Ant International-Cybersecurity Engineer (Platform Security)-ANEXT Bank
Ant Technology Group Co., Ltd. SingaporeAnt International-Cybersecurity Engineer (Platform Security)-ANEXT Bank
Ant Technology Group Co., Ltd. Singapore
Ant International-Cybersecurity Engineer (Platform Security)-ANEXT Bank
Job description
We're on a mission to make financial services accessible and effortless for SMEs. As one of Singapore's latest digital wholesale banks fully regulated by MAS, we're committed to continuous innovation to bring about simpler, safer and more rewarding financial services. #bringingaboutwhatsnext
We are seeking an experienced Platform Security & Engineering Lead to design, implement, and operate secure-by-design technology platforms that support a cloud-native digital bank. You will be responsible for building scalable security capabilities across cloud infrastructure, DevSecOps, identity, containers, automation, and platform engineering while ensuring compliance with regulatory requirements such as those from the Monetary Authority of Singapore.
This role partners closely with various technology stakeholders to embed security into every stage of the software development lifecycle.
Responsibilities:
Platform Security Engineering
- Design and implement secure-by-design platform architectures for cloud-native banking services.
- Develop and maintain enterprise security baselines for cloud infrastructure, operating systems, containers, middleware, and databases.
- Engineer Zero Trust architecture across users, workloads, APIs, and applications.
- Implement security controls across compute, storage, networking, and platform services.
- Define platform security standards, reference architectures, and engineering guardrails
- Build secure network architectures incorporating segmentation, micro-segmentation, and service mesh technologies.
Cloud Security
- Secure cloud infrastructure using Infrastructure-as-Code.
- Oversee and drive cloud security posture management and remediation.
- Oversee the configuration of Network Firewalls (NFW) and Web Application Firewall (WAF) systems to safeguard the bank's cloud infrastructure and applications against external and insider threats and malicious attacks.
- Continuously evaluate and enhance overall security posture of cloud environments and maintain a good security score.
Vulnerability & Configuration Management
- Lead enterprise vulnerability management to continuously evaluate and enhance overall security posture of cloud environments and maintain a good security score.
- Establish patch governance; Implementation of various kernel hardening techniques in accordance with industry standards.
- Oversee the formulation and maintenance of cloud security best practices (e.g. CIS Benchmarks), including the coordination with the infrastructure team to apply security patches.
- Develop secure configuration baselines for securing access to banking applications and data
- Ensure security systems are implemented and operated in compliance with regulatory requirements, the established security standards and control procedures by automating configuration compliance reporting.
Job Requirement
- BS/MS in Computer Science / Cybersecurity
- 5+ years and above relevant experience in cyber security, with a focus on network security, endpoints security and identity access management domains
- Experience implementing, operating cloud-based security systems and services
- Experience solutioning and incorporating technical security controls align with industrial framework and regulatory requirements such as NIST CSF framework, MAS TRMG, MAS Notices
- Hands-on experience deploying, operating, automating security systems.
- Strong working knowledge of cloud computing, OS, networking (TCP/IP, DNS, proxy, etc) and its security aspects
- Keeps abreast with relevant vulnerabilities, response and mitigating technical controls
- Strong analytical skills and a problem solver
- Relevant certifications in CISSP, CCNP/CCIE, Kubernetes and Cloud Native Computing will be an added advantage
Desired Competencies
- Strong security architecture and engineering mindset.
- Excellent problem-solving and analytical skills.
- Ability to automate repetitive security tasks.
- Experience leading technical engineering teams.
- Strong stakeholder management and communication skills.
- Ability to work effectively in Agile and DevSecOps environments.
- Passion for continuous improvement and innovation.
We're on a mission to make financial services accessible and effortless for SMEs. As one of Singapore's latest digital wholesale banks fully regulated by MAS, we're committed to continuous innovation to bring about simpler, safer and more rewarding financial services. #bringingaboutwhatsnext
We are seeking an experienced Platform Security & Engineering Lead to design, implement, and operate secure-by-design technology platforms that support a cloud-native digital bank. You will be responsible for building scalable security capabilities across cloud infrastructure, DevSecOps, identity, containers, automation, and platform engineering while ensuring compliance with regulatory requirements such as those from the Monetary Authority of Singapore.
This role partners closely with various technology stakeholders to embed security into every stage of the software development lifecycle.
Responsibilities:
Platform Security Engineering
- Design and implement secure-by-design platform architectures for cloud-native banking services.
- Develop and maintain enterprise security baselines for cloud infrastructure, operating systems, containers, middleware, and databases.
- Engineer Zero Trust architecture across users, workloads, APIs, and applications.
- Implement security controls across compute, storage, networking, and platform services.
- Define platform security standards, reference architectures, and engineering guardrails
- Build secure network architectures incorporating segmentation, micro-segmentation, and service mesh technologies.
Cloud Security
- Secure cloud infrastructure using Infrastructure-as-Code.
- Oversee and drive cloud security posture management and remediation.
- Oversee the configuration of Network Firewalls (NFW) and Web Application Firewall (WAF) systems to safeguard the bank's cloud infrastructure and applications against external and insider threats and malicious attacks.
- Continuously evaluate and enhance overall security posture of cloud environments and maintain a good security score.
Vulnerability & Configuration Management
- Lead enterprise vulnerability management to continuously evaluate and enhance overall security posture of cloud environments and maintain a good security score.
- Establish patch governance; Implementation of various kernel hardening techniques in accordance with industry standards.
- Oversee the formulation and maintenance of cloud security best practices (e.g. CIS Benchmarks), including the coordination with the infrastructure team to apply security patches.
- Develop secure configuration baselines for securing access to banking applications and data
- Ensure security systems are implemented and operated in compliance with regulatory requirements, the established security standards and control procedures by automating configuration compliance reporting.
Job Requirement
- BS/MS in Computer Science / Cybersecurity
- 5+ years and above relevant experience in cyber security, with a focus on network security, endpoints security and identity access management domains
- Experience implementing, operating cloud-based security systems and services
- Experience solutioning and incorporating technical security controls align with industrial framework and regulatory requirements such as NIST CSF framework, MAS TRMG, MAS Notices
- Hands-on experience deploying, operating, automating security systems.
- Strong working knowledge of cloud computing, OS, networking (TCP/IP, DNS, proxy, etc) and its security aspects
- Keeps abreast with relevant vulnerabilities, response and mitigating technical controls
- Strong analytical skills and a problem solver
- Relevant certifications in CISSP, CCNP/CCIE, Kubernetes and Cloud Native Computing will be an added advantage
Desired Competencies
- Strong security architecture and engineering mindset.
- Excellent problem-solving and analytical skills.
- Ability to automate repetitive security tasks.
- Experience leading technical engineering teams.
- Strong stakeholder management and communication skills.
- Ability to work effectively in Agile and DevSecOps environments.
- Passion for continuous improvement and innovation.
Job ID 260709010848399
More Jobs From Ant Technology Group Co., Ltd.
Ant Technology Group Co., Ltd.
Singapore
Ant Technology Group Co., Ltd.
Singapore
Ant Technology Group Co., Ltd.
Singapore
Ant Technology Group Co., Ltd.
Singapore
Ant Technology Group Co., Ltd.
Singapore
Ant Technology Group Co., Ltd.
Singapore
Ant Technology Group Co., Ltd.
Singapore
Ant Technology Group Co., Ltd.
Singapore
Ant Technology Group Co., Ltd.
Singapore
Ant Technology Group Co., Ltd.
Singapore
Boost your career
Find thousands of job opportunities by signing up to eFinancialCareers today.More Jobs Like This
Ant Technology Group Co., Ltd.
Singapore
Ant Technology Group Co., Ltd.
Singapore
Ant Technology Group Co., Ltd.
Singapore
Ant Technology Group Co., Ltd.
Singapore