Cybersecurity Engineer (Automation)

Assurity Trusted Solutions (ATS) is a wholly owned subsidiary of the Government Technology Agency (GovTech). As a Trusted Partner over the last decade, ATS offers a comprehensive suite of products and services ranging from infrastructure and operational services, authentication services, governance and assurance services as well as managed processes. In a dynamic digital and cyber landscape, where trust & collaboration are key, ATS continues to drive mutually beneficial business outcomes through collaboration with GovTech, government agencies and commercial partners to mitigate cyber risks and bolster security postures.Key Responsibilities:Lead the Security Orchestration, Automation and Response (SOAR) of cyber security operations processes to improve efficiency and reduce response times for security incidentsDevelop workflow processes to automate manual cybersecurity tasksDevelop and maintain automation scripts/playbooks to support the operational workflow, including reporting, monitoring and incident responseDefine and enforce playbook development standards (naming structure, parameterisation, logging)Optimize sub-playbooks for performance, logic clarity, error handling and parameter flexibilityRefactor legacy/existing playbooks for reusability, naming consistency and reduced duplicationSupport integration of SOAR platform with third party applications and systems (e.g. message bus and API gateway) based on the required workflowConduct playbook testing, validation, regression and integration testing on the automated workflow and integration code for robustness and performanceImplement and manage automation platforms and technologies across existing security frameworksCollaborate with cross-functional teams to ensure seamless integration of security automation initiativesTake the lead to work with third party system administrators or vendors to resolve integration issues and data flow issues. Defining the interface testing scenarios and testing to ensure that the integration and interfacing testing is successful. Monitor performance and reliability of automations, identify bottlenecks or failure pointsDocument all workflows, decisions logic, sub-playbook dependencies and version changesStay current with emerging security threats, technologies, and practices to propose automated solutionsProvide training and support to team members on automated security processes and toolsRequirementsAt least 3 years of experience with security orchestration, automation, and response (SOAR) platforms, preferably with Cortex XSOARStrong programming skills in languages such as Python, PowerShell, or BashProficiency in XSOAR components: playbooks, sub-playbooks, integrations, incident types, classifiers, layoutsExperience with REST APIs, JSON, and data parsingFamiliarity with incident response processes, MITRE ATT&CK framework, and SOC operationsComfortable with Git-based version control and code review workflows should XSOAR CI/CD be implementedFamiliarity with various cybersecurity frameworks and compliance requirementsUnderstanding of RBAC and case management customisation in XSOARAbility to analyse API documentation and build custom integrations where neededSecurity Certifications such as GISA, GSEC, CISSP, or CEH is an advantagePossess the following soft skills and attributes:Ability to justify new initiatives and recommend new initiatives to stakeholder(s)Effective communication skills to explain complex technical issues to non-technical audienceAdept at working independently and as part of a teamStrong problem-solving and analytical thinking skillsJoin us and discover a meaningful and exciting career with Assurity Trusted Solutions!The remuneration package will commensurate with your qualifications and experience. Interested applicants, please click "Apply Now".We thank you for your interest and please note that only shortlisted candidates will be notified.By submitting your application, you agree that your personal data may be collected, used and disclosed by Assurity Trusted Solutions Pte. Ltd. (ATS), GovTech and their service providers and agents in accordance with ATS's privacy statement which can be found at: https://www.assurity.sg/privacy.html or such other successor site.BenefitsWe promote a learning culture and encourage you to grow and learnAnnual Leave Benefits with additional perks such as Family Care and Birthday LeaveWorking in a collaborative environment with helpful team members