This job offer is not available in your country.
L3 SOC Analyst #IFL
RECRUIT EXPRESS PTE LTDD09 Cairnhill, Orchard, River Valley, SG1 day ago
Job descriptionProactively hunt for advanced threats across on-prem and cloud environments using telemetry from SIEM, EDR, NDR, and threat intelligence. Develop hypotheses based on TTPs, threat intelligence feeds, and incident trends. Use frameworks like MITRE ATT&CK and Diamond Model to structure hunting campaigns. Document hunt procedures and outcomes to support knowledge sharing and continuous improvement. Map threat actor TTPs to frameworks such as MITRE ATT&CK to support proactive defense strategies and inform detection engineering efforts. Provide actionable threat intelligence to SOC, detection engineering, and IR teams to inform custom detection rule development, prioritization of hunts, and incident scoping Contribute to the threat intelligence lifecycle, including direction, collection, processing, analysis, dissemination, and feedback. Ingest, analyze, and operationalize threat intelligence from internal sources, commercial feeds, and open-source intelligence (OSINT) to enrich detection logic, threat hunting hypotheses, and incident investigations Collaborate with internal and commercial threat intelligence teams to contextualize IOCs and TTPs for targeted and industry-specific threats. Maintain up-to-date threat intelligence repositories and contribute to the continuous improvement of threat intel processes and playbooks Lead incident response lifecycle (detection, triage, containment, eradication, recovery). Handle security incidents tickets escalated by Level II team, and draft security incident report covering the root cause, forensic evidence, and recommended mitigation plans Conduct / support forensic analysis of endpoints, logs, and network traffic to determine root cause and impact. Coordinate with internal stakeholders and external partners during critical incidents. Develop and maintain playbooks, runbooks, and incident reports. Digital Forensics and Incident Response (DFIR) experience is a strong added advantage, enabling deeper investigations and root cause analysis. Mentor and support L1 / L2 SOC analysts in investigations, tool usage, and processes. Participate in tabletop exercises and red / purple team assessments. Lead and conduct regular customer meetings to review SOC activities, including security posture, key metrics, and ongoing initiatives. Prepare and deliver detailed briefings on priority incidents, RCA, ensuring timely communication of root cause, impact analysis, mitigation steps, and next actions. Act as a primary point of contact for Incident escalations and maintain consistent, professional engagement with client stakeholders. Coordinate with cross-functional teams including Engineering, Development, Red Team, and Risk / Compliance. Identify gaps in existing SOC process and work with team members or other departments to create, modify standard operating procedures, to automate any mundane daily operational activities, ensuring Ops are run efficiently.
Roles & Responsibilities
Detection Engineering
- Design, develop, and deploy high-fidelity detection rules in SIEM (Splunk, Microsoft Sentinel, Devo, QRadar, EDR, etc.).
- Create custom use cases to detect MITRE TTPs aligned with real-world threats and red team activities.
- Conduct detection gap analysis, tune alerting mechanisms, and eliminate false positives at the MSS customer environment
- Perform regular fine-tuning and optimization of detection rules, correlation logic, and alert thresholds across SIEM, EDR, and other security platforms to enhance detection accuracy and reduce false positives.
- Continuously assess detection efficacy based on incident feedback and threat landscape evolution, implementing improvements accordingly.
- Collaborate with red / purple teams to validate detection logic and build threat-informed defenses.
- Regularly review, update, and enhance detection logic to ensure alignment with the latest threat intelligence, adversary TTPs, and evolving attack techniques.
- Maintain relevancy and effectiveness of security detections by incorporating insights from threat hunts, incident response cases, red team exercises, and industry best practices.
Threat Hunting and Threat Intel :
Incident Response :
Collaboration & Mentorship :
Interested applicants, please Email, fabianling@recruitexpress.com.sg
Fabian Ling Tuong Liing
R25129353
Recruit Express Pte Ltd
EA Licence No : 99C4599
We regret that only shortlisted candidates will be contacted.
Tell employers what skills you have
Digital Forensics
SIEM
Defense
Forensic Analysis
Root Cause Analysis
Mentorship
Engineering Design
Telemetry
Threat Intelligence
Evidence
Create a job alert for this search
Analyst • D09 Cairnhill, Orchard, River Valley, SG
Related jobs
Monitor network traffic, system logs, and security alerts to identify potential security incidents and unauthorized activities in a timely manner.
Design, deploy, and manage threat detection rules a...Show moreLast updated: 30+ days ago
Activate Interactive Pte Ltd (“Activate”) is a leading technology consultancy headquartered in Singapore with a presence in Malaysia and Indonesia.
Our clients are empowered with quality, cost-effec...Show moreLast updated: 30+ days ago
Work with stakeholders from compliance, operations, and IT to gather and translate requirements into functional specifications.
Analyze and design enhancements to existing compliance monitoring syst...Show moreLast updated: 19 days ago We are seeking a highly skilled.System Analyst with strong NICE Actimize expertise.The ideal candidate will have hands-on experience in Actimize Transaction Monitoring and solid knowledge of AIS fu...Show moreLast updated: 19 days ago 
Responsible for working with a portfolio of internal users to gather user requirements, design, propose enhancement / project solution and delivered the approved solution which conform to the bank’s...Show moreLast updated: 19 days ago To help company manage the various key systems and develop integration strategy according to the company’s strategic IT direction.
Support Finance department to resolve and analyze issues with Dynam...Show moreLast updated: 30+ days ago 
)
About Us ABeam Consulting is a global professional services company that specializes in delivering business transformation and technology solutions to clients across a wide range of industries.With...Show moreLast updated: 30+ days ago
As a Software Engineer, you need to provide efficient application development and support service for cross-functional or regional applications to provide a stable an environment to the business.Re...Show moreLast updated: 19 days ago To work with end Bank’s internal IT teams, BA teams and project managers to deliver new or enhance Moody's RCO / RaY / RFo functions.
To develop Unix shell scripts, PL / SQL packages and store procedure...Show moreLast updated: 19 days ago Activate Interactive Pte Ltd (“Activate”) is a leading technology consultancy headquartered in Singapore with a presence in Malaysia and Indonesia.
Our clients are empowered with quality, cost-effec...Show moreLast updated: 8 days ago ![Asia Portfolio Leader (APL), Industrial Specialties Division Packaging, Safety & Industrial Bus[...]](https://cdn-logos.talent.com/v1/logo/image?feedcode=whatjobs-my&company_name=3M)
SOC Analyst
Flintex Consulting Pte LtdSingapore, 01, sgQuick Apply
Systems Analyst
Activate Interactive Pte LtdSingapore, Singapore, SGQuick Apply
System Analyst (Actimize)
Unison GroupSingapore, Singapore, SGQuick Apply
System Analyst - NICE Actimize
Unison GroupSingapore, Singapore, SGQuick Apply
- Promoted
Kami sedang mencari guru les privat SEO di Tanjungpinang
SuperprofTanjungpinang, ID Superprof adalah sarana untuk berbagi ilmu dan pengetahuan yang menghubungkan mereka yang ingin belajar dan mereka yang ingin mengajar.
Superprof didirikan pada bulan Agustus 2013 dan diluncurkan di...Show moreLast updated: 30+ days ago
- Promoted
- New!
Division CFO, Trilogy (Remote) - $400,000 / year USD
TrilogyKulai, Johor, Malaysia Division CFO, Trilogy (Remote) - $400,000 / year USD.Trilogy Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia.Get AI-powered advice on this job and more exclusive features.This range is prov...Show moreLast updated: 10 hours ago
Systems Analyst- AML FCCM
Unison GroupSingapore, Singapore, SGQuick Apply
System Analyst
Flintex Consulting Pte LtdSingapore, 01, sgQuick Apply
- Promoted
Senior IGA Consultant
Kloudynet TechnologiesKulai, Johor, Malaysia Kloudynet is a leading cybersecurity company with a strong partnership with Microsoft.As a Microsoft Solutions Partner in Modern Work and Security, we hold advanced specializations across key areas...Show moreLast updated: 1 day ago
- Promoted
Business Intelligence Analyst
The Lifetime Value Company Costa RicaKulai, Johor, Malaysia Analyst to join our growing team to influence strategy and improve decision making throughout the company.We are looking for self-starters who attack business problems with curiosity and effectivel...Show moreLast updated: 2 days ago
- Promoted
Cost Analyst
GECO Asia Pte LtdKulai, Johor, Malaysia The successful candidate will support costing processes, analyze financial and operational data, and prepare cost reports to assist management in decision-making.
This role requires strong analytica...Show moreLast updated: 4 days ago
- Promoted
Senior Conversion Optimization Analyst (Remote)
XsollaKulai, Johor, Malaysia At Xsolla, we believe that great games begin as ideas, driven by the curiosity, dedication, and grit of creators around the world.
Our mission is to empower these visionaries by providing the suppor...Show moreLast updated: 2 days ago
SAP ERP Analyst
ABeam Consulting (Singapore)SGQuick Apply
- Promoted
Risk Analyst | Vaults
P2P.orgGelang Patah, Malaysia TVL of over $10B and a market share exceeding 20% in restaking.We are continually focused on researching and improving our infrastructure to extract maximum APR while enhancing security.For instanc...Show moreLast updated: 5 days ago
- Promoted
07 - Financial Analysis Analyst
Celestica Inc.Kulai, Johor, Malaysia Responsible for site / customer level financial bridging and deep dive analysis.Ownership for Customer P&L’s and financial profitability therein.
Responsible for leading monthly site / customer level P&...Show moreLast updated: 30+ days ago
ETL Analyst (Fermat / Moodys)
Unison GroupSingapore, Singapore, SGQuick Apply
Senior Analyst (Support)
Unison GroupSingapore, Singapore, SGQuick Apply
Systems Analyst - A25160
Activate Interactive Pte LtdSingapore, Singapore, SGQuick Apply
- Promoted
Asia Portfolio Leader (APL), Industrial Specialties Division Packaging, Safety & Industrial Bus[...]
3MKulai, Johor, Malaysia The area portfolio leader for Asia ISD Packaging will be responsible for driving growth and profitability of the packaging tapes business in Asia through area product marketing leadership role.The ...Show moreLast updated: 2 days ago
- Promoted
Kami sedang mencari guru les privat IELTS di Tanjungpinang
SuperprofTanjungpinang, ID Superprof adalah sarana untuk berbagi ilmu dan pengetahuan yang menghubungkan mereka yang ingin belajar dan mereka yang ingin mengajar.
Superprof didirikan pada bulan Agustus 2013 dan diluncurkan di...Show moreLast updated: 30+ days ago