Job Description

Job Title:  Engineer (Application Security)
University-Level Unit:  NUS Information Technology
Faculty/Department-Level Unit:  Security
Employee Category:  Executive & Administrative
Location_ONB:  Kent Ridge Campus
Posting Start Date:  07/07/2026

What You Do

As an Application Security Engineer, you will support NUS IT’s efforts to build secure, reliable, and user-centric digital services for the University community. This role contributes to the University by strengthening application security across the software delivery lifecycle, with a sub-focus on mobile security, DevSecOps, and secure platform engineering. You will play a key role in developing the CyberN'US mini app within the uNivUS superapp, while helping to embed secure coding practices, automated security controls, and platform hardening measures into application development and delivery processes. Working closely with cross-functional teams, you will help ensure that security is built into applications and platforms from design through deployment and operations.

Core Responsibilities:

Mobile application development and enhancement

  • Develop, test, maintain, and enhance the CyberN'US mini app as part of the uNivUS superapp.
  • Support the design and implementation of secure, intuitive, and reliable mobile application features for iOS and Android environments.
  • Write clean, maintainable, and efficient code in accordance with development standards and secure coding practices.
  • Participate in code reviews, testing, debugging, and issue resolution to ensure application quality, performance, and security.
  • Work closely with UX/UI designers, backend developers, product owners, and relevant stakeholders to deliver a seamless user experience.

 

Application security and secure software delivery

  • Support the implementation of secure software development lifecycle practices across application development activities.
  • Embed security controls and best practices into CI/CD pipelines to enable continuous and automated security testing.
  • Assist with integrating and maintaining relevant application security tools and checks, such as code scanning, dependency review, and secret detection.
  • Identify, assess, and support remediation of application security findings in collaboration with development and platform teams.
  • Promote secure coding awareness and contribute to improving security hygiene in day-to-day development workflows.

 

Secure platform engineering and container security

  • Support the monitoring and hardening of containerised application environments and orchestration platforms such as Kubernetes.
  • Assist with implementing security baselines, configuration standards, access controls, and platform protection measures.
  • Help review container and platform configurations to identify security gaps, misconfigurations, or weaknesses.
  • Support vulnerability management and remediation for container images, application components, and related platform services.
  • Contribute to secure deployment practices for modern application platforms and cloud-native environments.

 

Security monitoring, logging, and operational support

  • Support the design and maintenance of security logging, monitoring, and alerting use cases for the CI/CD platform and related application environments.
  • Assist with the use of SIEM and related tools to improve visibility into security events, operational issues, and platform risks.
  • Maintain technical documentation, implementation notes, runbooks, and operational procedures related to application security controls.
  • Provide regular updates on development progress, technical issues, risks, and security improvement opportunities.

 

Collaboration and continuous improvement

  • Collaborate effectively with cross-functional teams, including software engineers, infrastructure teams, product managers, and security stakeholders.
  • Participate in project planning, sprint activities, technical discussions, and team meetings.
  • Document development processes, technical configurations, coding standards, and project-related information clearly and consistently.
  • Keep up to date with developments in mobile security, application security, DevSecOps, and secure platform engineering.

Who You Are

Must have

Educational qualifications

  • Bachelor’s degree in Computer Science, Information Security, Information Systems, Computer Engineering, or a related discipline.


Years of relevant experience

  • Fresh graduate with relevant internship, academic project, or hands-on experience in mobile application development, secure software development, or related areas.


Technical skills

  • Strong foundation in mobile application development through internship, academic, or personal projects.
  • Familiarity with developing or supporting mobile applications for iOS and/or Android platforms.
  • Awareness of secure coding practices and common application security principles.
  • Familiarity with CI/CD concepts and software delivery workflows.
  • Basic understanding of application security, with interest in developing skills in AppSec, DevSecOps, and secure platform engineering.
  • Exposure to version control, testing, debugging, and technical documentation practices.
  • Willingness to learn container, Kubernetes, and platform security concepts.


Soft skills

  • Able to work collaboratively in cross-functional teams while also being independent and self-driven.
  • Good problem-solving and analytical skills.
  • Clear communication skills, both verbal and written.
  • Organised, detail-oriented, and disciplined in documentation.
  • Positive learning mindset with strong interest in growing in application security as a long-term career path.



Nice to have

Educational qualifications

  • Relevant coursework, capstone projects, or specialised training in cybersecurity, application security, mobile development, DevSecOps, or cloud/platform security.


Technical skills

  • Familiarity with mobile app security best practices.
  • Exposure to CI/CD security tooling such as static code scanning, software composition analysis, or secret scanning.
  • Basic exposure to container technologies such as Docker and orchestration platforms such as Kubernetes.
  • Familiarity with logging, monitoring, or SIEM platforms.
  • Exposure to scripting or automation using languages such as Python, Bash, or similar.


Soft skills

  • Proactive attitude and willingness to take ownership of assigned tasks.
  • Ability to balance usability, delivery needs, and security considerations.
  • Curiosity and enthusiasm for learning new technologies and security practices. 

About NUS IT

Ignite Your Future with NUS IT!  

 

NUS IT is the digital powerhouse driving the National University of Singapore’s vision to be a “Borderless University, powered by Infinite Technology.” We don’t just keep up with change - we lead them, delivering secure, high-performance IT solutions that transform education, research, and enterprise.  

 

Innovation is at the heart of NUS IT. Our dynamic team thrives on curiosity and creativity, empowered with the latest tools and emerging technologies. Here, you’ll have the freedom to explore, experiment, and turn ideas into reality.  

 

Join us as we break boundaries and harness Agentic AI to build safe, scalable, and impactful solutions for the University. If you’re ready to make a difference and shape the digital future, NUS IT is where your talent will shine. Let’s build the digital future together!  

 

Stay connected with us!  

NUS IT Website: https://nusit.nus.edu.sg/  

Why Join NUS IT

Step into a vibrant, innovative workplace at NUS IT, where teamwork, fun, and personal growth truly matter. Our “work hard, play hard” culture means you’ll thrive in a dynamic team, form genuine friendships, and enjoy lively days - whether on the job or at sports like badminton, running or soccer. We even have a “Fun Club” that plans recreation and fun activities - run by some of us in NUS IT, for NUS IT! 

 

We celebrate success together and empower your development with a clear career path and plenty of learning opportunities.  Learn, lead, and reach your potential surrounded by inspiring and helpful colleagues! 

Benefit from outstanding perks:  

  • Family Care Leave of 2 days
  • Additional Childcare Leave beyond statutory benefits
  • 2 Wellbeing days
  • Up to 3 sick days with no MC
  • Progressive annual leave starting at 21 days (including National Service!)
  • Flexible medical coverage up to $10,000 for you and your dependents
Req ID:  33607