting.com

By submitting your resume, you consent to the collection, use, and disclosure of your personal information per ScienTec’s Privacy Policy (scientecconsulting.com/privacy-policy).

This authorizes us to:

  • Contact you about potential opportunities.
  • Delete personal data as it is not required at this application stage.

All applications will be processed with strict confidence. Only shortlisted candidates will be contacted.

Kenwi Goh Jian Wee – R26159880
ScienTec Consulting Pte Ltd - 11C5781