Total 47 job vacancies by Singapore Airlines Limited

Job Description

The successful candidate will join the Information Technology Division, System Technology department and will be responsible for managing Content Delivery Network (CDN) which includes Cyber Security, as well as administering Monitoring and Log Management Tools.

Key Responsibilities include:

• Work closely with CDN providers and application teams to ensure internet websites/mobile apps are healthy in terms of availability, response time and security posture.

• Conduct regular security reviews and finetune WAF and BOT rules to mitigate any cyber threats.

• Administer various monitoring and logging tools, which includes application onboarding and advanced configuration.

• Perform system administration activities such as troubleshooting, root cause analysis and implement corrective/preventive actions during and after an incident.

• Support audit and infrastructure/network security scans, disaster recovery and security related drills and operate within assigned fiscal budget.

• Build automation wherever possible to improve development team’s agility and reduce human errors.

• Explore, learn and deploy new technologies and provide training to the IT community within the company.

• This position requires periodic system administration outside normal business hours.

Requirements:

• Possess a degree in Information Technology or related fields.

• Minimum of 3 years of IT Infrastructure experience with at least 1 year of hands-on experience in managing the infrastructure of an eCommerce website.

• Experience with Akamai or equivalent CDN providers preferred.

• Demonstrate strong knowledge in infrastructure areas such as Content Delivery Network (CDN), Cyber Security (WAF and Bot Mitigation), internet protocols, DNS, virtual server technologies, networking (LAN, WAN, SDN), Integration and Messaging Platform, scripting and monitoring tools.

• Administrator experience with Application Performance Monitoring (APM) tools such as Dynatrace and Log Management System (LMS) such as Splunk.

• Conversant with infrastructure definition tools such as Cloud Formation and Terraform, and with YAML/JSON deployment templates.

• Strong analytical, project management, communications and interpersonal skills.

We thank all candidates for your interest in Singapore Airlines, and regret that only shortlisted candidates will be notified.

Job Description

The End User Computing (EUC) team in SIA provides IT services for all SIA Group employees in Singapore and Overseas. We are looking for an experienced professional with relevant experience to be part of the EUC team and play a significant role in modernizing our enterprise authentication system. This position also offers significant opportunity to contribute to the enhancement of our security posture by enabling Multi factor Authentication (MFA) and Single Sign-On (SSO) solutions.

Responsibilities

•Design, implement, and maintain a robust enterprise authentication system with a focus on Multi-Factor Authentication (MFA) and Single Sign-On (SSO).

•Evaluate and assess various solutions available in the market and conduct Proof of Concepts (PoC) to determine the best fit for the organization.

•Stay abreast of industry best practices and emerging technologies to continuously enhance and improve authentication mechanisms.

•Collaborate with cross-functional teams to ensure alignment with overall security strategy.

•Develop and execute a comprehensive migration plan to transition users to the new MFA solution.

•Implement effective change management strategies to minimize disruption and ensure a smooth transition.

•Collaborate with application owners and development teams to seamlessly integrate applications with the new SSO solution.

•Define standard and create authentication patterns for application integration.

•Troubleshoot and resolve any issues related to SSO integration, ensuring optimal performance.

•Act as a subject matter expert and provide guidance to internal stakeholders.

Required Skills

•Bachelor’s degree in computer science, Information Technology, or a related field.

•Proven experience in designing and implementing enterprise authentication solutions.

•Solid understanding of Single Sign-On (SSO) and experience with SSO solution implementation.

•Familiarity with identity and access management (IAM) concepts and technologies.

•Strong knowledge of security best practices.

•Excellent communication and interpersonal skills to collaborate effectively with teams.

•Good working knowledge in Active Directory, Single Sign-On, 2 Factor Authentication, Encryption, LDAP/LDAPS, RADIUS protocol, SAML 2.0, Open ID Connect and OAuth 2.0.

•A good understanding of SDLC and Agile methodology.

•Enterprise Architecture (TOGAF) or Microsoft Certification (MCSE) preferred.

•Exposure to ITIL (Incident, Problem & Change management) preferred.

•Ability to work independently, multi-task, and take ownership.

We are seeking a highly skilled and experienced Network and Communication Operations Engineer to join our team and provide oversight for the design, implementation, and management of SIA Group's Network operations. The primary objective of this role is to ensure maximum network availability and functionality to help SIA achieve its business objectives

Responsibilities includes:

•Continuous transformation of the network infrastructure to enhance availability and automation

•Offer network consultancy project support to ensure that IT services comply with SIA architecture and standards

•Create technical solutions for complex requirements

•Run large-scale network operations, including strong service management knowledge in a multi-vendor environment

•Have Level 2 and preferably L3 experience in various networking technologies including

oSDWAN (Cisco Viptela, Versa, etc

oWireless (Aruba)

oVoice, Contact centre and Collaboration

oLAN (Cisco and Aruba)

oNAC (ISE and Clearpass)

oAutomation experience (Ansible or Python)

•Possess relevant knowledge and experience in cloud technologies

•Track, POC and plan technology refresh

•Deliver large-scale IT projects on time, within budget and of satisfactory quality

•Manage outsourced vendor(s) and internal team including various Service Delivery meetings

•Lead and coordinate incident resolution across different vendors

•Ability to work in a team with 24*7 support

Requirements:

•Degree with at least 6-10 years of network experience in managing Network Operation in a multi-vendor(s) environment on at least two of the following multiple domains:

oSecurity,

oNetwork Automation

•Relevant certifications in Networking (e.g. Cisco, Aruba, Versa) are preferred

•Understanding of SDWAN, Voice, Wireless and LAN architectures, experience in planning, design & implementation of Network infrastructure

•Excellent problem-solving, logical thinking skills to isolate and identify potential issues in a complex environment

•Excellent communication & interpersonal skills

•Effective consulting and communication skills

•Demonstrated industry awareness

Job Description

The successful candidate will join the one of SIA Group's Cloud/DevOps teams.

Key Responsibilities include:

• AdministeringcAzure cloud-based Infrastructure deployment which includes tasks such as provisioning/de-provisioning of resources, maintaining security posture, user administration, monitoring computing resource utilization, network setup, backup/restore and incident management.

• Performcsystem administration and troubleshooting activities (including outside normal business hours) in accordance with company policies and procedures.

• Create and maintain documentation and processes for troubleshooting, administration, and configuration on Azure.

• Operate within assigned budget and demonstrates fiscal responsibility. Azure Cost Governance and Optimisation experience preferred.

• Support audit and infrastructure/network security scans, disaster recovery and security related drills.

• Automate everything philosophy to improve development team’s agility.

• Hands-on Infrastructure-as-Code (IaC) on Azure.

• Resident Azure expert, able to train and teach the cloud community within the company.

• Stay up-to-date with Innovations in Data, AI/ML and other cloud technologies that will help the company to reduce cost or improve operational efficiencies.

• Note: You could be posted to any subsidiary in SIA Group.

Requirements

• Possess a degree in Information Technology or related fields.

• Minimum of 3 years of IT experience with at least 1 year of hands-on experience in Azure Cloud.

• Azure Certified Solution Architect Expert (preferred).

• Conversant with IaC infrastructure definition tools such as Terraform, and Azure Resource Manager, using YAML/JSON deployment templates.

• Python/Ansible/Shell scripting skills for provisioning and automating dynamic cloud infrastructure.

• Hands-on experience with containerization, and orchestration (preferred). Working knowledge of API Gateways and reverse proxies.

• Familiar with DevOps CI/CD pipelines and customisations.

• Strong analytical, project management, communications, and interpersonal skills.

• Demonstrated understanding of cloud infrastructure virtualisation, including security best practices, private networking, and operational monitoring tools.

Job Description

The successful candidate will join the one of SIA Group's Cloud/DevOps teams and will be responsible for the following:

• Administering cloud-based Infrastructure deployment which includes tasks such as provisioning/de-provisioning of resources, maintaining security posture, user administration, monitoring computing resource utilization, network setup, backup/restore and incident management.
• Performs system administration activities in accordance with company policies and procedures.
• Troubleshoot, performs root cause analysis, implements corrective/preventive actions during and after an incident.
• Create and maintain documentation and processes for troubleshooting, maintaining, and configuring systems.
• Operates within assigned budget and demonstrates fiscal responsibility.
• Support audit and infrastructure/network security scans, disaster recovery and security related drills.
• Build automation wherever possible to improve development team’s agility.
• Implement Infrastructure-as-Code (IaC) on AWS, Azure or GCP.
• Provide training or conduct talks to the cloud community within the company.
• Explore, learn and deploy new technologies that will help the company to reduce cost or improve operational efficiencies.
• This position requires periodic system administration outside normal business hours.
• Note: You could be posted to any subsidiary in SIA Group.

Requirements

• Possess a degree in Information Technology or related fields.
• Minimum of 3 years of IT experience with at least 1 year of hands-on experience in AWS Cloud.
• AWS Certified Solution Architect (Associate) preferred.
• Conversant with infrastructure definition tools such as Cloud Formation and Terraform, and with YAML/JSON deployment templates.
• Advanced python/ansible scripting skills for provisioning and automating dynamic cloud infrastructure.
• Hands-on experience with Docker containerization and Kubernetes orchestration preferred.
• Strong analytical, project management, communications and interpersonal skills.
• Demonstrate strong knowledge in infrastructure areas such as virtual server technologies, networking, internet protocols, scripting & monitoring tools and IT Security.
• Experience in API Management (AWS API Gateway, Tibco Mashery), Platform as a Service (OpenShift, Cloud Foundry) and DevOps are preferred.

Job Description

You will be a member of the Group Information Security Team responsible for ensuring that IT solutions (both applications and infrastructure) are developed and designed with security inbuilt.

Key Responsibilities

•Provide security consultancy, technical guidance, expertise, solutioning and education for en-terprise.

•Advise application and infrastructure teams on application and infrastructure security design that is relevant and fit for purpose.

•Align security architecture frameworks and standards with business strategies and functions. Maintain Cyber risk management framework and perform assessment of applications for emerging areas like cloud security, machine learning etc.

•Advise and review application security design to detect potential security issues and for each issue, propose and drive remediation tasks. Develop application security blueprints. Propose and/or develop training courses to advance developers’ security knowledge.

•Perform threat modelling on security critical applications. Keep up to date on emerging secu-rity threats and vulnerabilities on new platforms adopted by the SIA Group. Define scope and review the results of security tests, reviews and audits to ensure security assurance is achieved.

•Any relevant ad-hoc duties. Manage individual project priorities, deadlines and deliverables. This is an individual contributor role. Strong communication skills.

Requirements

•Degree in IT or related fields, with at least 5 years in information security, especially in the application security space.

•Professional security certifications (CISSP, CSSLP, CEH, CCSP etc) preferred.

•Technical proficiency in one or more of the following security areas: network design, zero trust, Internet of Things, cryptography etc.

•Strong in-depth working knowledge in secure application development techniques. Secure by Design. Secure source code review. Prior experience with any of the following tools: Static Application Security Testing (SAST), Dynamic Application Security (DAST), Software Compo-sition Analysis (SCA).

•Strong understanding of Agile, DevSecOps, OWASP Top 10, and securing cloud technolo-gies. Familiar with common web/mobile application vulnerabilities and technical knowledge to address and mitigate vulnerabilities.

•Knowledge of cyber security threats, vulnerabilities, hacking and exploit methods etc. Any prior vulnerability management experience preferred.

•Strong oral, written, presentation and inter-personal skills.

•Possess positive attitude with drive, initiative, enthusiasm, and a keen sense of urgency in resolving high-priority issues.

•Able to work independently and in a team-oriented, collaborative environment.

Job Description
You will be a member of the Group Information Security Team responsible for initiating, implementing and maintaining security products and solutions to support enterprise security.

Key Responsibilities

• Subject matter expert (SME) for the security systems owned by the Information Security Team.
• Ensure security systems are utilised to their maximum capabilities.
• Plan, identify, assess, design, operationalise and maintain multiple security related software and/or hardware.
• Recommend and drive cyber security solution and initiatives to improve cyber security of the organisation.
• Prepare RFQ and evaluation criteria. Proof of concept (POC) during product evaluation. Liaising with vendors to implement security solutions.
• Provide security consultancy, technical guidance, expertise, solutioning and education.
• Advise infrastructure teams on security design that is relevant and fit for purpose.
• Identify and assess cyber risks in the IT infrastructure environment.
• Review firewall requests.
• Keep up to date on emerging security threats and vulnerabilities on new platforms adopted by the SIA Group and propose mitigating controls.
• Any relevant ad-hoc duties. Manage individual project priorities, deadlines and deliverables.
• This is an individual contributor role. Deliver tasks with minimal supervision.
• Strong communication skills.

Requirements

• Degree in IT or related field, with at least 5 years in information security, especially in the application security space.
• Professional security certifications (CISSP, CSSLP, CEH etc) preferred.
• Experience in security products POC and RFQ.
• Prior experience in implementing and maintaining any of tools for EDR, XDR, SOAR, SIEM, UEBA, PAM, AM etc. and/or network security. Able to review firewall requests.
• Technical proficiency in one or more of the following security areas: network design, zero trust, Internet of Things, cryptography etc.
• Familiar with common web/mobile application vulnerabilities and technical knowledge to address and mitigate vulnerabilities. Any prior vulnerability management experience preferred.
• Knowledge of cyber security threats, vulnerabilities, hacking and exploit methods etc.
• Strong oral, written, presentation and inter-personal skills.
• Possess positive attitude with drive, initiative, enthusiasm, and a keen sense of urgency in resolving high-priority issues.
• Able to work independently and in a team-oriented, collaborative environment.

The Lead Software Engineer/Assistant Manager will be part of the IT Service Management team in SIA's Information Technology Division, focusing on enhancing IT operations efficiency and effectiveness. This role involves managing initiatives to improve service quality and operational resilience, including process improvements and implementing new tools and methodologies. The successful candidate will collaborate with stakeholders to ensure swift recovery from complex incidents, manage disaster recovery, and drive improvements in service availability and operational stability.

Key Responsibilities include:

• Improvement Initiatives: Identify areas for improvement within IT operations through data analysis, stakeholder feedback, and performance metrics. Lead improvement projects, aligning them with business goals and IT strategies. Apply process improvement methodologies like Lean, Six Sigma, or ITIL.
• Process Optimization: Analyse existing IT processes to identify inefficiencies and design streamlined processes to enhance response times, reduce costs, and improve service quality. Ensure effective adoption of new processes.
• Performance Metrics Review and Adoption: Develop and maintain metrics and KPIs to monitor IT operations and improvement initiatives. Provide regular reports to senior management, utilizing data-driven insights for decision-making.
• Stakeholder Engagement: Collaborate with IT leadership, service desk teams, and other stakeholders to address operational challenges. Facilitate workshops and meetings to gather input and drive consensus on improvement initiatives. Foster a culture of continuous improvement.
• Incident Management and Resiliency: Take ownership of critical incidents, ensuring swift resolution and conducting root cause analyses. Proactively prevent defects and eliminate inefficiencies to enhance system resilience.
• ITSM Leadership and Training: Provide ITSM knowledge training to all IT teams, including remote offshore resources. Mentor team members and align ITSM ITIL practices to ensure operational readiness.

Requirements:

• Degree in Information Technology or related fields, with ITIL/Service Integration and Management (SIAM) certification. Additional certifications in ITSM CAS, CAD, or CIS are a bonus. Knowledge and certification in Business Continuity Management (BCM) preferred but not mandatory.
• At least 5 years of relevant experience in IT Operations and IT Service Management, including process improvement. Proven proficiency in Agile methodologies for operations management.
• Hands-on experience with ServiceNow Platform or equivalent ITSM tool is mandatory. Familiarity with network and cloud technologies (e.g., Linux, Wintel, VMware, DevOps) preferred.
• Strong analytical skills, project management skills, and a proven track record of successful improvement initiatives in an IT environment. Proficiency in collaboration tools (e.g., Microsoft Teams, SharePoint, JIRA, Confluence) and monitoring/orchestration platforms (ScienceLogic, Splunk, APM).
• Excellent communication and interpersonal skills, with the ability to influence and engage stakeholders at all levels.
• Ability to work on strategic direction initiatives, balance multiple priorities in a fast-paced environment, and oversee operations, including Service Desk, IT Operations Command Centres, Major Incidents Handling, and Chairing Change Advisory Board reviewing teams' readiness for Major change.
• Adaptive, responsive, able to manage dynamic environments effectively, independent, self-motivated, result-driven, and willing to work beyond office hours.

Job Description

The successful candidate will join the Information Technology Division, System Technology department and will be responsible for managing Content Delivery Network (CDN) which includes Cyber Security, as well as administering Monitoring and Log Management Tools.

Key Responsibilities include:

• Work closely with CDN providers and application teams to ensure internet websites/mobile apps are healthy in terms of availability, response time and security posture.

• Conduct regular security reviews and finetune WAF and BOT rules to mitigate any cyber threats.

• Administer various monitoring and logging tools, which includes application onboarding and advanced configuration.

• Perform system administration activities such as troubleshooting, root cause analysis and implement corrective/preventive actions during and after an incident.

• Support audit and infrastructure/network security scans, disaster recovery and security related drills and operate within assigned fiscal budget.

• Build automation wherever possible to improve development team’s agility and reduce human errors.

• Explore, learn and deploy new technologies and provide training to the IT community within the company.

• This position requires periodic system administration outside normal business hours.

Requirements:

• Possess a degree in Information Technology or related fields.

• Minimum of 3 years of IT Infrastructure experience with at least 1 year of hands-on experience in managing the infrastructure of an eCommerce website.

• Experience with Akamai or equivalent CDN providers preferred.

• Demonstrate strong knowledge in infrastructure areas such as Content Delivery Network (CDN), Cyber Security (WAF and Bot Mitigation), internet protocols, DNS, virtual server technologies, networking (LAN, WAN, SDN), Integration and Messaging Platform, scripting and monitoring tools.

• Administrator experience with Application Performance Monitoring (APM) tools such as Dynatrace and Log Management System (LMS) such as Splunk.

• Conversant with infrastructure definition tools such as Cloud Formation and Terraform, and with YAML/JSON deployment templates.

• Strong analytical, project management, communications and interpersonal skills.

We thank all candidates for your interest in Singapore Airlines, and regret that only shortlisted candidates will be notified.

Job Description

You will be a member of the Group Information Security Team responsible for responding to threats and incidents to the corporate networks, systems (on-prem and cloud), and digital assets.

Key Responsibilities:

•Perform security monitoring and incident response activities across the scoot networks, leveraging a variety of tools and techniques.

•Manage Security Operations center.

•Detect incidents through proactive “hunting” across security-relevant data sets.

•Ability to correlate multiple events from different devices to identify abnormal behaviour

•Document incident response analysis activities thoroughly

•Develop new, repeatable methods for finding malicious activities

•Provide recommendations to enhance detection and protection capabilities.

•Effectively present technical topics to both technical and non-technical audiences

•Develop and follow detailed operational processes and procedures to appropriately analyze, escalate, and assist in the remediation of information security incidents

•Prioritize multiple high-priority tasks and formulate responses/recommendations in a fast-paced environment

•Prepare documentation for security technical standards, standard operational procedures, and hardening standards.

•Analyse endpoint, network, and application logs

•Assist other IT teams in security-related issues

•Engage with vendors and parent company SIA team members for security reviews.

Requirements:

•Degree in Computer Engineering, Computer Science, Information Systems, or equivalent qualification.

•At least 5-6 years of experience in Cybersecurity Incident and Security Operations.

•Demonstrate experience in Information Security with a focus on Cyber Security Operations, Incident Response and Detection.

•Experience working in the Security Operations Centre and/or Computer Incident Response Team.

•Excellent problem-solving skills combined with hands-on experience doing root cause analysis and post-incident reviews.

•Solid knowledge of computer networks and common protocols

•Knowledge of prominent cyber threat actors and APT groups.

•Experience with Threat Intelligence Platforms.

•Experience with SIEM (especially Splunk).

•Professional security related qualifications (i.e. GCIA, CISSP etc) will be an advantage

•Preferred certifications: CISSP, CISM, CISA, ISMS, TOGAF, SABS

•Good interpersonal skills

Job Description

The End User Computing (EUC) team in SIA provides IT services for all SIA Group employees in Singapore and Overseas. We are looking for an experienced professional with relevant experience to be part of the EUC team and play a significant role in modernizing our enterprise authentication system. This position also offers significant opportunity to contribute to the enhancement of our security posture by enabling Multi factor Authentication (MFA) and Single Sign-On (SSO) solutions.

Responsibilities

•Design, implement, and maintain a robust enterprise authentication system with a focus on Multi-Factor Authentication (MFA) and Single Sign-On (SSO).

•Evaluate and assess various solutions available in the market and conduct Proof of Concepts (PoC) to determine the best fit for the organization.

•Stay abreast of industry best practices and emerging technologies to continuously enhance and improve authentication mechanisms.

•Collaborate with cross-functional teams to ensure alignment with overall security strategy.

•Develop and execute a comprehensive migration plan to transition users to the new MFA solution.

•Implement effective change management strategies to minimize disruption and ensure a smooth transition.

•Collaborate with application owners and development teams to seamlessly integrate applications with the new SSO solution.

•Define standard and create authentication patterns for application integration.

•Troubleshoot and resolve any issues related to SSO integration, ensuring optimal performance.

•Act as a subject matter expert and provide guidance to internal stakeholders.

Required Skills

•Bachelor’s degree in computer science, Information Technology, or a related field.

•Proven experience in designing and implementing enterprise authentication solutions.

•Solid understanding of Single Sign-On (SSO) and experience with SSO solution implementation.

•Familiarity with identity and access management (IAM) concepts and technologies.

•Strong knowledge of security best practices.

•Excellent communication and interpersonal skills to collaborate effectively with teams.

•Good working knowledge in Active Directory, Single Sign-On, 2 Factor Authentication, Encryption, LDAP/LDAPS, RADIUS protocol, SAML 2.0, Open ID Connect and OAuth 2.0.

•A good understanding of SDLC and Agile methodology.

•Enterprise Architecture (TOGAF) or Microsoft Certification (MCSE) preferred.

•Exposure to ITIL (Incident, Problem & Change management) preferred.

•Ability to work independently, multi-task, and take ownership.

Job Description

The successful candidate will join the one of SIA Group's Cloud/DevOps teams.

Key Responsibilities include:

• AdministeringcAzure cloud-based Infrastructure deployment which includes tasks such as provisioning/de-provisioning of resources, maintaining security posture, user administration, monitoring computing resource utilization, network setup, backup/restore and incident management.

• Performcsystem administration and troubleshooting activities (including outside normal business hours) in accordance with company policies and procedures.

• Create and maintain documentation and processes for troubleshooting, administration, and configuration on Azure.

• Operate within assigned budget and demonstrates fiscal responsibility. Azure Cost Governance and Optimisation experience preferred.

• Support audit and infrastructure/network security scans, disaster recovery and security related drills.

• Automate everything philosophy to improve development team’s agility.

• Hands-on Infrastructure-as-Code (IaC) on Azure.

• Resident Azure expert, able to train and teach the cloud community within the company.

• Stay up-to-date with Innovations in Data, AI/ML and other cloud technologies that will help the company to reduce cost or improve operational efficiencies.

• Note: You could be posted to any subsidiary in SIA Group.

Requirements

• Possess a degree in Information Technology or related fields.

• Minimum of 3 years of IT experience with at least 1 year of hands-on experience in Azure Cloud.

• Azure Certified Solution Architect Expert (preferred).

• Conversant with IaC infrastructure definition tools such as Terraform, and Azure Resource Manager, using YAML/JSON deployment templates.

• Python/Ansible/Shell scripting skills for provisioning and automating dynamic cloud infrastructure.

• Hands-on experience with containerization, and orchestration (preferred). Working knowledge of API Gateways and reverse proxies.

• Familiar with DevOps CI/CD pipelines and customisations.

• Strong analytical, project management, communications, and interpersonal skills.

• Demonstrated understanding of cloud infrastructure virtualisation, including security best practices, private networking, and operational monitoring tools.

Job Description

The successful candidate will join the one of SIA Group's Cloud/DevOps teams and will be responsible for the following:

• Administering cloud-based Infrastructure deployment which includes tasks such as provisioning/de-provisioning of resources, maintaining security posture, user administration, monitoring computing resource utilization, network setup, backup/restore and incident management.
• Performs system administration activities in accordance with company policies and procedures.
• Troubleshoot, performs root cause analysis, implements corrective/preventive actions during and after an incident.
• Create and maintain documentation and processes for troubleshooting, maintaining, and configuring systems.
• Operates within assigned budget and demonstrates fiscal responsibility.
• Support audit and infrastructure/network security scans, disaster recovery and security related drills.
• Build automation wherever possible to improve development team’s agility.
• Implement Infrastructure-as-Code (IaC) on AWS, Azure or GCP.
• Provide training or conduct talks to the cloud community within the company.
• Explore, learn and deploy new technologies that will help the company to reduce cost or improve operational efficiencies.
• This position requires periodic system administration outside normal business hours.
• Note: You could be posted to any subsidiary in SIA Group.

Requirements

• Possess a degree in Information Technology or related fields.
• Minimum of 3 years of IT experience with at least 1 year of hands-on experience in AWS Cloud.
• AWS Certified Solution Architect (Associate) preferred.
• Conversant with infrastructure definition tools such as Cloud Formation and Terraform, and with YAML/JSON deployment templates.
• Advanced python/ansible scripting skills for provisioning and automating dynamic cloud infrastructure.
• Hands-on experience with Docker containerization and Kubernetes orchestration preferred.
• Strong analytical, project management, communications and interpersonal skills.
• Demonstrate strong knowledge in infrastructure areas such as virtual server technologies, networking, internet protocols, scripting & monitoring tools and IT Security.
• Experience in API Management (AWS API Gateway, Tibco Mashery), Platform as a Service (OpenShift, Cloud Foundry) and DevOps are preferred.

Job Description

You will be a member of the Group Information Security Team responsible for ensuring that IT solutions (both applications and infrastructure) are developed and designed with security inbuilt.

Key Responsibilities

•Provide security consultancy, technical guidance, expertise, solutioning and education for en-terprise.

•Advise application and infrastructure teams on application and infrastructure security design that is relevant and fit for purpose.

•Align security architecture frameworks and standards with business strategies and functions. Maintain Cyber risk management framework and perform assessment of applications for emerging areas like cloud security, machine learning etc.

•Advise and review application security design to detect potential security issues and for each issue, propose and drive remediation tasks. Develop application security blueprints. Propose and/or develop training courses to advance developers’ security knowledge.

•Perform threat modelling on security critical applications. Keep up to date on emerging secu-rity threats and vulnerabilities on new platforms adopted by the SIA Group. Define scope and review the results of security tests, reviews and audits to ensure security assurance is achieved.

•Any relevant ad-hoc duties. Manage individual project priorities, deadlines and deliverables. This is an individual contributor role. Strong communication skills.

Requirements

•Degree in IT or related fields, with at least 5 years in information security, especially in the application security space.

•Professional security certifications (CISSP, CSSLP, CEH, CCSP etc) preferred.

•Technical proficiency in one or more of the following security areas: network design, zero trust, Internet of Things, cryptography etc.

•Strong in-depth working knowledge in secure application development techniques. Secure by Design. Secure source code review. Prior experience with any of the following tools: Static Application Security Testing (SAST), Dynamic Application Security (DAST), Software Compo-sition Analysis (SCA).

•Strong understanding of Agile, DevSecOps, OWASP Top 10, and securing cloud technolo-gies. Familiar with common web/mobile application vulnerabilities and technical knowledge to address and mitigate vulnerabilities.

•Knowledge of cyber security threats, vulnerabilities, hacking and exploit methods etc. Any prior vulnerability management experience preferred.

•Strong oral, written, presentation and inter-personal skills.

•Possess positive attitude with drive, initiative, enthusiasm, and a keen sense of urgency in resolving high-priority issues.

•Able to work independently and in a team-oriented, collaborative environment.

The Lead Software Engineer/Assistant Manager will be part of the IT Service Management team in SIA's Information Technology Division, focusing on enhancing IT operations efficiency and effectiveness. This role involves managing initiatives to improve service quality and operational resilience, including process improvements and implementing new tools and methodologies. The successful candidate will collaborate with stakeholders to ensure swift recovery from complex incidents, manage disaster recovery, and drive improvements in service availability and operational stability.

Key Responsibilities include:

• Improvement Initiatives: Identify areas for improvement within IT operations through data analysis, stakeholder feedback, and performance metrics. Lead improvement projects, aligning them with business goals and IT strategies. Apply process improvement methodologies like Lean, Six Sigma, or ITIL.
• Process Optimization: Analyse existing IT processes to identify inefficiencies and design streamlined processes to enhance response times, reduce costs, and improve service quality. Ensure effective adoption of new processes.
• Performance Metrics Review and Adoption: Develop and maintain metrics and KPIs to monitor IT operations and improvement initiatives. Provide regular reports to senior management, utilizing data-driven insights for decision-making.
• Stakeholder Engagement: Collaborate with IT leadership, service desk teams, and other stakeholders to address operational challenges. Facilitate workshops and meetings to gather input and drive consensus on improvement initiatives. Foster a culture of continuous improvement.
• Incident Management and Resiliency: Take ownership of critical incidents, ensuring swift resolution and conducting root cause analyses. Proactively prevent defects and eliminate inefficiencies to enhance system resilience.
• ITSM Leadership and Training: Provide ITSM knowledge training to all IT teams, including remote offshore resources. Mentor team members and align ITSM ITIL practices to ensure operational readiness.

Requirements:

• Degree in Information Technology or related fields, with ITIL/Service Integration and Management (SIAM) certification. Additional certifications in ITSM CAS, CAD, or CIS are a bonus. Knowledge and certification in Business Continuity Management (BCM) preferred but not mandatory.
• At least 5 years of relevant experience in IT Operations and IT Service Management, including process improvement. Proven proficiency in Agile methodologies for operations management.
• Hands-on experience with ServiceNow Platform or equivalent ITSM tool is mandatory. Familiarity with network and cloud technologies (e.g., Linux, Wintel, VMware, DevOps) preferred.
• Strong analytical skills, project management skills, and a proven track record of successful improvement initiatives in an IT environment. Proficiency in collaboration tools (e.g., Microsoft Teams, SharePoint, JIRA, Confluence) and monitoring/orchestration platforms (ScienceLogic, Splunk, APM).
• Excellent communication and interpersonal skills, with the ability to influence and engage stakeholders at all levels.
• Ability to work on strategic direction initiatives, balance multiple priorities in a fast-paced environment, and oversee operations, including Service Desk, IT Operations Command Centres, Major Incidents Handling, and Chairing Change Advisory Board reviewing teams' readiness for Major change.
• Adaptive, responsive, able to manage dynamic environments effectively, independent, self-motivated, result-driven, and willing to work beyond office hours.