Senior Cyber Security Testing Specialist
Senior Cyber Security Testing Specialist
Posted on :
24-08-2025
Employer Active
1 Vacancy
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Share
Send me jobs like this
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Job Description
Be a Part of Something BIG!
Seeking a highly skilled and motivated Senior Cyber Security Testing Specialist who is skilled in application and infrastructure penetration testing vulnerability assessment and secure code review to conduct guide and review the work of external and cross function team security this role you will be responsible for assessing and enhancing the security posture of the organisations critical applications and infrastructure through comprehensive testing vulnerability assessment and penetration testing techniques. Your expertise will play a crucial role in identifying security vulnerabilities and recommending risk mitigation strategies to different senior stakeholders
Make An Impact By
- Coordinate and Oversee Penetration Testing & Vulnerability Assessment Engagements:
- Manage and coordinate penetration testing and vulnerability assessment engagements with external vendors ensuring effective communication and collaboration between internal stakeholders and vendors.
- Work closely with Domain security champions to review and tailor the scope rules of engagement testing methodologies and reporting for external penetration tests and vulnerability assessments.
- Collaborate with cross-functional teams to provide guidance on Singtels security standards recommend best practices and advise on effective remediation strategies.
- Review penetration testing reports prioritize identified vulnerabilities and coordinate efforts to address them in a timely manner.
- Track and report on the progress and outcomes of penetration testing and vulnerability assessments ensuring that all findings are addressed appropriately.
- Maintenance of tools and Conduct Various Penetration Tests:
- Perform different types of penetration testing (e.g. AI models application API Infrastructure etc.) following recognized methodologies including OWASP and Singtels internal standards utilizing both manual and automated testing methods as needed.
- Maintain and configure the tests required of automated testing tools to support black box and white box testing and ensure alignment with latest industry test requirements e.g. OWASP covering all forms of technologies e.g. Cloud Apps On-prem Apps COTS products In-house developed Apps AI models APIs OS DB VM Network devices etc.
- Identify gaps in automated testing tools and propose new tooling required to augment testing program as needed
- Bug Bounty Program Management:
- Oversee and manage the bug bounty program and associated platforms for identifying and addressing reported vulnerabilities.
- Validate/ triage the reported vulnerabilities assess their impact on Singtels systems and collaborate with relevant stakeholders to prioritize and remediate the issues.
- Track and report on findings and outcomes from the bug bounty program to ensure timely resolution.
- Develop engaging programs to boost the visibility and popularity of Singtels bug bounty program.
- Secure Code Review Program Management:
- Manage and conduct secure code reviews using scanning tools and techniques to identify security weaknesses in software code.
- Analyze the results from code scans and work closely with development teams to implement necessary security fixes.
- Assist in the creation and implementation of secure coding practices across the organization.
- Vulnerability Retesting and Documentation:
- Retest security vulnerabilities arising from various sources e.g. Bug Bounty Penetration testing etc. after remediation and update reports with the latest results and outcomes.
- Develop and maintain comprehensive documentation for all vulnerability assessments secured code reviews and penetration tests including detailed findings methodologies and recommendations for improvements etc.
- Stay Current with Security Trends and Threats:
- Continuously monitor the latest security trends emerging vulnerabilities and attack techniques to ensure that security testing methodologies and tools remain up-to-date and effective.
Skills for Success:
- Bachelors degree in Computer Science Information Security or a related field.
- Attained OSCP or CREST.
- At least 5 years of experience working in Cyber and Information security field
- Solid experience in application security testing vulnerability assessment secure code review and penetration testing.
- Proficiency in performing AI models API and application security testing using manual techniques as well as utilizing runtime vulnerability testing tools and/or code review tools.
- Strong understanding of OWASP Top 10 CWE/SANS Top 25 and other common vulnerability frameworks.
- Out of which at least 3 years experience in delivering various AI model API application infrastructure penetration testing vulnerability assessment and secure code review.
- Proficiency in performing AI model API and application security assessment using manual techniques.
- Proficient in using and managing various security tools and products like Fortify AppScan Webinspect Burp Suite Nessus Guardrails AI Giskard Moonshot Deepcheck Evidently Pyrit Adversarial Robustness Toolbox (ART) PyRIT etc.
Rewards that Go Beyond
- Full suite of health and wellness benefits
- Ongoing training and development programs
- Internal mobility opportunities
Are you ready to say hello to BIG Possibilities
Take the leap with Singtel to unlock new opportunities and accelerate your growth. Apply now and start your empowering career!
Required Experience:
Senior IC
Employment Type
Full-Time
Key Skills
Report This Job
Disclaimer: Drjobpro.com is only a platform that connects job seekers and employers. Applicants are advised to conduct their own independent research into the credentials of the prospective employer.We always make certain that our clients do not endorse any request for money payments, thus we advise against sharing any personal or bank-related information with any third party. If you suspect fraud or malpractice, please contact us via contact us page.
