Assistant Vice President, Senior SOC Analyst, Security Operations

Responsibilities

Lead proactive hunting and analysis against the dataset (e.g., alerts, logs, etc.) and reverse engineering as needed to support Security Operation Centre (SOC) investigations and proactive threat detection and prevention.

Coordinate and facilitates in-depth analysis, trending, and root cause analysis of security events / incidents while creating and maintaining processes and procedures.

Perform advanced research on threats, vulnerabilities and potential threat vectors and work with multi-disciplines to improve prevention and detection methods.

Act as the technical subject-matter-expert for SOC related topics or during incidents,

Develops and documents the SOC procedures and processes based on industry best practices and internal requirements.

Support or lead projects to improve SOC effectiveness, advancing technical capabilities on pace with the latest threats.

Support and integrate with incident response, threat intelligence, and overall security strategy as needed.

Perform other essential duties as assigned.

Job Requirements

Bachelor’s degree in IT or equivalent with min. 5 years of working experience and has 3 years of experience leading a SOC team.

Strong knowledge in networking / major internet protocols and security concepts

Min. 3 years of experience in cyber incident response and / or Security Operations center in an enterprise environment.

Min. 2 years of experience with standard enterprise security tools (e.g., Database Activity Monitoring, Zero Trust Segmentation, Security Information & Event Management, Intrusion Detection Prevention System, Endpoint Detection & Response, etc)

Min. 2 years of operational experience with Splunk or similar log aggregation / analysis platforms

Expert execution of investigative concepts for escalated incidents to determine the impact and root cause.

Strong foundation in security threat and attack countermeasure.

Possess analytical and problem-solving skills, with the ability to manage multiple tasks in a fast-paced environment.

Hands-on experience in SIEM and intrusion detection analysis as well as application layer protocols.

Have experience in security related areas. Especially experience and expertise in security incident detection and threat intelligence are proven to be extremely useful.

Advanced understanding of various operating systems and web technologies with professional security certifications would be a plus.

Experience in multiple domains within IT or Information Security (e.g. Identity and access management, IT infrastructure operations, Key management, system administration etc.)

Meticulous, team player, flexible, proactive and positive attitude

Strong sense of responsibility and initiative.

Excellent communication and interpersonal skills.

Work Location : One@ChangiCity