Be a Part of Something BIG!

Singtel is seeking a skilled and motivated Senior Specialist, Information Security to strengthen our application and infrastructure security posture.

In this role, you will be responsible for conducting security assessments, reviewing vulnerabilities, guiding remediation efforts, and managing security deviations. You will work closely with development, infrastructure, and platform teams to ensure secure delivery in an Agile environment while enabling business objectives through risk-informed decisions.

Make an Impact by:

Security Assessment & Testing

• Perform and/or review Vulnerability Assessments and Penetration Testing (VAPT) across applications, infrastructure, and network environments.
• Review external penetration test findings and work with stakeholders to prioritise remediation.
• Conduct secure source code reviews and advise developers on remediation strategies.
• Perform security audits, host configuration reviews, and consulting assessments.

Risk Management & Governance

• Conduct security risk assessments at application, infrastructure, and network levels.
• Assess and prioritise vulnerabilities based on impact and likelihood.
• Review change requests from a security risk perspective.
• Prepare, evaluate, and manage security deviation/exemption requests, including:
  • Risk justification and impact analysis
  • Validation of compensating controResidual risk documentation
  • Management endorsement and tracking
• Support governance reporting, audit requirements, and security metrics consolidation.

Stakeholder Coordination

• Collaborate with developers, infrastructure engineers, and platform teams in an Agile environment.
• Lead discussions to coordinate timely security assessments and remediation activities.
• Act as liaison between project teams, risk teams, and external security vendors.
• Track remediation progress and ensure closure within agreed timelines

Skills for Success:

• Bachelor’s degree in Computer Science, Information Security, or related discipline (or equivalent practical experience).
  3–5 years of hands-on experience in Vulnerability Assessment and Penetration Testing (VAPT).

Proven experience in:

• Application security and secure SDLC
• Source code reviews
• Risk assessment and security governance
• Managing security deviations/exemptions
• Experience working in SME to Enterprise environments.

Preferred Certifications (Either or more):

• OSCP (Offensive Security Certified Professional)
• CEH (Certified Ethical Hacker)
• CISSP (Certified Information Systems Security Professional)
• CISM (Certified Information Security Manager)
• CRISC (Certified in Risk and Information Systems Control)
• GIAC certifications (e.g., GPEN, GWAPT)
• ISO 27001 Lead Implementer / Lead Auditor

Are you ready to say hello to BIG Possibilities?

Take the leap with Singtel to unlock new opportunities and accelerate your growth. Apply now and start your empowering career!