logo
Government Technology Agency

Government Technology Agency

Senior Cybersecurity Engineer

GovTech is the lead agency driving Singapore’s Smart Nation initiatives and public sector digital transformation. As the Centre of Excellence for Infocomm Technology and Smart Systems (ICT & SS), GovTech develops the Singapore Government’s capabilities in Data Science & Artificial Intelligence, Application Development, Smart City Technology, Digital Infrastructure, and Cybersecurity.  
 
At GovTech, we offer you a purposeful career to make lives better where we empower our people to master their craft through robust learning and development opportunities all year round. 
 
Play a part in Singapore’s vision to build a Smart Nation and embark on your meaningful journey to build tech for public good. Join us to advance our mission and shape your future with us today!  
 
Learn more about GovTech at tech.gov.sg. 


You will lead initiatives in security engineering, security architecture, or emerging cybersecurity technology research, taking ownership of complex security implementations and contributing to scalable solutions for government systems.


You will work on a set of core engineering platform products in the Singapore Government Tech Stack (SGTS), collaborating with developers, infrastructure teams, and security architects to embed security across government systems in alignment with broader cybersecurity policies.
 

[What You Will Be Working On]

Security Architecture & Engineering

  • Design secure system architectures adhering to best practices, running POCs to meet stakeholder requirements

  • Perform threat modelling exercises and propose risk mitigation strategies

  • Define and enforce security standards across CI/CD pipelines and Kubernetes platforms

  • Embed security controls into developer-centric tooling including agentic AI and coding assistants


Cyber Defence & Incident Response

  • Lead or support incident response activities, including scoping, containment, eradication and post-incident reviews

  • Perform alert triage and investigation across security monitoring platforms (SIEM, EDR, cloud-native tools)

  • Develop and refine detection rules, playbooks, and response runbooks

  • Conduct threat hunting to proactively identify indicators of compromise or lateral movement

  • Analyse threat intelligence and translate findings into defensive measures

  • Collaborate with Govtech Operation and Incident Response teams during security incidents

  • Partner with Chief Information Security Officer (CISO), stakeholders, project teams, and vendors to ensure security objectives are achieved.


Product Engineering

  • Design and implement security features spanning multiple services, with considerations for modularity, scalability, and resiliency

  • Evaluate solution options and contribute to selecting approaches aligned with product and organisational goals, contributing to improving security posture of products.

  • Proactively reduce technical security debt and maintain long-term system health

  • Participate in technical decision-making on design and implementation trade-offs between usability and security

Emerging Technology Research

  • Independently explore securing emerging technologies, and emerging security controls and conduct comparative analysis

  • Build and test early prototypes; validate effectiveness through controlled experiments


Leadership & Collaboration

  • Drive security initiatives that support divisional strategic objectives

  • Coordinate cross-functional collaboration and facilitate alignment among team members and stakeholders

  • Mentor and grow team members, contributing to capability development across the team

  • Support team coordination and help resolve day-to-day technical blockers


[What We Are Looking For]

Technical Skills

  • Strong foundation in security architecture, secure system design, and threat modelling

  • Hands-on experience with VAPT review and translating findings into remediation plans

  • Review and improve draft proposal for risk acceptances

  • Familiarity in securing CI/CD platforms, Kubernetes environments, and cross-cutting platform products

  • Familiarity with developer-centric tools including agentic AI workflows and coding assistants

  • Experience with SIEM platforms, EDR tools, and cloud-native security monitoring

  • Ability to develop detection logic, incident response playbooks, and threat hunting methodologies

  • Scripting or automation skills (e.g. Python, Bash) for security tooling and workflow automation

  • Able to articulate cybersecurity risks, mitigation measures and residual risks orally and in writing to stakeholders, in an easily understood and actionable manner.

  • Possess knowledge of system security architecture concepts including network topology, protocols, components and principles (e.g. application of Defence in Depth), and able to specify where and how security controls should be applied to or engineered into the security design.


Behavioural Expectations

  • Self-directed and comfortable operating under loosely defined objectives

  • Able to lead a squad / small team to accomplish complex tasks

  • Strong prioritisation skills for both individual and group workstreams

  • Proactively identifies improvements at team and product level

  • Navigates across teams with ease; influential within team


Education & Experience

  • Degree in Infocomm Security, Computer Science, Computer/Electronics Engineering, or Information Technology

  • Minimum 5 years of professional experience in cybersecurity engineering, with hands-on work in security operations, risk assessment, or compliance within cloud environments.

  • Relevant experience or demonstrated high potential backed by a strong track record is desirable


Certifications

  • OSCP, CISSP, or other relevant cybersecurity certifications are highly desirable


What we offer you:   

GovTech is an equal opportunity employer committed to fostering an inclusive workplace that values diverse voices and perspectives, as we believe that diversity is the foundation to innovation.    

Our employee benefits are based on a total rewards approach, offering a holistic and market-competitive suite of perks. These include leave benefits to meet your work-life needs and employee wellness programs.  

We champion flexible work arrangements (subject to your job role) and trust that you will manage your own time to deliver your best, wherever you are, and whatever works best for you.   

 

Learn more about life inside GovTech at go.gov.sg/GovTechCareers. 
Stay connected with us on social media at go.gov.sg/ConnectWithGovTech 

About your application process

If you do not hear from us within 4 weeks of the job ad closing date, we seek your understanding that it is likely that we are not moving forward with your application for this role. We thank you for your interest and would like to assure you that this does not affect your other job applications with the Public Service. We encourage you to explore and apply for other roles within Government Technology Agency or the wider Public Service.