Total 4 job vacancies by Innopeak Advisors Pte. Ltd.

Overview

We are seeking an SME-level Senior Network Security Engineer to join our Network Security Engineering & Deployment team. You will lead next-generation network transformations, oversee datacenter migrations and design resilient, scalable hybrid and multicloud environments.

Key Responsibilities

• Design & Deploy: Architect advanced network security solutions and ensure seamless integration with Cisco ACI environments.
• L3 Escalation: Act as the ultimate technical escalation point for Operations, resolving complex incidents alongside vendors, TAC, and internal teams.
• Automation & Policy: Enforce policy-driven security architectures and leverage tools like Ansible, Python, and XSOR to minimize manual interventions.
• Governance & Mentorship: Maintain operational runbooks, ensure regulatory compliance, and lead knowledge-sharing sessions for peers and stakeholders.

Required Qualifications

• Experience: 10 to 15 years of hands-onexperience managing, designing, and troubleshooting Network Security technologies.
• Education: Bachelor’s or Master’s degree in Computer Science, Information Technology, or a related field.
• Certifications: CCIE, CISSP, CCSA,CCSE, PCNSE, ICE, BIG-IP ASM Specialist, or equivalent.

Technical Expertise

• Firewalls: Checkpoint (Threat Prevention, HA, VPN), Palo Alto NGFWs (App-ID, WildFire, User-ID), deep packet inspection, and rule optimization.
• IDPS & WAF: Signature and Anomaly-based (Behavioural) IDPS; F5 ASM (or equivalent) for WAF, Bot Protection, and DDoS mitigation.
• Micro segmentation & Zero Trust: Workload isolation using Illumio or Guardicore, and Zero Trust Architecture (ZTA) policy enforcement.
• NAC & DNS/IPAM: Aruba ClearPass(role-based access), Cisco ISE (802.1X, MAB); Infoblox DDI, DNSSEC, DNS filtering, and DNS over HTTPS (DoH).
• Routing & VPN: BGP, OSPF (includingOSPFv3), IPSec, and SSL VPNs for site-to-site and remote access.
• Monitoring & SIEM: Wireshark, Riverbed AppResponse, Cisco ThousandEyes, NetFlow/sFlow; centralized threat visibility via Splunk, Elastic, or equivalent.

Soft Skills

• Excellent analytical, problem-solving, and decision-making capabilities.
• Strong cross-departmental communication skills, working well under pressure with a continuous learning mindset.

• Hands on experience in Teradata, Hadoop ecosystem (Hive, Impala), Unix/Linux scripting, and Control-M scheduling
• Extensive experience with Financial Data Models (FSLDM / OFSAA / GCFR / Ktools / ETL frameworks)
• Proficient in SQL development, performance tuning, and data reconciliation
• Exposure to Python (data analysis, automation, or validation scripts)
• Experience with Big Data and cloud-based analytical platforms (Redshift / BigQuery preferred)
• Advanced knowledge of Excel-based reporting, reconciliation, and data analysis

Domain Experience (Mandatory)

• Experience in Banking / Financial Services domain
• Strong exposure to: Finance & Risk reporting systems, Regulatory data (ECL, NPL, GL reporting), Financial instruments and banking product data and Enterprise Data Warehousing in banking environments

• Gather and analyze business, regulatory, and compliance requirements (KYC/CDD/AML), translating them into detailed functional and technical specifications aligned with SDLC practices.
• Lead implementation and enhancement of core banking and Modern Banking Platforms (MBP), including systems like Oracle FLEXCUBE, ensuring seamless integration with KYC and compliance modules.
• Design and manage system integrations using REST APIs, JSON, and XML across core banking, onboarding, and transaction monitoring systems.
• Perform data analysis, validation, and troubleshooting using SQL, along with data mapping and ETL validation for compliance and reporting needs.
• Collaborate with business, compliance, and IT teams to support KYC lifecycle processes, regulatory adherence (RBI/FATF), and continuous improvement of banking and AML systems.

• Drive infrastructure modernization initiatives including middleware upgrades, platform migrations (e.g., WebSphere to JBoss), cloud onboarding (AWS/GCP exposure), and obsolescence remediation, while ensuring minimal downtime and compliance with enterprise change and release management processes.
• Design and implement robust disaster recovery (DR) strategies, backup/restore procedures, and high-availability architectures (load balancing, failover, clustering), validated through regular DR drills and aligned with stringent SLA and regulatory requirements.
• Collaborate with cross-functional teams (DevOps, Network, Security, Infrastructure, Vendors) to enable CI/CD pipelines (Jenkins, Bitbucket), SSL certificate management, firewall/DNS configurations, and secure application deployments across multiple environments (DEV, SIT, UAT, PROD, DR).
• Lead end-to-end application lifecycle support including environment provisioning, domain configuration, clustered deployments, performance tuning (JVM, heap, GC), and proactive troubleshooting of complex production issues such as memory leaks, thread contention, and JVM crashes.
• Provide technical leadership in middleware governance including capacity planning, system monitoring (Dynatrace, SiteScope, APM tools), incident/problem management, and root cause analysis, while producing SOPs and ensuring adherence to ITIL-based operational best practices.