Location: Singapore / Jakarta , Indonesia / Manila, Philippines / Flexible Working Arrangement
(No visa sponsorship)
Company Overview
A leading digital insurance firm committed to transforming the insurance landscape through innovative technology and customer-centric solutions. The organization is dedicated to maintaining the highest standards of security and compliance in an increasingly digital world.
Position Overview
We are seeking a skilled professional to join the Group IT Office as Security Engineer. The successful candidate will oversee daily operational activities related to various security tools and systems, ensuring adherence to an optimal security policy framework that aligns with organizational standards. This role involves close collaboration with multiple business units across the region, including Singapore, Philippines, Indonesia etc..
Key Responsibilities
- Responsible for security technology operations, maintaining and supporting all relevant security systems and tools.
- Collaborate with broader IT teams and focused on areas such as endpoint protection, data loss prevention, email security, network security, vulnerability scanning, encryption, and key management.
- Manage rule configurations, workflows, and system operations for each security tool/system.
- Ensure that all security rules are implemented in compliance with established standards, including necessary reviews and approvals for whitelisting and exclusions.
- Uphold baseline security standards for configuration management across all tools/systems.
- Develop and implement request, review, and approval workflows to ensure consistent handling and visibility across all security tools/systems.
- Oversee system administration tasks such as access approvals, patch verification, key rotations, and other operational changes.
- Establish service level agreements based on request severity to guarantee timely responses and resolutions.
- Address escalations for each security product to identify gaps or defects and propose effective workarounds or mitigation strategies.
- Facilitate knowledge sharing within the team to enhance operational expertise and ensure continuity in managing each security tool/system.
- Standardize operational documentation for procedures and playbooks into a centralized repository for consistency.
- Work collaboratively with cross-functional teams within the technology department to manage risks associated with security tools/systems.
Required Qualifications
- Strong skills in managing stakeholder expectations across business, technical, and operational teams.
- Demonstrated end-to-end ownership in various security domains to effectively resolve issues.
- Solid understanding of general technology concepts including servers, endpoints, databases, networking, applications, middleware, and cloud environments.
Education & Experience
- A Bachelor's Degree in Information Security, Computing Engineering or a related field is required.
- At least 7 years of experience across several security domains such as endpoint protection, data loss prevention, email security, network security, vulnerability scanning, encryption, and key management is preferred.
- Experience within large organizations with regional exposure is desirable prior experience in the financial services sector is an advantage.
- Relevant information security certifications (e.g., CISSP, CCSP, CompTIA Security+, CISA, CRISC) are beneficial.
If you are passionate about enhancing security operations and meet the qualifications outlined above, we encourage you to apply for this opportunity.
BeathChapman Pte Ltd