228 Cybersecurity Analyst jobs in Singapore

(Job ID: 1020861)

What You'll Do

Detection Engineering

• Design and fine-tune high-fidelity detection rules across SIEMs (Splunk, Sentinel, Devo, QRadar) and EDR platforms.
• Build custom use cases based on MITRE ATT&CK and red team insights.
• Eliminate false positives, improve alert accuracy, and continuously optimize detection logic.
• Collaborate with red/purple teams to validate and evolve detection strategies.

Threat Hunting & Intelligence

• Proactively hunt for threats across hybrid environments using telemetry from SIEM, EDR, and NDR tools.
• Leverage threat intelligence and frameworks (MITRE, Diamond Model) to build and execute targeted hunting campaigns.
• Analyze and operationalize threat intel to inform detection rules and incident response.

Incident Response

• Lead end-to-end investigations—from triage to recovery—during security incidents.
• Conduct forensic analysis and produce detailed reports with root cause and mitigation plans.
• Develop playbooks, runbooks, and coordinate across teams and clients during major events.

Collaboration & Leadership

• Mentor junior analysts and contribute to process automation and SOP development.
• Engage with customers through regular reviews, briefings, and incident updates.
• Drive continuous improvement through lessons learned, threat trends, and feedback loops.

Requirements

• 8–10+ years in SOC/MSSP environments with deep SIEM (Splunk, QRadar, Sentinel, Devo) and EDR (CrowdStrike, Defender) expertise.
• Hands-on experience with SOAR platforms, malware analysis, scripting (shell, Python), and basic Unix/Linux troubleshooting.
• Strong grasp of threat detection, cyber TTPs, and frameworks like MITRE ATT&CK.
• Excellent communication skills and the ability to lead cross-functional collaboration.
• SANS certification (e.g., GCIH) strongly preferred.

Bonus Points For

• Experience with threat hunting, vulnerability assessments, or DFIR.
• Familiarity with cloud platforms (AWS, Azure, GCP) and network security tools.
• Exposure to threat intel platforms like MISP.

We regret that only shortlisted candidates will be notified. However, rest assured that all applications will be updated to our resume bank for future opportunities.

Please kindly refer to the Privacy Policy of Good Job Creations for your reference: Personnel Name: Ong Kang Quan Ryan

EA Personnel Registration Number: R23116952

EA License No.: 07C5771

This role involves assisting in the development and implementation of information security strategies, policies, and procedures.

• Job summary:

• Collaborate with cross-functional teams to develop and document comprehensive information security plans.

• Support the deployment, maintenance, and review of security tools, including firewalls, SIEM, antivirus, and IDS/IPS systems.

• Work closely with network and infrastructure teams to understand current setups and implement basic security configurations and controls.

• Participate in security risk assessments, vulnerability scans, and audits to identify areas for improvement.

• Monitor security logs and alerts, triage events, and support incident response activities to minimize disruption to business operations.

• Assist in maintaining asset inventories and configuration documentation related to security tools and processes.

• Contribute to compliance reporting and documentation efforts to ensure adherence to regulatory requirements.

• Stay informed on emerging cybersecurity trends, threats, and best practices to stay ahead of potential risks.

• Participate in training and awareness initiatives to promote security best practices across the organization.

• Learn and apply security best practices in public cloud environments such as AWS, Azure, or GCP.

• Other duties may be assigned by supervisor based on business needs.

Required Skills and Qualifications:

• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
• 3-5 years of experience in a cybersecurity, network support, or IT security operations role.
• Familiarity with security concepts: threat types, risk management, incident response, and data protection.
• Foundational understanding of networking principles and protocols (TCP/IP, routing basics, firewalls, VPN, Encryption).
• Familiarity with security tools (e.g., SIEM, antivirus, firewall, vulnerability scanner).
• Basic scripting or automation skills (Python, PowerShell) are a plus.

About This Opportunity

Netpoleon Solutions is a well-established IT Network Security solutions provider with a significant presence in Asia.

We have multiple offices across the continent, including Singapore, Malaysia, Indonesia, Philippines, Thailand, Vietnam, Myanmar, India, Australia, and New Zealand.

This role involves leveraging strong analytical skills and excellent cybersecurity knowledge to contribute to our team's success.

Key Responsibilities:

• Analyzing complex network security issues
• Developing effective solutions to mitigate risks
• Collaborating with cross-functional teams to implement security protocols

Benefits:

• A competitive compensation package
• Ongoing training and professional development opportunities
• A dynamic and supportive work environment

What We Offer:

At Netpoleon Solutions, we prioritize employee growth and well-being. Our team is comprised of talented individuals who share a passion for cybersecurity and innovation.

(Job ID: 1020861)

What You’ll Do

Detection Engineering

• Design and fine-tune high-fidelity detection rules across SIEMs (Splunk, Sentinel, Devo, QRadar) and EDR platforms.
• Build custom use cases based on MITRE ATT&CK and red team insights.
• Eliminate false positives, improve alert accuracy, and continuously optimize detection logic.
• Collaborate with red/purple teams to validate and evolve detection strategies.

Threat Hunting & Intelligence

• Proactively hunt for threats across hybrid environments using telemetry from SIEM, EDR, and NDR tools.
• Leverage threat intelligence and frameworks (MITRE, Diamond Model) to build and execute targeted hunting campaigns.
• Analyze and operationalize threat intel to inform detection rules and incident response.

Incident Response

• Lead end-to-end investigations—from triage to recovery—during security incidents.
• Conduct forensic analysis and produce detailed reports with root cause and mitigation plans.
• Develop playbooks, runbooks, and coordinate across teams and clients during major events.

Collaboration & Leadership

• Mentor junior analysts and contribute to process automation and SOP development.
• Engage with customers through regular reviews, briefings, and incident updates.
• Drive continuous improvement through lessons learned, threat trends, and feedback loops.

Requirements

• 8–10+ years in SOC/MSSP environments with deep SIEM (Splunk, QRadar, Sentinel, Devo) and EDR (CrowdStrike, Defender) expertise.
• Hands-on experience with SOAR platforms, malware analysis, scripting (shell, Python), and basic Unix/Linux troubleshooting.
• Strong grasp of threat detection, cyber TTPs, and frameworks like MITRE ATT&CK.
• Excellent communication skills and the ability to lead cross-functional collaboration.
• SANS certification (e.g., GCIH) strongly preferred.

Bonus Points For

• Experience with threat hunting, vulnerability assessments, or DFIR.
• Familiarity with cloud platforms (AWS, Azure, GCP) and network security tools.
• Exposure to threat intel platforms like MISP.

We regret that only shortlisted candidates will be notified. However, rest assured that all applications will be updated to our resume bank for future opportunities.

Please kindly refer to the Privacy Policy of Good Job Creations for your reference:
EA Personnel Name: Ong Kang Quan Ryan
EA Personnel Registration Number: R23116952
EA License No.: 07C5771

Get AI-powered advice on this job and more exclusive features.

We are seeking an experienced and highly skilled cybersecurity professional to join our dynamic team as a Senior Cybersecurity Analyst / Security Engineering Lead .

In this role, you will be responsible for leading advanced security engineering initiatives and providing oversight of incident monitoring and response activities within a Level 2/3 Security Operations Center (SOC) environment. You will play a critical role in proactively identifying, investigating, and mitigating security threats, as well as driving efforts to ensure robust endpoint protection and overall infrastructure security.

Responsibilities:

Cyber Incident and Forensic Investigation:

• Lead and conduct thorough cyber incident investigations, ensuring proper analysis of threats and breaches.
• Perform forensic analysis to understand the scope of security incidents and assist in data recovery, evidence preservation, and reporting.

SOC Incident Monitoring and Investigation:

• Oversee Level 2/3 SOC operations to ensure the timely identification and resolution of security threats.
• Coordinate and lead incident response efforts across various security systems, managing escalations effectively.

Vulnerability Assessment and Penetration Testing (VA/PT):

• Conduct vulnerability assessments and penetration testing on networks, systems, and applications.
• Provide actionable recommendations for remediation of identified vulnerabilities and ensure security measures are implemented.

Endpoint Security Management:

• Implement and manage endpoint security solutions including anti-malware, encryption, and troubleshooting of endpoint devices.
• Ensure that all endpoints are secured in compliance with company security policies.

Leadership in Security Engineering:

• Lead and mentor the security engineering team, providing guidance on the design, implementation, and maintenance of security systems.
• Oversee the development and deployment of proactive security measures, ensuring the team remains responsive to evolving cyber threats.

Ethical Hacking and Security Testing:

• Perform hands-on ethical hacking, including penetration testing and vulnerability assessments, to assess and enhance organizational security posture.

Requirements:-

Certifications:

• Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), or equivalent certifications.
• CISSP (Certified Information Systems Security Professional) or equivalent certification is highly preferred.

Experience:

• 5+ years of experience in cybersecurity, with hands-on experience in incident response, digital forensics, and security engineering.
• Demonstrated experience in managing security operations within a Level 2/3 SOC environment.
• Proven experience in vulnerability assessments, penetration testing, and remediation strategies.
• Expertise in endpoint security tools and anti-malware solutions.
• Strong experience in ethical hacking and penetration testing practices.

Technical Skills:

• Deep understanding of common attack vectors and security tools (e.g., SIEM, IDS/IPS, endpoint protection).
• Strong knowledge of encryption protocols and endpoint protection strategies.
• Familiarity with network security principles, firewalls, VPNs, and intrusion detection systems.

Leadership & Communication:

• Excellent leadership, communication, and team management skills.
• Ability to clearly explain complex security issues and incident findings to non-technical stakeholders.

Only shortlisted candidate will be notified.

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Analyst, Information Technology, and Project Management
• Industries Information Services and Financial Services

Referrals increase your chances of interviewing at Maybank by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the IT Compliance & Cybersecurity Analyst - Financial Service role at Monee .

The IT Compliance & Risk unit within SeaMoney manages Information Technology and Cyber Security risk profiles, including risk identification, management, and mitigation across the group (including overseas countries).

• Establish and oversee cyber security and IT risk policies, technology, tools, and governance processes to minimize losses from cyber security issues, failed internal processes, inadequate controls, emerging risks, and regulatory breaches.
• Support security and technology compliance with internal policies, processes, and controls, as well as external regulations, while proactively evaluating the control environment for improvements.
• Collaborate effectively with business, operations, engineering, security, and infrastructure teams to evaluate, recommend, deliver, and manage security/IT solutions across Cyber and IT domains.
• Manage audit/regulatory reviews, including coordination, communication, and required actions with internal auditors, external auditors, regulators, and stakeholders.

• Bachelor's degree or higher in computer science, technology, finance, accounting, or related fields.
• Bilingual in English and Mandarin for cross-border collaboration.
• Interest/experience in: Information Security, Infrastructure Security, Application and Data Security, Cloud Security, CI/CD, containerization security.
• Understanding of banking-related applications, technologies, risk management, and regulatory compliance.
• Knowledge of security standards (ISO 27001, PCI, NIST, CIS).
• For IT Risk roles, relevant certifications (CISA, CISSP) and IT audit experience are a plus.
• Strong communication skills in English and Mandarin.
• Self-driven, positive, team-oriented, adaptable in dynamic environments.

• Seniority level: Entry level
• Employment type: Full-time
• Job function: Information Technology

Join to apply for the Cybersecurity Data Analyst role at IMDA .

The Data Operations and Intel Division in IMDA is the cybersecurity arm that processes and analyses data to discover trends and precursors to potential incidents impacting the resilience and cybersecurity posture of the infocomm and media sectors.

Early detection of cyber threats and prompt sharing of intel for intervention actions are crucial for mitigating potential damages. You will be part of the cyber operations team to analyze and identify potential cybersecurity threats using data analytics and threat hunting techniques on big data. You will work closely with cybersecurity counterparts to proactively initiate intervention actions on identified threats.

• Analyze, correlate, interpret, and visualize data to uncover trends and patterns.
• Formulate and test threat hunting hypotheses.
• Produce insights and supporting evidence to aid decision-making.
• Compile and share intelligence with counterparts for prompt intervention actions.
• Translate concepts and results into reports and presentations for senior stakeholders.

• Degree in Computer Science, Computer Engineering, Mathematics, Statistics, Data Science, or related fields.
• Knowledge of cybersecurity concepts and applications; relevant certifications are preferred.
• At least 5 years of experience in data transformation, interpretation, and analysis.
• Knowledge of statistical techniques and experience applying them.
• Experience with big data frameworks such as Hadoop, Hive, Spark, and complex SQL queries.
• Domain knowledge in Computer Networking, Network Security, or System Security is preferred.
• Strong communication, writing, and presentation skills.
• Fast learner, self-motivated, and able to acquire new knowledge quickly.

This position will be commensurate with experience.

Only shortlisted applicants will be notified.

• Seniority level: Mid-Senior level
• Employment type: Full-time
• Job function: Information Technology
• Industry: Government Administration

Referrals increase your chances of interviewing at IMDA by 2x.

Sign in to set job alerts for “Cyber Security Analyst” roles.

• Analyst would be part of 24x7 Cyber Security Operations function to perform security monitoring and incident response, data loss prevention, vulnerability management, threat intelligence and threat hunting.
• Perform monitoring, research, assessment and analysis on alerts from SIEM tools.
• Follow pre-defined actions to investigate possible security incidents or perform incident response actions, including escalating to other support groups.
• Maintains standard operating procedures (SOP), processes and guidelines.
• Ensure proper functioning of systems in the Security Operations Centre.
• Send out emails to L2 and other groups and follow up accordingly.

Requirements

- Strong analytical and problem-solving skills, with the ability to quickly identify and resolve security issues.

- Proven ability to work in a fast-paced environment, prioritize tasks, and meet deadlines.

- Ability to work in a team and each individual's contribution is crucial to the team's objectives.

- This is a 24/7 operational work. Able to commit to 12-hour shifts, weekends and public holidays.

- Excellent communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams and convey complex security concepts to non-technical stakeholders.

- Proven ability to work in a fast-paced environment, prioritize tasks, and meet deadlines.

• Analyst would be part of 24x7 Cyber Security Operations function to perform security monitoring and incident response, data loss prevention, vulnerability management, threat intelligence and threat hunting.
• Perform monitoring, research, assessment and analysis on alerts from SIEM tools.
• Follow pre-defined actions to investigate possible security incidents or perform incident response actions, including escalating to other support groups.
• Maintains standard operating procedures (SOP), processes and guidelines.
• Ensure proper functioning of systems in the Security Operations Centre.
• Send out emails to L2 and other groups and follow up accordingly.

Requirements

- Strong analytical and problem-solving skills, with the ability to quickly identify and resolve security issues.

- Proven ability to work in a fast-paced environment, prioritize tasks, and meet deadlines.

- Ability to work in a team and each individual’s contribution is crucial to the team’s objectives.

- This is a 24/7 operational work. Able to commit to 12-hour shifts, weekends and public holidays.

- Excellent communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams and convey complex security concepts to non-technical stakeholders.

- Proven ability to work in a fast-paced environment, prioritize tasks, and meet deadlines.