This job offer is not available in your country.
L3 SOC Analyst #IFL - D09 Cairnhill, Orchard, River Valley, SG
RECRUIT EXPRESS PTE LTDD09 Cairnhill, Orchard, River Valley, SG1 day ago
Job descriptionProactively hunt for advanced threats across on-prem and cloud environments using telemetry from SIEM, EDR, NDR, and threat intelligence. Develop hypotheses based on TTPs, threat intelligence feeds, and incident trends. Use frameworks like MITRE ATT&CK and Diamond Model to structure hunting campaigns. Document hunt procedures and outcomes to support knowledge sharing and continuous improvement. Map threat actor TTPs to frameworks such as MITRE ATT&CK to support proactive defense strategies and inform detection engineering efforts. Provide actionable threat intelligence to SOC, detection engineering, and IR teams to inform custom detection rule development, prioritization of hunts, and incident scoping Contribute to the threat intelligence lifecycle, including direction, collection, processing, analysis, dissemination, and feedback. Ingest, analyze, and operationalize threat intelligence from internal sources, commercial feeds, and open-source intelligence (OSINT) to enrich detection logic, threat hunting hypotheses, and incident investigations Collaborate with internal and commercial threat intelligence teams to contextualize IOCs and TTPs for targeted and industry-specific threats. Maintain up-to-date threat intelligence repositories and contribute to the continuous improvement of threat intel processes and playbooks Lead incident response lifecycle (detection, triage, containment, eradication, recovery). Handle security incidents tickets escalated by Level II team, and draft security incident report covering the root cause, forensic evidence, and recommended mitigation plans Conduct / support forensic analysis of endpoints, logs, and network traffic to determine root cause and impact. Coordinate with internal stakeholders and external partners during critical incidents. Develop and maintain playbooks, runbooks, and incident reports. Digital Forensics and Incident Response (DFIR) experience is a strong added advantage, enabling deeper investigations and root cause analysis. Mentor and support L1 / L2 SOC analysts in investigations, tool usage, and processes. Participate in tabletop exercises and red / purple team assessments. Lead and conduct regular customer meetings to review SOC activities, including security posture, key metrics, and ongoing initiatives. Prepare and deliver detailed briefings on priority incidents, RCA, ensuring timely communication of root cause, impact analysis, mitigation steps, and next actions. Act as a primary point of contact for Incident escalations and maintain consistent, professional engagement with client stakeholders. Coordinate with cross-functional teams including Engineering, Development, Red Team, and Risk / Compliance. Identify gaps in existing SOC process and work with team members or other departments to create, modify standard operating procedures, to automate any mundane daily operational activities, ensuring Ops are run efficiently.
Roles & Responsibilities
Detection Engineering
- Design, develop, and deploy high-fidelity detection rules in SIEM (Splunk, Microsoft Sentinel, Devo, QRadar, EDR, etc.).
- Create custom use cases to detect MITRE TTPs aligned with real-world threats and red team activities.
- Conduct detection gap analysis, tune alerting mechanisms, and eliminate false positives at the MSS customer environment
- Perform regular fine-tuning and optimization of detection rules, correlation logic, and alert thresholds across SIEM, EDR, and other security platforms to enhance detection accuracy and reduce false positives.
- Continuously assess detection efficacy based on incident feedback and threat landscape evolution, implementing improvements accordingly.
- Collaborate with red / purple teams to validate detection logic and build threat-informed defenses.
- Regularly review, update, and enhance detection logic to ensure alignment with the latest threat intelligence, adversary TTPs, and evolving attack techniques.
- Maintain relevancy and effectiveness of security detections by incorporating insights from threat hunts, incident response cases, red team exercises, and industry best practices.
Threat Hunting and Threat Intel :
Incident Response :
Collaboration & Mentorship :
Interested applicants, please Email, fabianling@recruitexpress.com.sg
Fabian Ling Tuong Liing
R25129353
Recruit Express Pte Ltd
EA Licence No : 99C4599
We regret that only shortlisted candidates will be contacted.
Tell employers what skills you have
Digital Forensics
SIEM
Defense
Forensic Analysis
Root Cause Analysis
Mentorship
Engineering Design
Telemetry
Threat Intelligence
Evidence
Create a job alert for this search
Soc Analyst • D09 Cairnhill, Orchard, River Valley, SG
Related jobs
- Promoted
SOC Analyst - FLINTEX CONSULTING PTE. LTD.
FLINTEX CONSULTING PTE. LTD.D02 Anson, Tanjong Pagar, SG Monitor network traffic, system logs, and security alerts to identify potential security incidents and unauthorized activities in a timely manner.
Design, deploy, and manage threat detection rules a...Show moreLast updated: 7 days ago
- Promoted
SOC Analyst - D02 Anson, Tanjong Pagar, SG
FLINTEX CONSULTING PTE. LTD.D02 Anson, Tanjong Pagar, SG Monitor network traffic, system logs, and security alerts to identify potential security incidents and unauthorized activities in a timely manner.
Design, deploy, and manage threat detection rules a...Show moreLast updated: 7 days ago
- Promoted
L3 SOC Analyst #IFL
RECRUIT EXPRESS PTE LTDD09 Cairnhill, Orchard, River Valley, SG Design, develop, and deploy high-fidelity detection rules in SIEM (Splunk, Microsoft Sentinel, Devo, QRadar, EDR, etc.Create custom use cases to detect MITRE TTPs aligned with real-world threats an...Show moreLast updated: 1 day ago
- Promoted
SOC Lead - Permanent - up to SGD12k - D01 Cecil, Marina, People’s Park, Raffles Place, SG
MORGAN MCKINLEY PTE. LTD.D01 Cecil, Marina, People’s Park, Raffles Place, SG Are you a seasoned cybersecurity professional with a passion for leading and defending against sophisticated cyber threats? We're looking for an experienced and dynamic.
Global Security Operations C...Show moreLast updated: 6 days ago
- Promoted
L3 SOC Analyst #IFL - RECRUIT EXPRESS PTE LTD
RECRUIT EXPRESS PTE LTDD09 Cairnhill, Orchard, River Valley, SG Design, develop, and deploy high-fidelity detection rules in SIEM (Splunk, Microsoft Sentinel, Devo, QRadar, EDR, etc.Create custom use cases to detect MITRE TTPs aligned with real-world threats an...Show moreLast updated: 1 day ago
- Promoted
SOC Security Analyst
EVVO LABS PTE. LTD.D13 Macpherson, Braddell, SG Level 1 technical support for the customers and focus on fulfilling and resolving assigned incidents and service requests.
Monitoring and reporting of systems : Network / System / Website up time and sec...Show moreLast updated: 7 days ago
- Promoted
Senior / AML Analyst (Stockbroking / Securities Industry)
PEOPLE PROFILERS PTE. LTD.D01 Cecil, Marina, People’s Park, Raffles Place, SG Handle KYC processes for client onboarding and periodic reviews.Review and draft Source of Wealth (SOW) and corroborate Source of Wealth (SOW) / Source of Funds (SOF).
Work with internal teams and c...Show moreLast updated: 8 days ago
- Promoted
Senior / AML Analyst (Stockbroking / Securities Industry) - D01 Cecil, Marina, People’s Park, Raffles Place, SG
PEOPLE PROFILERS PTE. LTD.D01 Cecil, Marina, People’s Park, Raffles Place, SG Handle KYC processes for client onboarding and periodic reviews.Review and draft Source of Wealth (SOW) and corroborate Source of Wealth (SOW) / Source of Funds (SOF).
Work with internal teams and c...Show moreLast updated: 8 days ago
- Promoted
SOC Lead - Permanent - up to SGD12k - MORGAN MCKINLEY PTE. LTD.
MORGAN MCKINLEY PTE. LTD.D01 Cecil, Marina, People’s Park, Raffles Place, SG Are you a seasoned cybersecurity professional with a passion for leading and defending against sophisticated cyber threats? We're looking for an experienced and dynamic.
Global Security Operations C...Show moreLast updated: 6 days ago
- Promoted
SOC Security Analyst - EVVO LABS PTE. LTD.
EVVO LABS PTE. LTD.D13 Macpherson, Braddell, SG Level 1 technical support for the customers and focus on fulfilling and resolving assigned incidents and service requests.
Monitoring and reporting of systems : Network / System / Website up time and sec...Show moreLast updated: 7 days ago
- Promoted
- New!
SOC Analyst
FLINTEX CONSULTING PTE. LTD.D02 Anson, Tanjong Pagar, SG Monitor network traffic, system logs, and security alerts to identify potential security incidents and unauthorized activities in a timely manner.
Design, deploy, and manage threat detection rules a...Show moreLast updated: 1 hour ago
- Promoted
- New!
System Analyst, AML (1 year contract) - JONDAVIDSON PTE. LTD.
JONDAVIDSON PTE. LTD.D12 Balestier, Serangoon, Toa Payoh, SG System Analyst (1 year contract).Domain : Banking, IT Compliance (AML).To lead and deliver with consistently good quality bank’s AML systems enhancements / changes into Production for BAU Production I...Show moreLast updated: 21 hours ago
- Promoted
- New!
SOC Analyst (Security Operations Centre) - FLARE CONSULTING PTE. LTD.
FLARE CONSULTING PTE. LTD.Islandwide, SG We are seeking a SOC Analyst to join our cybersecurity operations team.The ideal candidate will be responsible for monitoring, detecting, investigating, and escalating security threats across our e...Show moreLast updated: 1 hour ago
- Promoted
L1 Cyber Security SOC Analyst - YY SMART TECH PTE. LTD.
YY SMART TECH PTE. LTD.D14 Geylang, Eunos, SG We are seeking for a vigilant L1 Security Operations Center (SOC) Analyst to join our 24 / 7 cybersecurity team.Operating on 12-hour rotational shifts, you will perform real-time monitoring, threat d...Show moreLast updated: 8 days ago
- Promoted
L1 Cyber Security SOC Analyst
YY SMART TECH PTE. LTD.D14 Geylang, Eunos, SG We are seeking for a vigilant L1 Security Operations Center (SOC) Analyst to join our 24 / 7 cybersecurity team.Operating on 12-hour rotational shifts, you will perform real-time monitoring, threat d...Show moreLast updated: 8 days ago
- Promoted
Senior / AML Analyst (Stockbroking / Securities Industry) - PEOPLE PROFILERS PTE. LTD.
PEOPLE PROFILERS PTE. LTD.D01 Cecil, Marina, People’s Park, Raffles Place, SG Handle KYC processes for client onboarding and periodic reviews.Review and draft Source of Wealth (SOW) and corroborate Source of Wealth (SOW) / Source of Funds (SOF).
Work with internal teams and c...Show moreLast updated: 8 days ago
- Promoted
SOC Lead - Permanent - up to SGD12k
MORGAN MCKINLEY PTE. LTD.D01 Cecil, Marina, People’s Park, Raffles Place, SG Are you a seasoned cybersecurity professional with a passion for leading and defending against sophisticated cyber threats? We're looking for an experienced and dynamic.
Global Security Operations C...Show moreLast updated: 6 days ago
- Promoted
SOC Security Analyst - D13 Macpherson, Braddell, SG
EVVO LABS PTE. LTD.D13 Macpherson, Braddell, SG Level 1 technical support for the customers and focus on fulfilling and resolving assigned incidents and service requests.
Monitoring and reporting of systems : Network / System / Website up time and sec...Show moreLast updated: 7 days ago