Cyber SOC Engineer (Cyber Threat/ Perm Role/ Central)
• Location: Central Area
• Permanent Role
• Salary: up to $8,500 (commensurates with experience) + Attractive Bonus & Benefits
Responsibility:
- You will utilize data from various cyber defense tools, such as intrusion detection system alerts, firewall and network traffic logs, and host system logs to analyze events within the company's environment to continuously monitor and analyze, detect malicious system activities, and respond to threats, software, and hardware vulnerabilities.
- Ensuring the effectiveness and efficiency of 24x7 monitoring of both internal and external sources to maintain an up-to-date understanding of the threat landscape,and provide accurate evaluations for incident escalation.
- Review routine monitoring operations to ensure the checks remain relevant and sufficient.
- Implement projects, develop scripts, and fine-tune SIEM rules and solutions to enhance and automate the monitoring, triaging, and analysis processes.
- Identify security weaknesses in systems and applications, collaborate with IT teams to prioritize and address vulnerabilities, track remediation progress, and ensure systems are patched and updated to mitigate potential risks.
- Assist to perform forensic investigations and prepare detailed reports documenting investigation findings.
- Actively hunt for indicators of compromise (IOCs), threat actor groups, and tactics, techniques, and procedures (TTPs) within the environment.
Requirement:
- Min 2 year of relevant working experience in SOC as Security Engineer, IT Security Operations and Security Operations Centre or Computer Emergency Response Team (CERT/CIRT).
- Diploma/ Degree in computer science/ Computer Engineering / Information Security or related certifications.
- Familiar with SOC processes, SIEM/ SOAR operation.
- Experienced with OWASP Top 10, CVSS, MITRE ATT&CK framework, Cyber Kill Chain and DevSecOps are advantageous.
- Certifications with GSEC, GCIH, GCIA, GCTI, GCFA, GCFE or GNFA will be advantageous.
- Strong understanding of incident response and handling methodologies.
- Proficiency in scripting languages (such as Python, Bash, or PowerShell) and experience with cloud technologies are advantageous.
- Familiar with the Cyber Security Act 2018, Cybersecurity Code of Practice (CCoP), MAS Cyber Hygiene and Technology Risk Management Guidelines (TRMG).
How to apply
Interested candidates who wish to apply for the post, you may click the Apply Now Button or send in your updated resume (in MS Word format) to [email protected]
We regret to inform that only shortlisted candidates will be notified.
Careerally Pte Ltd | EA Licence: 24C2215
Ooi Chuan Yi (Jacky)| EA Registration No: R24122948
