Assistant Vice President, Senior SOC Analyst, Security Operations

Job Responsibilities

• Lead proactive hunting and analysis against the dataset (e.g., alerts, logs, etc.) and reverse engineering as needed to support Security Operation Centre (SOC) investigations and proactive threat detection and prevention.

• Coordinate and facilitates in-depth analysis, trending, and root cause analysis of security events/incidents while creating and maintaining processes and procedures.

• Perform advanced research on threats, vulnerabilities and potential threat vectors and work with multi-disciplines to improve prevention and detection methods.

• Act as the technical subject-matter-expert for SOC related topics or during incidents,

• Develops and documents the SOC procedures and processes based on industry best practices and internal requirements. 

• Support or lead projects to improve SOC effectiveness, advancing technical capabilities on pace with the latest threats.

• Support and integrate with incident response, threat intelligence, and overall security strategy as needed.

• Perform other essential duties as assigned.

Job Requirements

• Bachelor’s degree in IT or equivalent with min. 5 years of working experience and has 3 years of experience leading a SOC team.

• Strong knowledge in networking / major internet protocols and security concepts

• Min. 3 years of experience in cyber incident response and/or Security Operations center in an enterprise environment.

• Min. 2 years of experience with standard enterprise security tools (e.g., Database Activity Monitoring, Zero Trust Segmentation, Security Information & Event Management, Intrusion Detection Prevention System, Endpoint Detection & Response, etc)

• Min. 2 years of operational experience with Splunk or similar log aggregation/analysis platforms

• Expert execution of investigative concepts for escalated incidents to determine the impact and root cause.

• Strong foundation in security threat and attack countermeasure.

• Possess analytical and problem-solving skills, with the ability to manage multiple tasks in a fast-paced environment.

• Hands-on experience in SIEM and intrusion detection analysis as well as application layer protocols. 

• Have experience in security related areas. Especially experience and expertise in security incident detection and threat intelligence are proven to be extremely useful. 

• Advanced understanding of various operating systems and web technologies with professional security certifications would be a plus.

• Experience in multiple domains within IT or Information Security (e.g. Identity and access management, IT infrastructure operations, Key management, system administration etc.)

• Meticulous, team player, flexible, proactive and positive attitude

• Strong sense of responsibility and initiative.

• Excellent communication and interpersonal skills.

• Work Location: One@ChangiCity