Detection and SOAR Engineer, Mandiant Consulting, Google Cloud
Tasks
- Advise SOC CSIRT and CDC on security technologies
- Collaborate with stakeholders to resolve security issues
- Configure SIEM and SOAR for incident detection and response
- Create SIEM detection content
- Create SOAR playbooks
- Develop SIEM queries
- Develop Sigma detection signatures
- Integrate APIs into SOAR automations
- Maintain SIEM platform operational readiness
- Maintain SOAR platform operational readiness
- Modify SIEM use cases
- Modify SOAR playbooks
- Provide incident response expertise
Perks/Benefits
- N/A
Skills/Tech-stack
API Integration | Automation and response | Detection and Response | EDR | Event management | KQL | Linux | Network Topology | Network detection | Network detection and response | Networking | Powershell | Python | SIEM | SOAR | SOAR playbooks | SPL | Scripting | Security Information | Security Information and Event | Security Information and Event Management | Security Orchestration | Security Orchestration Automation | Security Orchestration Automation and Response | Sigma | TCPIP
Education
Bachelor of Engineering | Bachelor of Science | Master of Science
Related jobs
-
AWS | Access Management | Active Directory | Application Security | Azure Active DirectoryMid-level Full TimeSingapore, Singapore6h ago
-
AIX | Application Server | Automation | Capacity Planning | Cloud infrastructure24 by 7 technical supportSenior-level Full TimeSingapore, Singapore6h ago
-
Mid-level Full TimeSingapore17h ago
-
Associate Security Operation Engineer SGD 45K-52KCyber Security | Firewall | Incident Management | Networking | Secure Web Gateway24 7 operations exposure | Client site shift work | On-the-job trainingMid-level Full TimeSG Ensign Kallang Place, L7 (Right …19h ago
-
Helpdesk Support Engineer SGD 105K-120KAWS CloudWatch | AWS Lambda | Amazon ECS | Amazon RDS | Amazon S3Senior-level Full TimeSingapore, Singapore, Singapore1d ago
-
Staff Software Engineer, Digital Identity SGD 139K-148KArtificial Intelligence | C++ | Cross-Functional Collaboration | Cross-functional | Data StorageSenior-level Full TimeSingapore2d ago
-
AI Agents | Access Management | Android | Anomaly Analysis | ChromiumMid-level Full TimeSingapore2d ago
-
Batch scripting | Certificate management | Information services | Internet Information Services | LinuxMid-level Full TimeSingapore, Singapore3d ago
-
AWS | Active Directory | Application development | Availability | AzureTravel for client engagementsSenior-level Full TimeSingapore, Singapore3d ago
-
Senior-level Full TimeSingapore, Singapore3d ago
-
Cyberthreat Prevention Analyst (Endpoint Security) SGD 95K-112KCloud Security | Data Loss Prevention | Data loss | EDR | Email SecurityMid-level Full TimeSingapore, Singapore3d ago
-
Mid-level Full TimeSingapore, Singapore, Singapore3d ago
-
Code review | Development Lifecycle | Exploit Development | Go | Malware Reverse EngineeringSenior-level Full TimeSingapore, Singapore, Singapore3d ago
-
Mid-level Full TimeSingapore, Singapore, Singapore3d ago
-
Cybersecurity Engineer SGD 90K-130KAWS | Alert triage | Audit management | Azure | Business Impact AnalysisHealth insurance | Paid leave | Paid time off | Retirement planMid-level Full TimeSIN11, Singapore3d ago
-
Lead, Platform Engineering (Tier 3 Network Support) SGD 135K-184KAnsible | BGP | DMVPN | EIGRP | Firewall PolicyHybrid work with onsite days | Occasional travel | Standby supportSenior-level Full TimeSingapore3d ago
-
API Gateway | API Security | API Top 10 | Access Control | Application FirewallEntry-level Full Time Internship新加坡4d ago
-
Cybersecurity Engineer Intern SGD 70K-78KAntivirus | Firewalls | IP Networking | Linux | RADIUSHybrid workEntry-level Full Time InternshipStarHub Green, Singapore5d ago
-
Senior-level Full TimeSingapore - Woodlands - NorthCoast5d ago
-
Senior-level Full TimeSG-Collyer Quay, Singapore5d ago
-
AWS | Anomali | Ansible | Automated incident response | AzureMid-level Full TimeSG Ensign Kallang Place, L7 (Left …5d ago
-
AWS Backup | Amazon RDS | Backup and Recovery | Cohesity | CommvaultMid-level Full TimeSingapore, Singapore, Singapore6d ago
-
Assembly | C# | C++ | Desktop Reverse Engineering | Mobile reverse engineeringMid-level Full TimeSingapore, Singapore6d ago
-
SysOps Administrator USD 60K-60KAPI Gateway | Amazon Web Services | Ansible | Bitbucket Pipelines | ChefFlexible hours | Internet reimbursement | Opportunity for advancement | Remote work environment | Team eventsMid-level Full TimeSingapore, Singapore6d ago
-
AWS | Access Management | Active Directory | Application Firewall | Application SecurityMid-level Full TimeSingapore, Singapore7d ago