FreeHire

sggovterp

Software Engineer - App Security & SRE (Perm/ Contract)

Show

[What the role is]

You will be part of the Central Banking & Devt Platforms (CBD) payment team responsible for managing the systems supporting the MAS Electronic Payment System (MEPS+) and domestic securities management systems in MAS, and the Special Singapore Government Securities system.

These responsibilities involve supporting interbank payments in MEPS+ as well as MAS and government securities and trade settlements. You are expected to understand and support the linkages between these systems and other market infrastructures such as the Automated Clearing House (ACH).

[What you will be working on]

Application support & monitoring

  • Monitor and maintain production application health, investigating errors, exceptions, and system alerts to ensure service availability

  • Define and implement Service Level Indicators (SLIs) and Service Level Objectives (SLOs), with ongoing refinement to reduce false positives and improve signal quality

  • Understand application architecture and integration points with other system components to enable effective troubleshooting

  • Conduct daily operational health checks and maintain system observability using monitoring tools (e.g. Grafana, ELK stack)

Patching & compliance

  • Coordinate monthly and quarterly system patching schedules, working with infrastructure teams to verify completion of system and endpoint updates

  • Document patch outcomes for governance and audit purposes

  • Respond to audit Requests for Information (RFI), providing accurate and timely technical evidence

  • Support application security assessments and vulnerability remediation activities

Incident & continuity management

  • Develop task lists and execute contingency drills to validate disaster recovery procedures

  • Organise and conduct monthly internal incident management drills

  • Participate in on-call rotation to provide timely incident response and resolution

  • Participate in CyberEx exercises and implement recommended security measures

  • Document incidents and contribute to post-incident reviews and continuous improvement

[What we are looking for]

  • At least 5 years’ experience in application support, operations, or site reliability engineering — preferably in payments, securities settlement, or financial infrastructure

  • Strong hands-on experience with Java/J2EE application environments, including troubleshooting and diagnosing production issues

  • Proficiency in SQL for database queries and production analysis

  • Experience with Linux/RHEL environments and shell scripting

  • Understanding of application integration patterns, web services, and RESTful APIs

  • Familiarity with monitoring and observability platforms (e.g. Grafana, ELK stack)

  • Knowledge of security principles, patching procedures, and vulnerability management

  • Experience responding to audit or compliance requests, and working within ICT governance frameworks

  • Strong analytical and problem-solving skills with ability to diagnose complex technical issues

  • Clear communicator — able to write incident reports, drill outcomes, and RFI responses for both technical and non-technical audiences

  • Comfortable owning recurring processes (patching cycles, monthly drills)

  • Calm under pressure and able to prioritise clearly when multiple issues surface at once

  • Organised with the ability to manage multiple priorities and coordinate across teams

  • Collaborative by default, but confident taking ownership of assigned areas and working independently when the situation calls for it

  • Proactive problem solver who can work effectively and drive improvements within established processes

Technical Skillset:

  • Experience with JBoss EAP, OpenShift, or containerisation technologies (Docker, Kubernetes)

  • Knowledge of CI/CD pipelines and automation tools

  • Familiarity with job scheduling tools (e.g. Autosys)

  • Understanding of file transfer protocols (SFTP, MQ) and interface resilience

  • Experience with the S.W.I.F.T messaging platform and interfaces

  • Experience in government or regulated-industry digital projects

  • Relevant certifications (e.g. Java, CKAD/CKA, ITIL) are a plus

As part of the shortlisting process for this role, you may be required to complete a medical declaration and/or undergo further assessment.

Candidates may be considered for a permanent or 2-year contract roles. All applicants will be notified on whether they are shortlisted or not within 4 weeks of the closing date of this job posting.