Software Engineer

Job Scope :
Vulnerabilities Management

1. Arrange Bi-weekly vulnerability review meeting with application SA
OICs.
2. Consolidate the results from the various vulnerabilities platform (i.e.
AppScan, SonarQube and Nexus Scanning).
3. Perform quarterly result consolidating and seek risk acceptance for
extension of vulnerability remediation timeline.
4. Perform result consolidating and tracking of risks and timeline from
other sources.
5. Perform waive of nexus policy violation in SHIP-HATS when
instructed.

Security Testing

1. Prepare all the pre-requisite (e.g. software installation, firewall
request, laptop request) to ensure security testing can be started
timely.

2. Perform technical resolution for AppScan, SonarQube, Nexus and
SHIP-HATS or any other security tools when required.

3. Conduct network vulnerability scan (Nmap scanning).

Security Training

1. Administer the Secure Code Warrior training to enroll new member
and consolidate the results.

Other Security Related Task

1. Track and coordinate the regular review activities of all IT systems
with SA OICs.

2. Track and coordinate the regular review activities for all SaaS with
User OICs.

3. Facilitate the onboarding and ensure proper security training of
Non-staff in ISGGs.

Experience and skills requirements :

. Degree in Computer Science, Information Systems, Information/
Infocomm Technology, Computer or Electronics Engineering or
related discipline.

. Must have minimum 4 years of working experience in this role.