Detection and SOAR Engineer, Mandiant Consulting, Google Cloud
Tasks
- Advise SOC CSIRT and CDC on security technologies
- Collaborate with stakeholders to resolve security issues
- Configure SIEM and SOAR for incident detection and response
- Create SIEM detection content
- Create SOAR playbooks
- Develop SIEM queries
- Develop Sigma detection signatures
- Integrate APIs into SOAR automations
- Maintain SIEM platform operational readiness
- Maintain SOAR platform operational readiness
- Modify SIEM use cases
- Modify SOAR playbooks
- Provide incident response expertise
Perks/Benefits
- N/A
Skills/Tech-stack
API Integration | Automation and response | Detection and Response | EDR | Event management | KQL | Linux | Network Topology | Network detection | Network detection and response | Networking | Powershell | Python | SIEM | SOAR | SOAR playbooks | SPL | Scripting | Security Information | Security Information and Event | Security Information and Event Management | Security Orchestration | Security Orchestration Automation | Security Orchestration Automation and Response | Sigma | TCPIP
Education
Bachelor of Engineering | Bachelor of Science | Master of Science
Related jobs
-
Automation and response | Detection and Response | Detection engineering | EDR | Endpoint Detection and ResponseTravel up to 20 percentSenior-level Full TimeSingapore13h ago
-
Senior IT Security Engineer SGD 96K-118KAccess Management | Antivirus | Common Criteria | Detection Systems | FirewallSenior-level Full TimeSINGAPORE, Singapore1d ago
-
IAM Engineer SGD 138K-138KAPI | AWS CloudFormation | AWS IAM | AWS Lambda | AWS SecretsAnnual leave | Extended dependents coverage | Hybrid or remote work | Medical insurance | Visa card providedMid-level Full TimeSingapore, Singapore1d ago
-
Cybersecurity Engineer (Automation) SGD 84K-120KAPI Integration | Bash | CI/CD | Cortex XSOAR | GitAnnual leave | Birthday leave | Collaborative environment | Family care | Learning cultureMid-level Full TimeSingapore, Singapore, Singapore1d ago
-
Senior Cloud Security Engineer - Remote SGD 120K-135KAI | AWS IAM | Amazon Web Services | Bash | CI/CDESOP | Learning and development | Parental leave | Remote work | WFH office expense budgetSenior-level Full TimeSingapore, Singapore R1d ago
-
Cyber Security Software Engineer (Network Devices) SGD 60K-120KC# | C++ | Linux | Malware analysis | PythonMid-level Full TimeSingapore, Singapore1d ago
-
Active Directory | Azure AD | DHCP | DNS | Hyper-VBackground check compliance | On-call support | Shift workSenior-level Contract Full TimeSingapore, Singapore, Singapore2d ago
-
Mid-level Full TimeSingapore, Singapore2d ago
-
Mid-level Full TimeSingapore4d ago
-
Cybersecurity Engineer (SG) SGD 44K-56KEncryption | Event management | Firewall | Incident Response | Intrusion DetectionEntry-level Full TimeSingapore4d ago
-
Software Engineer (Enterprise Systems) SGD 60K-120KCI/CD | Docker | Elasticsearch | Git | JavaScriptMid-level Full TimeSingapore, Singapore4d ago
-
Access Management | Activity monitoring | Application Firewall | Cloud Native | Cloud-native SecurityMid-level Full TimeLTA BCO (MAIN), Singapore5d ago
-
Access Management | Activity monitoring | Application Firewall | Cloud Native | Cloud-native SecurityMid-level Full TimeLTA ITSC, Singapore5d ago
-
Automation | Cloud Computing | Cyber Threat | Cyber Threat Monitoring | Digital forensics24 x 7 SOC operations | Contract position | Standby rotationMid-level Contract Full TimeMAS: MAS Building, Singapore5d ago
-
Cyber Security Intern SGD 44K-50KAccess Management | Authentication | Data Loss Prevention | Data loss | Dependency ScanningHands-on projects | Mentorship | Team collaborationEntry-level Full Time InternshipSG-Collyer Quay, Singapore5d ago
-
Senior Software Engineer, Enterprise Data Protection SGD 134K-143KAccess Management | Artificial Intelligence | C++ | CSS | CybersecuritySenior-level Full TimeSingapore5d ago
-
Entry-level Full Time InternshipSingapore5d ago
-
Trading Analytics Developer SGD 139K-139KAWS | Aeron | Aeron messaging | Algorithms | Binary encodingAnnual leave | Birthday leave | Crypto debit card provided | Extended dependents coverage | Flexi-work hoursMid-level Full TimeSingapore, Singapore5d ago
-
Bash | Cloud Security | Cybersecurity Framework | DevSecOps | Endpoint protectionMid-level Contract Full TimeMAS: MAS Building, Singapore6d ago
-
APM | AS3 | Ansible | Application Firewall | Application Performance MonitoringMandatory security training | On-call supportSenior-level Full TimeSingapore6d ago
-
Lead Network Engineer, Site Reliability Engineering SGD 135K-143KAnsible | Application Performance Monitoring | Application performance | Arista | Check PointOn-call responsibilitiesSenior-level Full TimeSingapore6d ago
-
Activity monitoring | App-ID | Change Management | DNS | Database activity monitoringSenior-level Full TimeSingapore, Singapore6d ago
-
Product Engineer (Operations Management) SGD 42K-60KCI/CD | Database Concepts | HTTP APIs | Java | JavaScriptMid-level Full TimeSingapore, Singapore6d ago
-
Application Security | Excel | ITIL | Linux | NessusSenior-level ContractSingapore, Singapore, Singapore7d ago
-
Senior-level Full TimeSingapore, Singapore, Singapore7d ago