Now Hiring: Cybersecurity Engineer | Hybrid (Singapore)

SG
June 8, 2026

Job Description

Company: MRL Consulting Group | Global Niche Technology Recruitment

Location: SG

Cybersecurity Engineer | Hybrid (Singapore)

We are looking for a Cybersecurity Engineer to strengthen security across a complex environment of infrastructure, applications, identity platforms, and cloud/on-prem systems

This is a hands-on security engineering role focused on improving real-world security posture through practical implementation, monitoring, and continuous improvement of controls across systems and engineering processes. The environment includes a mix of legacy systems, modern cloud services, and distributed infrastructure, requiring a pragmatic and operational approach to securit y.

You will work closely with infrastructure, DevOps, software engineering, DBA, and technology teams to reduce risk, improve visibility, and embed security into day-to-day operations and delivery workflo ws.

What You’ll Be D • oing

Implement, maintain, and improve security controls across servers, endpoints, cloud services, identity platforms, and network infrastru
• ctureSupport vulnerability management activities including scanning, validation, prioritisation, tracking, and remediation repo
• rtingMonitor and triage security alerts from endpoint protection, SIEM/logging tools, identity systems, firewalls, VPNs, and vulnerability sca
• nnersInvestigate suspicious activity, document findings, and escalate incidents through defined response proc
• essesSupport incident response activities including containment, evidence collection, remediation tracking, and post-incident re
• viewsWork with infrastructure teams on server hardening, patching, configuration baselines, backup security, firewall rules, VPN access, and segment
• ationPartner with DevOps and engineering teams to embed security into CI/CD pipelines, repositories, dependency management, secrets handling, and release proc
• essesSupport identity and access management practices including least privilege, MFA, role-based access, privileged access reviews, and onboarding/offboarding proc
• essesAssist with configuration and tuning of security tools including endpoint protection, SIEM, vulnerability scanners, and cloud security ser
• vicesContribute to security reviews for new systems, integrations, infrastructure changes, and third-party
• toolsMaintain practical security documentation including policies, runbooks, procedures, and operational g
• uidesSupport compliance and audit activities by gathering evidence and tracking remediation actions (without owning governance end-to
• -end)Communicate security risks clearly to both technical and non-technical stakeholders, including impact, severity, and remediation s
• tatusContribute to security awareness by promoting practical, day-to-day security best practices across
teams

What You

• BringExperience in cybersecurity, infrastructure security, security engineering, or similar hands-on
• rolesStrong understanding of core security principles including vulnerability management, incident response, access control, and secure configuration pra
• cticesExperience with security tooling such as EDR, SIEM/logging platforms, vulnerability scanners, identity systems, or firewall/VPN techno
• logiesWorking knowledge of Windows and Linux system security including patching, hardening, logging, and troublesh
• ootingUnderstanding of network security concepts including firewalls, VPNs, DNS, IDS/IPS, segmentation, and remote access co
• ntrolsExperience with identity and access management (MFA, RBAC, privileged access, least privilege, access re
• views)Ability to investigate alerts, analyse logs, validate vulnerabilities, and drive issues through remed
• iationFamiliarity with DevSecOps principles including secure SDLC, dependency scanning, secrets management, and CI/CD security integ
• rationAbility to collaborate effectively with infrastructure, DevOps, engineering, DBA, and business teams without blocking de
• liveryStrong documentation and communication skills, with the ability to explain risks and remediation c
• learlyHigh ownership mindset with structured troubleshooting and incident investigation
• skillsComfortable working in distributed teams across multiple time
zones
Nice • to HaveExperience with Microsoft security stack (e.g. Defender, Entra ID, Intune, Sentinel or related t
• ooling)Experience in hybrid environments spanning on-prem infrastructure and cloud platforms (Azure, AW
• S, GCP)Familiarity with vulnerability remediation across servers, endpoints, networks, databases, and appli
• cationsKnowledge of frameworks such as SOC 2, ISO 27001, NIST, CIS Controls,
• or GDPRExperience with secure baselines, patch management, configuration drift, and endpoint management pr
• acticesExposure to application security tooling

Source: BeBee