-
View all jobs
About Flo
Hi, we’re Flo, and we are on a mission to switch as many people and businesses as possible to clean, renewable energy.
We do that by making clean energy as cheap as conventional energy, investing in smart technology to reduce our operating costs and passing the savings to our members. And yes, it's not impossible.
We are pushing boundaries and breaking conventions of the traditional electricity retailer. To do so, we are looking for like-minded people who share our passion for technology and sustainability. You might be the one we are looking for!
Find out more about us on https://floenergy.sg/business/about
What You Will Be Doing
As a Cyber Security Officer, your primary focus will be on Application and Cloud Security, while also supporting the broader cybersecurity posture of the organization. You will work closely with Developers and the Platform Teams (DevOps) to embed security into all stages of software delivery and infrastructure operations. Ensuring Flo maintains a secure, compliant, and resilient environment as it grows.
Secure Development & Cloud Practices
We are hiring people with different levels of experience, we would love to hear from you, even if you feel unsure about meeting every requirement listed.
Join us as our new Cyber Security Engineer
Hi, we’re Flo, and we are on a mission to switch as many people and businesses as possible to clean, renewable energy.
We do that by making clean energy as cheap as conventional energy, investing in smart technology to reduce our operating costs and passing the savings to our members. And yes, it's not impossible.
We are pushing boundaries and breaking conventions of the traditional electricity retailer. To do so, we are looking for like-minded people who share our passion for technology and sustainability. You might be the one we are looking for!
Find out more about us on https://floenergy.sg/business/about
What You Will Be Doing
As a Cyber Security Officer, your primary focus will be on Application and Cloud Security, while also supporting the broader cybersecurity posture of the organization. You will work closely with Developers and the Platform Teams (DevOps) to embed security into all stages of software delivery and infrastructure operations. Ensuring Flo maintains a secure, compliant, and resilient environment as it grows.
Secure Development & Cloud Practices
- Collaborate with developers to embed secure coding practices and conduct code reviews for high-risk features.
- Conduct threat modeling and security architecture reviews for cloud-native apps and microservices.
- Integrate security scanning tools (SAST, DAST, SCA) into CI/CD pipelines.
- Collaborate with the Platform Team (DevOps) to secure containerized workloads (e.g., Docker, Kubernetes), infrastructure-as-code, and serverless applications.
- Work with the Platform Team to secure configuration across AWS accounts, including IAM, encryption, and network controls.
- Implement and manage Web Application Firewalls (WAFs) to protect applications from OWASP Top 10 vulnerabilities and other common attacks.
- Support the IT Security Manager in maintaining and aligning with ISO 27001, SOC 2, and PDPA requirements.
- Assist with external audits and maintain documentation of security controls, asset inventory, and risk assessments.
- Work with the IT Security Manager to implement Zero Trust principles, including strong identity access management and least-privilege enforcement.
- Help define and maintain internal security policies, procedures, and training programs.
- Monitor and investigate alerts using SIEM platforms, IDS/IPS, and cloud-native security tools (e.g., AWS GuardDuty, Security Hub).
- Support response to security incidents, including containment, recovery, and post-incident analysis.
- Maintain incident response plans, develop playbooks, and contribute to tabletop exercises.
- Coordinate or assist with penetration testing and vulnerability assessments, both internally and with third-party vendors.
- Support Mobile Device Management (MDM) tools and endpoint protection to ensure device compliance.
- Enforce secure configurations on employee laptops and mobile devices through policy-based controls.
- Manage access controls across cloud services and SaaS tools using SSO, MFA, and RBAC.
- Support security awareness efforts and employee training to reduce human risk.
- Stay current with emerging threats, vulnerabilities, and cybersecurity technologies.
- Proactively identify areas for risk reduction and security automation.
- Collaborate across teams to build a culture of security-first thinking in everything we build and deploy.
- Bachelor’s degree in Cybersecurity, Computer Science, Information Security, or a related field.
- Strong experience in cybersecurity roles focused on application and cloud environments, preferably in senior or lead-level positions.
- Strong understanding of secure coding, web security standards (e.g., OWASP Top 10), and CI/CD security practices.
- Hands-on experience with CI/CD security.
- Programming or scripting experience in Python or a general-purpose language such as Java, Kotlin, Go, or Ruby is preferred.
- Familiarity with AWS security services, IAM policies, and network security configurations.
- Strong understanding of IAM, SSO/SAML, and API security.
- Experience with vulnerability scanners, container security, and code analysis tools (e.g., Snyk, Trivy, Semgrep).
- Exposure to infrastructure-as-code (e.g., Terraform, CloudFormation) and cloud-native security tools like AWS Config, GuardDuty, and Security Hub.
- Experience with WAFs, penetration testing, and vulnerability management tools.
- Hands-on exposure to SIEM, IDS/IPS, incident response, and cloud-native threat detection.
- Experience with MDM, SSO/SAML, and endpoint protection tools.
- Awareness of compliance frameworks such as ISO 27001, SOC 2, and PDPA.
- Relevant certifications such as CompTIA Security+, AWS Certified Security, or equivalent.
- Ability to clearly communicate security risks and remediation paths to engineering and platform teams.and SaaS management.
- Get involved in product development from the ground up to chart the future of Flo.
- Work in an open-minded and dynamic environment with a talented team.
- Budget and time to take on professional development courses and team outings.
- Enjoy an attractive compensation package, generous time-off and work-life balance.
We are hiring people with different levels of experience, we would love to hear from you, even if you feel unsure about meeting every requirement listed.
Join us as our new Cyber Security Engineer
Key Skills
Ranked by relevance
cloud
aws
cybersecurity
cicd
penetration testing
incident response
cyber security
devops
owasp
saas
siem
network security
cloud security
cloudformation
kubernetes
serverless
terraform
firewalls
python
kotlin
docker
java
ruby
Related Jobs
3 roles aligned with this opportunity
View Job Details
Related
Senior Software Engineer, Frontend (6-12 months contract)
2026-06-30
Full-time
Not Applicable
Singapore
Utilities
Engineering
View Job Details
Related
Senior Manager, Enterprise and Cyber Security
2026-06-17
Full-time
Mid-Senior
Canada
Consumer Services
Information Technology
View Job Details
Related
DevOps / DevSecOps Engineer
2026-07-04
Full-time
Not Applicable
United States
Software Development
Information Technology
Login to Apply
- Posted
- Nov 24, 2025
- Type
- Full-time
- Level
- Mid-Senior
- Location
- Singapore
- Company
- Flo Energy
Industries
Utilities
Categories
Information Technology
Related Jobs
3 roles aligned with this opportunity
View Job Details
Related
Senior Software Engineer, Frontend (6-12 months contract)
2026-06-30
Full-time
Not Applicable
Singapore
Utilities
Engineering
View Job Details
Related
Senior Manager, Enterprise and Cyber Security
2026-06-17
Full-time
Mid-Senior
Canada
Consumer Services
Information Technology
View Job Details
Related
DevOps / DevSecOps Engineer
2026-07-04
Full-time
Not Applicable
United States
Software Development
Information Technology