Vulnerability Management Engineer

Weare seeking a highly skilled, hands-on Vulnerability Management Engineer whowill be responsible for identifying, assessing, and mitigating vulnerabilitiesin the organization's IT infrastructure. You will conduct regular vulnerabilityscans, evaluate potential threats, and work closely with IT and security teamsto implement effective remediation strategies. This role is crucial inmaintaining the organization's security posture and protecting critical assetsfrom cyber threats.

Responsibilities:

Vulnerability Management

. Managevulnerability scanners and agents. Monitor status, plugin update failures, andconnectivity issues

. Designand tune scan policies to balance depth (thoroughness) with performance(network impact).

. Triagenew vulnerabilities (CVEs) as they are released. Prioritize risks using CommonVulnerability Scoring System (CVSS) scores.

. Ensureall systems remain compliant with security baselines, regulatory expectations,and internal security policies

. Analysevulnerability reports and recommend actionable remediation steps

User Support & Operations

. ProvideLevel 2 / Level 3 support for incidents and service requests

. Workwith system owners, app support, developers, and infrastructure teams tocoordinate patch deployment during pre-approved weekend maintenance window andverify post-patch stability

IT Service Management

. UnderstandsITIL processes for Incident, Problem, Change Management

. Createand update tickets with detailed documentation and resolution steps

. MaintainSLAs and ensure timely ticket resolution

Documentation & Knowledge Management

. Createand maintain technical documentation, knowledge articles, and standardoperating procedures (SOPs)

. Maintainrunbooks for common operational tasks

Required skills and qualifications:

. Singaporeansonly

. Degreein Computer Science, Computing, Electrical Engineering, IT or equivalent withat least 2-4 years experience in vulnerability management, system programming

. Practicalexperience with vulnerability scanning tools (Tenable or Qualys or Rapid 7).

. Abilityto interpret vulnerabilities across Windows Server, RHEL, and NetworkInfrastructure (e.g. Palo Alto)

. Participate in 24/7 standby rotationto provide operational support

Preferred skills and qualifications:

. Experience with scripting (PowerShell, Bash,Python) for automation

. Experience with Dynatrace

. Knowledge of cloud computing (Amazon WebServices preferred)

Please share your profile to [Confidential Information]