Security Analyst

NCS is a leading technology services firm that operates across the Asia Pacific region in over 20 cities, providing consulting, digital services, technology solutions, and more. We believe in harnessing the power of technology to achieve extraordinary things, creating lasting value and impact for our communities, partners, and people. Our diverse workforce of 13,000 has delivered large-scale, mission-critical, and multi-platform projects for governments and enterprises in Singapore and the APAC region. 

We’re searching for a Security Analyst to be part of our diverse team of talents here at NCS!

If you believe in going above and beyond, want to exemplify the best, and wish to bring people and technology together like never before, then we would love to have a conversation with you!

Overview

The NCS Cyber Risk Management & Security team is looking for a Security Operations Analyst to be part of Cyber Operations function. The role will have the opportunity to work closely with multiple teams on the development of Cyber Operations and the ability to shape and influence the security monitoring process and other cyber operations activities. The incumbent will report to the Cyber Security Operations Lead and be responsible for responding to high-critical severity incidents, SIEM monitoring & investigation and has a part to play on formulating incident response runbooks. 

What we seek to accomplish together:

• Monitor and respond to security events and incidents using established incident response plan/runbook and creating process and procedures where none are already established. 

• Recognizing potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information. 

• Work on escalated security incidents (malware infections, unauthorized access, malicious emails, Phishing, Distributed Denial of Service (DDoS) attacks, etc.) 

• Coordinating with stakeholders with supporting third party security service providers to triage alerts, events or incidents. 

• Creation of SIEM custom detection rules to identify suspicious cyber threats or anomaly activities. 

• Experience in responding to security events, including front-line analysis and escalation, on hacktivist, cybercrime, and APT activity. 

• Support cyber incident response plan/lifecycle to ensure proper assessment, containment, mitigation and documentation. 

• Reviews incident data and provide root cause analysis and recommendations on how to prevent future occurrences 

• Identify coverage and efficiency gaps in IR runbook, security data and response tooling. 
• Be on standby rotation, responding to high severity incidents escalated by cyber security operations analysts. 

A little bit about you:

• Degree/Diploma or higher in Computer Science, Information Systems or equivalent 

• At least 2 years of experience in cyber security operations or SOC environment. 

• Proven and hands on experience in area of SIEM, IDS/IPS, EDR, data leakage prevention (DLP) and SOAR. 

• Strong knowledge of various automated security control systems, encryption, message authentication, vulnerability assessment, threat intelligence intrusion detection, penetration testing and incident response. 

• Good knowledge in Incident response lifecycle, different Operating Systems, TCP/IP networking and application layers. 

• Professional security related qualification (e.g. SANS GCIA, GSEC, GCIH) will be favourable although not mandatory 

We are driven by our AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity—and we seek individuals who embody these values in both their professional and personal lives. We are committed to our Impact: Valuing our clients, Growing our people, and Creating our future.  

Together, we make the extraordinary happen.  

Learn more about us at ncs.co and visit our LinkedIn career site. 

We handle all profiles with the highest level of confidentiality.