GovTech

Technology

Principal/LeadSoftwareEngineer(CybersecuritySpecialist)

S$185–275k ~AI est. Singapore, Singapore

Market Sentiment

HIGH DEMAND

Neural analysis suggests this role is
optimal for Lead candidates.

The Brief

“Principal / Lead Software Engineer (Cybersecurity Specialist) at GovTech. Skills: Cybersecurity architecture, Resilience engineering, Secure SDLC. Design and embed security controls. Embed resilience controls”

What You'll Achieve.

TradeNet security architecture conformant; Documented defensible conformance basis; Coherent evidenced security architecture; Engineered national trade-continuity posture; Recoverability designed property; Degraded-mode operation designed property; Containment blast radius designed property; Explicit control boundary; Security control intent expressed code; Continuously monitored controls; Culture of security

Industry & Context.

Technology

Problems you'll solve

Root cause analysis

What They're Looking For.

Must Have

10+ years Cybersecurity Software Engineer, Design security architecture, Implement security architecture, Coach engineering teams, Understand cybersecurity tooling, Design security into regulated systems, Implement security into regulated systems, Working command Singapore regulatory frameworks, Translate obligation into architecture, Delineate control inheritance, Systems thinking, Depth cloud platform security architecture, Depth identity, Depth encryption key management, Depth segmentation zero-trust, Depth secure SDLC policy-as-code, Fluency architectural adversary frameworks

Nice to Have

MITRE ATT framework

What You'll Do.

Design and embed security controls

Embed resilience controls

Decide inherited security tech stack

Build owned security tech stack

Design defensive terrain

Own reference security architecture

Define trust boundaries

Define identity architecture

Define segmentation strategy

Define trust-zone strategy

Define east-west controls

Define encryption key management

Define blast-radius containment

Embed secure-by-design controls

Maintain living threat model

Provide engineering guidance

Provide incident-response support

Engineer external VAPT

Validate vulnerability closure

How You'll Work.

Team & Collaboration

Product and engineering teams; Singapore Customs Agency CISO; SIRO; ACISO; GCSOC

Full Job Description

About GovTech The Government Technology Agency (GovTech) transforms the delivery of Government digital services by taking an "outside-in" view, putting citizens and businesses at the heart of everything we do. We build the Smart Nation infrastructure and the platforms the public sector runs on, and we partner agencies to engineer trustworthy, resilient digital services at national scale. What is this role? TradeNet is Singapore's national single-window trade platform and a legislated Critical Information Infrastructure (CII). Its availability and integrity underpin national trade continuity; disruption is an economic event, not a system outage. We are seeking a Principal / Lead level Software Engineer (Cybersecurity Specialist) to be the technical design authority for the modernised TradeNet CII rebuild, focusing on architecture security and resilience. This is an architect-and-build mandate, not an assurance or operations role. As a first-line engineering role, you will Design and embed security and resilience controls into the platform starting from the architecture and down to the implementation details. Decide what is inherited from the GovTech security tech stack versus built and owned by the product team. Design the defensive terrain jointly with the Singapore Customs Agency CISO (ACISO) so that the agency can defensibly discharge its CII regulatory accountability to Cyber Security Agency (CSA). You will be measured on the delivery of TradeNet CII that is secure and resilient by design and construction — not on the volume of findings triaged or evidence produced after the fact. Impact and outcomes You will be successful when: TradeNet's security architecture is conformant with CSA CCoP v2 and WOG IM8 by design, not by downstream remediation, and the conformance basis is clearly documented and defensible to CSA. The Customs ACISO can stand behind a coherent, evidenced security and resilience architecture for the CII without reconstructing it from operational ar

Free ATS check

Applying for this Principal / Lead Software Engineer (Cybersecurity Specialist) role?

Most applicants get filtered before a human reads their resume. See if yours makes the cut.

Should you apply? AI reads your resume vs this job — match score, gaps to address, ATS keywords.

SKILL SIGNAL 18 detected · ranked by frequency

Resilience engineering ×5

Policy-as-code ×4

Secure SDLC ×3

Security architecture ×3

Threat modeling ×3

Vulnerability assessment ×3

Cybersecurity architecture ×2

Cloud security

Platform security

Identity

Encryption

Key management

Segmentation

Zero-trust

MITRE ATT

Systems thinking

Architecture security

Architecture resilience

BEHAVIOURAL

LeadershipMentorship

Role Details

Seniority Lead

Experience 8–15 yrs

Level Lead

Work Mode Flexible

Category software

Salary Band 150k-200k

AI-Extracted Insights

Domain Areas

critical-information-infrastructuretradenet-platformcsa-ccop-v2wog-im8national-trade-continuitycloud-native-architecture

ANONYMOUS · UNFILTERED

What do employees actually say about GovTech?

Real rants from real employees. Read before you apply.

Read Company Rants →