About the role

In this role, you will apply foundational security principles to real-world engineering challenges while executing security tasks with increasing independence. Depending on your area of focus, you may contribute to improving security implementations, automating security processes, reviewing secure code and design patterns, and evaluating new cybersecurity tools. You will work closely with security and product teams to support threat modelling, implement security controls, and perform security-related operations to secure government systems.

Key responsibilities

Perform routine reporting and dashboarding activities, leveraging automation to improve efficiency

Support the review of VAPT findings and contribute to remediation planning

Validate security vulnerabilities and findings from various assessment reports

Refine incident response playbooks

Contribute to compliance-related documentation and evidence collection

Assist in implementing security controls and operational security tasks

Participate in threat modelling exercises and identify security requirements from policies

Perform periodic IAM role reviews to ensure least privilege access principles

Apply security standards and controls across CI/CD pipelines, Kubernetes platforms, and cloud environments

Support incident response activities and escalate complex issues appropriately

About you

Foundational knowledge in security architecture, secure system design, and threat modelling

Ability to perform guided vulnerability validation and support remediation

Familiarity with securing CI/CD platforms, Kubernetes environments, and cross-cutting platform products

Exposure to developer-centric tools including agentic AI workflows and coding assistants

Familiarity with SIEM platforms, EDR tools, and cloud-native security monitoring

Ability to follow and contribute to detection logic, incident response playbooks, and threat hunting processes

Scripting or automation skills (e.g. Python, Bash) for security tooling and workflow automation

Understanding of identity and access management, secrets management, and zero trust principles

Degree in Infocomm Security, Computer Science, Computer/Electronics Engineering, or Information Technology

Desirable: OSCP, CISSP, or other relevant cybersecurity certifications