Software Engineer

Job Scope : Vulnerabilities Management 1.   Arrange Bi-weekly vulnerability review meeting with application SA OICs. 2.  Consolidate the results from the various vulnerabilities platform (i.e. AppScan, SonarQube and Nexus Scanning). 3.  Perform quarterly result consolidating and seek risk acceptance for extension of vulnerability remediation timeline. 4.  Perform result consolidating and tracking of risks and timeline from other sources. 5.  Perform waive of nexus policy violation in SHIP-HATS when instructed. Security Testing 1.   Prepare all the pre-requisite (e.g. software installation, firewall request, laptop request) to ensure security testing can be started timely. 2.   Perform technical resolution for AppScan, SonarQube, Nexus and SHIP-HATS or any other security tools when required. 3.   Conduct network vulnerability scan (Nmap scanning). Security Training 1.   Administer the Secure Code Warrior training to enroll new member and consolidate the results. Other Security Related Task 1.   Track and coordinate the regular review activities of all IT systems with SA OICs. 2.   Track and coordinate the regular review activities for all SaaS with User OICs. 3.   Facilitate the onboarding and ensure proper security training of Non-staff in ISGGs. Experience and skills requirements : ·   Degree in Computer Science, Information Systems, Information/ Infocomm Technology, Computer or Electronics Engineering or related discipline. ·      Must have minimum 4 years of working experience in this role.