Overview

Technology Information Security Office (TISO)

Security Testing Specialist   (240001P6)

Description

 

Roles and Responsibilities:

  1. Perform application penetration testing on web-based applications, APIs
  2. Perform mobile application penetration testing across different mobile platforms
  3. Perform network penetration testing on systems.
  4. Exploit vulnerabilities to gain access and expand access to remote systems.
  5. Document and explain the technical details of the security issues identified during security assessments and recommend mitigation controls for remediation.
  6. Research cutting edge security topics and new attack vectors
  7. Conduct compliance testing on web-based application, mobile applications and thick/thin-client application that meet predetermined Technology Security Standards and other regulatory requirements such as MAS TRMG.
  8. Conduct secure code review when required
  9. Perform thick client penetration testing when required

 

Qualifications

 

Requirements:

  1. Minimum 3 years of hands-on penetration testing experience for web applications, mobile applications, and APIs
  2. Experience conducting Secure Code Review
  3. Degree in computer science/computer engineering/information security or equivalent.
  4. A working knowledge of all aspects of information security is essential.
  5. Familiarity of MAS TRMG and other regulatory/industries requirements.
  6. Good communication (spoken and written) skills, able to work independently and as a team
  7. Certifications from either GIAC/Offensive Security/CREST required.
  8. Hands on experience in using Kali Linux, tools such as Burp, Tenable and other penetration testing, and secure code review tools
  9. Experience in conducting penetration testing for Banks in Singapore will be highly preferred
  10. Experience in conducting code review for AS400 and legacy mainframe systems will be an advantage

 

Primary Location

: Singapore

Job

: Information Security

Organization

: Technology Information Security Office (TISO)

Schedule

: Permanent

: Full-time

Job Posting

: 17-Nov-2024, 5:12:19 PM

Tagged as:

About OCBC Bank

OCBC is the longest established Singapore bank, formed in 1932 from the merger of three local banks, the oldest of which was founded in 1912. It is now the second largest financial services group in Southeast Asia by assets and one of the world’s most highly-rated banks, with an Aa1 rating from Moody’s. Recognised for its financial strength and stability, OCBC is consistently ranked among the World’s Top 50 Safest Banks by Global Finance and has been named Best Managed Bank in Singapore by The Asian Banker.

OCBC and its subsidiaries offer a broad array of commercial banking, specialist financial and wealth management services, ranging from consumer, corporate, investment, private and transaction banking to treasury, insurance, asset management and stockbroking services.

OCBC’s key markets are Singapore, Malaysia, Indonesia and Greater China. It has more than 570 branches and representative offices in 19 countries and regions. These include about 300 branches and offices in Indonesia under subsidiary Bank OCBC NISP, and over 90 branches and offices in Mainland China, Hong Kong SAR and Macau SAR under OCBC Wing Hang.

OCBC’s private banking services are provided by its wholly-owned subsidiary Bank of Singapore, which operates on a unique open-architecture product platform to source for the best-in-class products to meet its clients’ goals.

OCBC's insurance subsidiary, Great Eastern Holdings, is the oldest and most established life insurance group in Singapore and Malaysia. Its asset management subsidiary, Lion Global Investors, is one of the largest private sector asset management companies in Southeast Asia.