Thales is a global technology leader trusted by governments, institutions, and enterprises to tackle their most demanding challenges. From quantum applications and artificial intelligence to cybersecurity and 6G innovation, our solutions empower critical decisions rooted in human intelligence. Operating at the forefront of aerospace and space, cybersecurity and digital identity, we’re driven by a mission to build a future we can all trust.
In Singapore, Thales has been a trusted partner since 1973, originally focused on aerospace activities in the Asia-Pacific region. With 2,000 employees across three local sites, we deliver cutting-edge solutions across aerospace (including air traffic management), defence and security, and digital identity and cybersecurity sectors. Together, we’re shaping the future by enabling customers to make pivotal decisions that safeguard communities and power progress.ROLE DESCRIPTION SUMMARY
The Cybersecurity System Engineer contributes to the development, application and assessment of the Security controls to AMS Systems, including Products, Projects for delivery to the customer and internal systems.
The Cybersecurity System Engineer is under the supervision of the Project Security Manager (PSecM) and Squad Scrum Master.
KEY ACTIVITIES AND RESPONSIBILITIES
As a Cybersecurity System Engineer, you are accountable for:
The Cybersecurity System Engineer contributes to the development, application and assessment of the Security controls to AMS Systems, including Products, Projects for delivery to the customer and internal systems.
The Cybersecurity System Engineer is under the supervision of the Project Security Manager (PSecM) and Squad Scrum Master.
KEY KNOWLEDGE AND EXPERIENCE
To be successful in your role, you will have demonstrated and/or acquired the following knowledge and experience:
RESPONSIBILITIES:
Contribute to and lead where assigned to the design and development of solutions to meet customer requirements, whilst ensuring the alignment with the cybersecurity programContribute to and lead where assigned the definition of solutions that deliver the best trade-off between requirements, cost, schedule and risk satisfying our customer needsCoordinate with internal stakeholders, advising on security controls and processes / proceduresDevelop or update the relevant cybersecurity documentation development such as:Statement of Applicability Security requirements and associated designSecurity Incident Response PlanSystem Security PlanStandard Security Operational ProceduresContribute to Engineering Change Proposals (ECPs) and Problem Change Requests (PCRs)Participate and lead technical reviews and working groups as requiredProvide leadership of security control implementation and monitoringConduct periodic reviews of the implemented security configuration to align with selected security framework(s)Perform Vulnerability Assessments by the conduct of regular vulnerability scans and cyber security auditsGenerate Vulnerability report with recommendation in project context – Relying on the PSIRT team. Support security patch managementLead where assigned the integration and verification of security controlsLead where assigned the application and operation of procedural and technical security controlsContribute to cybersecurity test campaignsContribute to Security risk assessmentsDeliver fundamental-level cyber security training in an accessible, easy-to-understand mannerPromote knowledge sharing ensuring that work is captured sufficiently for re-use across projectsFollow Thales processes and practises and contribute to their improvementKnowledge, Skills & Experience
Qualifications
Degree in Engineering, Computer Science or related discipline majoring in CybersecurityPostgraduate studies in Cybersecurity (Desirable)Essential Experience
5+ years of proven experience in the Cybersecurity fieldStrong knowledge in Cybersecurity solutions (e.g. IAM, PAM, SIEM, EDR, Keys, Firewall)Strong knowledge in Cybersecurity engineering activitiesKnowledge of Systems Engineering Lifecycle and relevant standards eg. ISO/IEC15288Demonstrated ability to achieve effective outcomes in a multidiscipline, multi-culture environmentA positive attitude combined with excellent interpersonal and motivational skills.Sound judgement and independent decision-making capability where necessaryDesirable:
Industry qualifications, such as CISSPExperience in system hardening and hardening review based on CIS Benchmarks or DISA STIG frameworks.Knowledge of ISO 27001 foundational requirements.Experience in country security regulations (e.g. CCOP and IM(ICT&SS) for Singapore)
Experience in ATM Domain and related standards eg. ICAO, Eurocontrol , or safety critical systems.Experience in System Engineering tools eg. DOORs, Polarian, JiraExperience in vulnerability management and threat modelingExperience in working in a Scaled Agile Framework (SAFe)General / Special Requirements
Assist in ensuring a harmonious work environment in all departments that you are working with by upholding Thales' key values.An advocate for diversity and inclusion who will be actively involved in implementing change initiatives to achieve our diversity goalsAn advocate for a culture of continuous improvementAn advocate for Accountability, transparency and curiosityComply with all relevant company Occupational Health, Safety and Environmental policies and framework and work practices with the intent of preventing or minimising accidental exposures to self, colleagues, visitors and/or the environment and to ensure a safe work practises at all times.Comply with all relevant Company policies and procedures.SPECIAL REQUIREMENTS
Occasional international travel may be requiredSingapore CAT2 Clearance may be requiredAt Thales, we’re committed to fostering a workplace where respect, trust, collaboration, and passion drive everything we do. Here, you’ll feel empowered to bring your best self, thrive in a supportive culture, and love the work you do. Join us, and be part of a team reimagining technology to create solutions that truly make a difference – for a safer, greener, and more inclusive world.