The Role
Location : Singapore
Reports to : Security Operations Manager – Asia Pacific
Support Hour : Shift Work
The Main Responsibilities
Responsibilities :
- Monitor, triage and response to SIEM alerts for client security events;
- Investigation and resolution of outage or abnormal behavioral scenarios on MSS products;
- Research and implement customer generated change requests for MSS products;
- Generate incident cases and escalate to superordinate teams in accordance with time and severity-based SLA’s;
- Perform tasks associated with the installation, turn up and maintenance of Lumen security infrastructure;
- Manage technical workload and engage Incident Response Analysts and management
- Perform complex changes within the managed security environment and manage and resolve customer fault and service outage / impairment events;
- Present as technical expert delivering solutions to clients, internal business and third-party vendors;
- Develop enhancements to existing solutions, promote creation of new tools, processes and applications;
- Directly support, train and mentor Associate Security Analysts;
- Participate in company sponsored job related activities plus training to further develop your management and technical skills;
- He / she will be part of a rotating SOC shift and will need to manage their schedule accordingly so to ensure there is coverage during SOC shifts.
What We Look For in a Candidate
Requirements :
2-5 years of professional work experience in Information Security with SOC based experience;Possible security technology certifications (e.g. CompTIA Security+, CISSP, SANS GIAC);Working towards completion or has a BS / BA degree in Computer Science, Information Technology, or related discipline or equivalent experience;Strong analytical skills to define risk, identify potential threats, document and develop action / mitigation plan;A passion for information security and data security;Knowledge / experience with Operating Systems (e.g. Windows Server, CentOS Linux);Knowledge / experience of networking and firewalls (e.g. Cisco ASA, Palo Alto, Checkpoint, Juniper, Fortinet, Arbor, Radware);Working knowledge of Elastic Stack (Elasticsearch, Kibana) and exposure to Log Management / SIEM (e.g. Splunk, QRadar, ArcSight);Good to have programming and scripting skills (e.g. C++, Bash, Python, Perl, Powershell);Exceptional customer service skills;Detail oriented individuals that work well in a team environment and have a hunger to learn;Strong verbal / written communication and interpersonal skills are required to document and communicate findings, escalate critical incidents, and interact with customers, managers and vendors;Must be able to satisfy local government / national background screening.Compensation