IT Specialist, Network and Security (MY)

Established in 2017, QCP is one of the first digital asset trading firms in Singapore, with a vision to partner the next generation of investors to unlock institutional opportunities in digital assets.

QCP brings to clients deep expertise gained from thriving through multiple market cycles. A global market maker in digital asset derivatives with a vast network of liquidity providers and counterparties, we are shaping the future of digital asset markets through greater access and efficiency.

We offer a range of tailored derivatives and spot trading as well as structured solutions to institutional, professional and accredited investors. We also provide 24/7 liquidity across various markets in partnership with various exchanges and platforms.

QCP is headquartered in Singapore and is supported by a strong team of professionals in trading, business development, operations, risk and compliance teams.

Our in-house publications track the constantly evolving state of digital assets and markets and can be accessed on our Telegram (t.me/QCPbroadcast), website (qcpgroup.com), Twitter (@qcpgroup) and LinkedIn.


Responsibilities 

We are seeking a highly motivated and skilled IT Security Specialist to join our dynamic security operations team. In this critical role, you will be at the forefront of defending our digital assets by continuously monitoring our security landscape, responding to threats, and proactively identifying and mitigating vulnerabilities. You will play a key part in maintaining and improving our security posture, ensuring the confidentiality, integrity, and availability of our information systems. This role offers the opportunity to work with cutting-edge security technologies and contribute to a culture of security excellence.

• Continuously monitor SIEM systems, SOAR, EDR, and threat intelligence platforms to detect and respond to threats.

• Oversee and respond to the incident, collaborating with DFIR teams and stakeholders to ensure thorough analysis, remediation, and enhanced forensic capabilities.
• Participate the vulnerability management programme, conducting regular Vulnerability Assessments and Penetration Testing (VAPT) to ensure compliance and risk mitigation.
• Assist and optimise security tools, including EDR, NDR, and monitoring tools, to improve detection and response capabilities.
• Contribute to develop, maintain, and operate Standard Operating Procedures (SOPs), runbooks, and playbooks to standardise and streamline incident response and security operations.
• Conduct in-depth analyses of security threats, attack vectors, vulnerabilities, and Tactics, Techniques, and Procedures (TTPs), including OSINT and Indicators of Compromise (IoCs).
• Prepare and present data-driven reports on threat trends and vulnerability insights to stakeholders, aiding informed decision-making.
• Drive continuous improvement in security operations, fostering a culture of innovation and ongoing professional development within the team.
• Manage project priorities, deadlines, and deliverables, alongside ad-hoc duties.

Requirements

• Degree in Information Systems, Computer Science, Cybersecurity, or a related field.
• Relevant security certifications (e.g., CompTIA Security+, CySA+) are desirable.
• A minimum of 2 years of experience in IT security operations or a related role with significant end-user interaction and support responsibilities.
• Demonstrated experience in help desk ticketing systems, IT service management (ITSM) and resolving end-user security incidents with strong problem-solving and analytical skills.
• Strong understanding of endpoint security concepts and technologies, including EDR and patch management.
• Basic understanding of networking principles and their impact on endpoint security.
• Familiarity with common operating systems used by end-users (Windows, macOS, iOS, Android) and their security features.
• Familiar with native cloud security solutions, including AWS Cloud Security and Microsoft Azure Security.
• Experience in developing and delivering security awareness training or guidance to end-users is a plus.
• Ability to document incidents, procedures, and user guidance clearly and concisely.
• Ability to take a proactive and customer-focused approached to security and display strong interpersonal skills to explain technical security concepts to non-technical users, ultimately maintaining a secure working environment.

Benefits

The Environment We Offer

As a growing firm with a tightly-knit team, we respect and listen to all our employees. You will get the chance to make an impact by having your voice heard by everyone, including the management.

Our employees enjoy a high level of autonomy at work. We focus on substance, not form - as long as you can perform, you will be recognized and rewarded. We are also dedicated to supporting our staff and ensuring they develop holistically to maximize their potential in the long- term.

We also provide flexible working arrangement as required and a casual and fun environment to boot!