For this project, we are forming a team of 6 (including 1 team lead) to assist in a huge government project to perform the following scope of works:
- Security Risk Assessment
- Security Policies, Standards, Guidelines, And Procedures Review
- Security Design
- Application Security
- Vulnerability assessment and
- System Security Acceptance Testing
- Cloud Security
The selected candidate will be working collaboratively within the team to fulfil the project requirements. As such, there is no expectation for one individual to possess all skill sets in the 6 domains.
Responsibilities:
- Support the execution of security risk assessments across various environments including on-premise, cloud, DevOps, IoT, and third-party systems
- Assist in performing vulnerability assessments, analyzing findings, and documenting remediation recommendations
- Contribute to the review of security policies, standards, and procedures, ensuring alignment with industry and regulatory requirements
- Participate in application security activities such as secure code reviews, threat modelling, and CI/CD pipeline assessments
- Support cloud security assessments, including configuration reviews, access controls, and data protection practices across public and hybrid cloud platforms
- Assist in System Security Acceptance Testing (SSAT) by executing test scenarios, analyzing results, and documenting security gaps
- Document security findings, assist in preparing risk reports, and help maintain the security risk register
- Collaborate with other team members to support the delivery of cybersecurity assessments, design reviews, and compliance activities
- Perform all tasks and duties as assigned to support the completion of project, including any ad-hoc activities necessary to fulfill the client’s scope of work