Senior Security Analyst (AZ-FNP221110 001/01)

Our Client is the leading communications technology group, providing a portfolio of services from next-generation communication, 5G and technology services to infotainment to both consumers and businesses. The Client is dedicated to continuous innovation, harnessing next-generation technologies to create new and exciting customer experiences as we shape a more sustainable, digital future. The Client’s purpose is grounded in empowering our people to innovate better ways to connect with customers, unlock new possibilities for future businesses to thrive and foster a sense of ownership and belonging to better serve our stakeholders, partners and communities.

Responsibilities:

• You will be part of an integral member of 24x7 Advanced Security Operations Team contributing to the technology-based solutions.
• Perform security monitoring and provide incident response to the internal / external business users.
• Fine-tune incident alerts and triggers as part of ongoing improvisation of Cybersecurity monitoring operations.
• Identify threats, technical and security risks and participate in the mitigation strategies.
• Provide relevant recommendations to improve the overall Cybersecurity posture of clients organization.
• Review security configurations with other team members to ensure quality and accuracy of requirements.
• Prepare and review reports as part of periodic deliverables.

Requirements

• 2-3 years’ working experience in IT Infrastructure Operation and/or Support.
• Willing to work with 24/7 shift pattern that includes weekend work.
• Sound fundamental knowledge on Internet technologies, such as TCP/IP, HTTP, SSL, DNS, OWASP Top10 and web servers (e.g. Apache, IIS, Nginx, etc.).
• Strong level of experience with and understanding of firewalls, endpoint detection and response (EDR), IDS/IPS, WAF, etc.
• Fluent communicator in both written and spoken English.

Desired Qualifications:

• Singaporean or PR.
• Bachelor’s degree / Polytechnic Diploma in Computer Science, Information Technology or Information System.
• Experience in scripting (e.g. shell scripting, Macro, PHP, Perl, Java, etc.) and/or Regular Expression.
• Experience with TCP/IP packet analysis / network debugging with tcp dump or similar.
• Experience with web security concepts and technologies such as web application firewall, proxy.
• Experience general security technologies, processes, and concepts.
• Industry recognized security certifications (GCIA/GCIH, CISSP, CISA, CEH, etc.).
• Experience writing/decoding exploit, vulnerability, and attack detection signatures.
• Experience working with a SOC team is an advantage.