Security Engineer

TMGM Singapore is a dynamic and rapidly growing startup within the global financial services industry. As part of a global company, TMGM Singapore offers a fast paced, innovative environment with opportunities for growth and development.

We're seeking a talented Senior Security Engineer to join our team and play a vital role in protecting our systems, infrastructure, and data. In this role, you'll be at the forefront of monitoring, investigating, and responding to threats, while also driving initiatives that strengthen our security posture. If you're passionate about security, love problem solving, and thrive in fast paced environments, we'd love to hear from you.

Key Responsibilities Endpoint & Detection Operations

• Operate and fine tune EDR, ensuring high visibility and timely response to detections.
• Investigate alerts, triage incidents, and coordinate remediation with IT and engineering teams.
• Develop and maintain detection rules, response playbooks, and operational dashboards.

Vulnerability & Exposure Management

• Run regular vulnerability scans across endpoints, servers, and cloud workloads.
• Prioritise findings based on exploitability and asset criticality.
• Work with system owners to track remediation progress and verify fixes.

Cloud Security (AWS Focus)

• Review and improve AWS configurations using AWS tools or CNAPP / CSPM monitoring tools (e.g., Wiz, Orca)
• Support secure architecture and IaC practices (Terraform, CloudFormation) with dev teams.
• Automate checks and alerting for misconfigurations and policy violations.

Secure Development & DevSecOps (Nice to Have)

• Support developers on secure coding practices and pipeline integration (e.g., Snyk).
• Review secrets management, API credential handling, and CI/CD pipeline security.

Identity & Access Control

• Implement and maintain least privilege and MFA policies across systems.
• Assist with SSO/SCIM integrations (e.g., Entra ID, 1Password, Cloudflare Zero Trust).

Collaboration & Continuous Improvement

• Work alongside IT Operations and Cloud teams to deploy, harden, and monitor security tools.
• Participate in incident response exercises, phishing simulations, and post incident reviews.
• Contribute to process documentation and internal knowledge base (e.g., runbooks, playbooks).

• 4-6 years of hands on security experience, ideally in endpoint protection, cloud security, or vulnerability management.
• Strong working knowledge of AWS security services, IAM, and network fundamentals.
• Practical experience with EDR tools (CrowdStrike, Defender, etc.) and vulnerability scanners (Qualys, Tenable, etc.).
• Solid understanding of incident response, detection engineering, and access control principles.
• Exposure to security frameworks (ISO 27001, SOC 2, NIST) is a plus, but not mandatory.
• Clear communicator who can explain security findings to both technical and non technical teams.

Bonus Point

• Experience in DevSecOps, IaC security, or secure software development.
• Prior work with automation and API integration between security tools.
• Any relevant certifications (AWS Security Specialty, CrowdStrike CCP, OSCP, etc.).

• Competitive salary and performance based bonuses.
• Opportunities for career growth and development within a global company.
• Collaborative and inclusive work environment with exposure to cross region operations.
• Health and wellness benefits.