Senior Cyber Threat Analyst (Offensive Security, Threat Hunting & Incident Response)

LOVE WHAT YOU DO? THERE IS A PLACE FOR YOU HERE!

Be part of our diverse and inclusive team.

Job Responsibilities

The candidate is expected to perform the following activities:

• Adversarial Simulation:
• Perform comprehensive analyses and simulations to mimic cyber threats and identify vulnerabilities.
• Execute intel-led security testing and red/purple team exercises using frameworks such as MITRE Cyber Threat Informed Defence and TIBER-EU.
• Conduct attack simulation exercises using Tactics, Techniques, and Procedures (TTPs) that cyber threat actors use to plan and execute cyber-attacks.

Red Team Activities:

• Conduct authorized offensive security operations to test the effectiveness of cyber defenses and simulate cyber-attacks.
• Perform social engineering assessments (email phishing, vishing, physical access attacks) to simulate password theft, system infiltration, and malware/ransomware deployment.

Forensics and Incident Response:

• Lead cyber incident investigations and response efforts.
• Collaborate with cybersecurity specialists to maintain and update security testing methodologies.

General Responsibilities:

• Ensure consistent and regular attendance.
• Perform other related duties as assigned.

Job Requirements

Education & Certification

• Degree or diploma with at least 5-10 years of hands-on cybersecurity experience in relevant areas.
• Preferred certifications: CISSP, OSCP, CRTP, CRTO, OSWE.

Experience

• Experience in Gaming, Banking, or Critical Infrastructure InfoComm Industry is an advantage.
• Effective verbal and written communication skills.
• Proficiency with offensive security tools such as Cobalt Strike, Empire, Havoc, Mythic.
• Experience in setting up red teaming Command and Control (C2) infrastructure, including web/proxy servers, redirectors, domain fronting.
• Skills in developing malicious payloads and understanding obfuscation and encryption techniques.
• Proficiency in at least one scripting language (e.g., Bash, PowerShell) and/or programming language (e.g., Python, C, C#, C++, Java).
• Understanding of basic networking concepts and Internet protocols (e.g., TCP/IP, HTTP(S), SMTP, DNS, SSL/TLS).
• Knowledge of industry-recognized security testing standards and penetration testing methodology.
• Strong understanding of enterprise technologies, operations, and security evaluations.

Other Prerequisites

• Strong analytical and problem-solving skills.
• Advanced written and verbal communication skills.
• Ability to foster an efficient, innovative, and team-oriented work environment.
• Proactive, dedicated, innovative, resourceful, and able to work under pressure.
• Excellent communication and interpersonal skills to present ideas and results to both technical and non-technical audiences.
• Thrive in a fast-paced, dynamic, and global working environment.
• Adapt quickly to changing priorities and complete tasks within established timeframes.
• Establish and maintain cooperative working relationships with team members, management, and external contacts.
• Maintain composure under pressure and meet deadlines with stakeholders.

Marina Bay Sands is committed to building a diverse, equitable and inclusive workforce, providing equal opportunities as we grow our talent base to match our growth ambitions in Singapore. Our employees are committed to adhere to and abide by all rules, regulations, policies and procedures, including the rules of conduct and business ethics of the Company.