Sopra Steria is a listed European technology leader specializing in Consulting, Digital Services, and Software. With over 51,000 employees worldwide across Europe, North America and Asia, the Group supports organizations in driving their digital transformation and delivering sustainable business value.
In Asia Pacific, Singapore serves as the regional headquarter for Sopra Steria’s Infrastructure, Cloud and Cybersecurity services.
Position Summary
We are seeking an experienced Cybersecurity Operations Lead to oversee mission-critical security operations in a 24×7 environment. This role is responsible for threat monitoring, incident response, vulnerability management, and ensuring compliance with IM8 governance standards. You will lead a team of cybersecurity engineers, manage security infrastructure, and drive continuous improvement in operational security practices.
Key Responsibilities
Threat Monitoring & Incident Response
- Oversee day-to-day security monitoring using SIEM and endpoint protection tools.
- Lead incident response, containment, eradication, and root cause analysis for cybersecurity events.
- Ensure clear incident classification, escalation workflows, and communication protocols.
Vulnerability & Patch Management
- Lead vulnerability assessments and penetration testing programs.
- Manage remediation of vulnerabilities across servers, network devices, middleware, and containers.
- Ensure timely patching cycles across all environments.
Security Infrastructure & System Hardening
- Implement, configure, and maintain security technologies (firewalls, IDS/IPS, HSM, PAM).
- Oversee OS, application, and network hardening (RHEL, Windows Server, Kubernetes).
- Review and approve security architecture designs for new components and projects.
Privileged Access Management
- Govern privileged access across Active Directory domains.
- Ensure segregation of duties, emergency access procedures, and periodic access reviews.
Governance & Compliance
- Enforce compliance with IM8 cybersecurity policies and standards.
- Drive audit readiness, maintain risk registers, and track remediation progress.
Team Leadership
- Liaise with cross function teams
- Ensure clear documentation, SOPs, and knowledge transfer for all security activities.
- Drive continuous training and certification for team members.
Qualifications
Education & Experience
- Bachelor’s degree in Information Security, Computer Science, Engineering, or related discipline.
- Minimum 5 years of proven experience in cybersecurity or information security roles supporting mission-critical operations, preferably in the public sector.
- Strong competency in operating system security (RHEL, Windows Server), network security, and Kubernetes security.
- Hands-on experience with tools such as SIEM (LogRhythm), Vulnerability Scanner (Nessus), IAM/PAM (BeyondTrust/CyberArk), HSM, TLS/PKI, Firewalls (Check Point, Palo Alto), IDS/IPS
Certifications (Preferred)
- CISSP, CISM, CEH or equivalent
Knowledge & Skills
- Security principles (CIA, defense in depth, least privilege).
- Networking and OS fundamentals.
- Identity & Access Management, cryptography basics.
- Application security fundamentals (OWASP Top 10, secure coding principles).
- Incident response and IM8 compliance knowledge.
Personal Attributes
- Strong composure under pressure and ability to lead during incidents.
- Excellent communication skills (written and spoken).
- High integrity, attention to detail, and accountability.
- Proactive, collaborative, and able to manage cross-functional coordination
•Work-life balance: Hybrid working mode and Work-from-Abroad benefits, 18 days of Annual leave
•Health & insurance: Comprehensive coverage including General Practitioner, hospitalization, dental, and optical
•Performance incentives: Annual bonus based on individual performance
•Learning & development: Training programs, certification opportunities, and training incentives to support career growth
•Team culture: Regular team-building activities and social events
.jpeg)
