About the Role
We are seeking a highly motivated Security Engineer to join our team and support the tailor-made solution for E&M / Environmental Projects. The successful candidate will play a critical role in ensuring the security governance, risk management, and compliance of government utility systems and infrastructure.
Responsibilities
- Create and implement security plans for government utility systems, and on-premises infrastructure.
- Develop and implement security solutions covering data protection, vulnerability management, security architecture and engineering, including preparation of Security Assessment Report (SAR).
- Ensure all system deployments align with the security standard from Digital Policy Office (DPO).
- Lead and manage Security Risk Assessment and Audit (SRAA) exercises.
- Act as the single point of contact for Security Governance, Risk and Compliance.
- Build and maintain strong client relationships, particularly with GRC & security organization (CISO) and staff.
- Manage, assess, and handle security incidents.
- Participate in security audit hosting and audit remediation activity.
- Ensure knowledge and implementation of security fundamentals, policies and standards (regulatory and contractual).
Requirements
- Bachelor's degree in Information Technology, Computer Science, or related disciplines.
- Strong background in security engineering, governance, risk, and compliance.
- Knowledge of the security assessment tools in the market
- Familiarity with security frameworks
- ISO27001 and Digital Policy Office (DPO).
- Holder of CISSP certification, CISM or CRISC.Proven experience in preparing Security Assessment Report (SAR).
- Self-motivated with a positive can-do attitude
- Minimum 3–5 years of proven experience in a Security Engineer role.
- Proven track record of designing and managing the security architectures.
