KKR is a leading global investment firm that offers alternative asset management and capital markets and insurance solutions. With offices in over 20 cities across 16 countries and 4 continents, KKR sponsors investment funds that invest in private equity, credit and real assets and has strategic partners that manage hedge funds. KKR’s insurance subsidiaries offer retirement, life, and reinsurance products under the management of The Global Atlantic Financial Group.

As a firm we manage investments across multiple asset classes and as individuals we are encouraged to think creatively to solve problems, explore opportunities, take on new responsibilities and challenges, put our clients first and contribute to our communities. We often measure success over years, not quarters. We value integrity in all that we do, whether it’s presenting numbers accurately or being open and honest with a portfolio company executive. People want to do business with those they like and trust. It’s a mantra instilled in all of us from the top down.

At KKR, we believe that diverse teams increase performance and produce better results. Teams consisting of employees with varied backgrounds and perspectives will help strengthen our Firm and our investment decisions. Therefore, in an effort to enhance the diversity of our organization, we are particularly focused on recruiting talent that will bring different experiences, capabilities, skills and viewpoints to our organization.

Position Summary:

We are looking for a Senior Cybersecurity Engineer to be based in Singapore, to join our growing team of cybersecurity experts.

Professional Expectations

• Teamwork – active contributor as part of a global team
• Problem solving and decision making – tenaciously identifies issues and their solutions
• Communication – clearly articulates themselves in both technical and nontechnical situations
• Ability to work independently, demonstrating strong accountability
• 3+ years of combined work experience in networking/infrastructure/security, ideally in companies of different sizes where he/she will have had opportunities to work at different positions with different technologies and products.

Job Duties

• Incident response – Identify, take reactive measures, close out. Able to follow response plans.
• Policy evaluation – clearly understands both industry accepted practices and company policy around the control of access to systems, networks and data.
• Hardware deployment – mechanically inclined with the ability to “rack and stack” as well as troubleshoot in a data center environments.
• Security technologies – Solid technical foundation in networks, servers, and general IT. Strong practitioner with firewall, wireless, network, load balancer and other security related technologies.
• Current, hands-on experience with:
   -Gathering business requirements and translating them to high and low level designs
   -Palo Alto Networks
       -Deploying Security Policy global across regions
       -Managing Firewalls via Panorama
       -High Availability Deployments
       -IPSec/GlobalProtect VPN
       -URL Filtering
       -L7 Protections
         -Anti-Virus/WildFire/Anti-Spyware/(IPS) Intrusion Prevention System
       -Deploying Palo Alto Transit Hubs in AWS and Azure
  -TCP/IP, BGP, DNS, deep understanding of NAT, packet capture analysis skills
  -Network security and segmentation
  -Deploying Endpoint Protection management servers and clients
  -Knowledge of SSL/TLS traffic handling and encrypt/decrypt policies.
  -Knowledge of Windows and Linux operation systems
• Provide 24/7 on-call support
• Understanding of core principles of how modern infrastructure technologies operate (such as virtualization of computing and networking, containers, cloud computing, SaaS, PaaS etc) security aspects of these technologies;
• Solid understanding of the operation of LAN/WAN IP-based networks (TCP/IP, routing/switching, VLANs, NAT, DNS, DHCP);
• Understanding of principles of applied cryptography - symmetric/asymmetric encryption, hashing, SSL/TLS, SSH, PKI, IPSec, site-to-site/remote access VPN, disk encryption, HSM;
• Understanding of attack vectors against modern enterprises: phishing, ransomware, malware, DoS/DDoS, drive-by, MITM, various type of injection (i.e. SQL), cross-site scripting, etc.; methods of defense from these attacks;
• Knowledge of common security principles, concepts, and methods (authentication, authorization, single sign-on, network segregation, DMZ, Zero Trust, defense-in-depth, penetration testing, sandboxing etc);
• Ability and desire to code, script and automate in order to improve own and team's operational efficiency;
• Understanding of aspects of application delivery in principle and firewalling/load balancing in particular;
• Understanding of HTTP operation and associated concepts (its methods, cookies, sessions, caching, CDNs, HTTP-based applications and protocols etc);
• Understanding of principles of operation of NextGen/L7 firewalls and experience with one of the market-leading vendors;
• Practical knowledge of Windows (including AD) and Linux;

KKR is an equal opportunity employer.  Individuals seeking employment are considered without regard to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, sexual orientation, or any other category protected by applicable law.

The company requires COVID-19 vaccination (including booster) for employment, subject to reasonable accommodation as required by law.

KKR’s Privacy Notice (Non-EU)

KKR's Privacy Notice (UK & EU)

CCPA Notice

Apply for this Job

* Required