259 Cybersecurity Analysts jobs in Singapore

We are seeking a motivated and detail-oriented cybersecurity professional to assist in identifying vulnerabilities in systems, networks, and applications by performing security assessments and penetration tests. This includes utilizing various tools and techniques to simulate real-world attacks and evaluate the effectiveness of existing security measures.

• Key qualifications include:

A strong understanding of computer systems, networking fundamentals, and operating system security. Proficiency in programming languages such as Python, C++, or Java is also necessary. Additionally, experience with vulnerability assessment tools like Nmap, Metasploit, or Burp Suite is highly desirable.

The ideal candidate will have excellent analytical and problem-solving skills, be able to work effectively in a team environment, and possess strong communication skills. A bachelor's degree in Computer Science, Cybersecurity, or a related field is required.

This role offers a dynamic and challenging work environment with opportunities for growth and professional development. You will be part of a collaborative team working on complex projects that require innovative solutions.

By joining our organization, you will gain valuable experience in the field of cybersecurity and contribute to the improvement of our company's overall security posture.

Job Title: Cybersecurity Specialist

We are seeking a highly skilled Cybersecurity Specialist to join our team. This role involves designing and implementing high-fidelity detection rules across SIEMs and EDR platforms, building custom use cases based on MITRE ATT&CK and red team insights, eliminating false positives, improving alert accuracy, and continuously optimizing detection logic.

About the Role:

• Design and implement high-fidelity detection rules across SIEMs (Splunk, Sentinel, Devo, QRadar) and EDR platforms.
• Build custom use cases based on MITRE ATT&CK and red team insights to identify and mitigate potential threats.
• Eliminate false positives, improve alert accuracy, and continuously optimize detection logic to ensure the security of our systems.
• Collaborate with red/purple teams to validate and evolve detection strategies.
• Proactively hunt for threats across hybrid environments using telemetry from SIEM, EDR, and NDR tools.
• Leverage threat intelligence and frameworks (MITRE, Diamond Model) to build and execute targeted hunting campaigns.
• Analyze and operationalize threat intel to inform detection rules and incident response.
• Lead end-to-end investigations—from triage to recovery—during security incidents.
• Conduct forensic analysis and produce detailed reports with root cause and mitigation plans.
• Develop playbooks, runbooks, and coordinate across teams and clients during major events.
• Mentor junior analysts and contribute to process automation and SOP development.
• Engage with customers through regular reviews, briefings, and incident updates.
• Drive continuous improvement through lessons learned, threat trends, and feedback loops.

Requirements:

• 8–10+ years in SOC/MSSP environments with deep SIEM (Splunk, QRadar, Sentinel, Devo) and EDR (CrowdStrike, Defender) expertise.
• Hands-on experience with SOAR platforms, malware analysis, scripting (shell, Python), and basic Unix/Linux troubleshooting.
• Strong grasp of threat detection, cyber TTPs, and frameworks like MITRE ATT&CK.
• Excellent communication skills and the ability to lead cross-functional collaboration.
• SANS certification (e.g., GCIH) strongly preferred.

Bonus Points For:

• Experience with threat hunting, vulnerability assessments, or DFIR.
• Familiarity with cloud platforms (AWS, Azure, GCP) and network security tools.
• Exposure to threat intel platforms like MISP.

Job Objectives

The Security Governance Specialist role will support the Head of Security Governance in enhancing and maintaining the Security Governance within the Group Information Security(GIS) function in the Bank.

Key Responsibilities

This position will support senior Security Governance team members and work closely with various business, risk and technology stakeholders to:

• Proactively assess the compliance exposure to current and emerging security-related regulatory requirements and plan & track remediation efforts.

• Manage reverse third-party due diligence engagements related to GIS.

• Manage audit, assurance and regulatory engagements related to GIS including ongoing knowledge management on queries and request for information.

• Track and report against the technology KORI(Key Operational Risk Indicators)/KRIs and required security metrics.

• Execution of the GIS KRCSA (Key Risk and Control Self Assessments).

• Management policy, procedures and standards updates and control.

• Manage various GIS initiatives and duties as assigned.

Key Requirements

• Communicate effectively with a variety of internal and external teams and stakeholders.

• Capable of managing a variety of priorities and deliverables with minimal guidance or supervision.

• Ability to respond to any requests and issues on a timely basis.

Education

• Diploma/Degree in engineering/Computer Science / IT/Cyber Security from a recognized education institution.

• Professional Technology Risk Management/Cybersecurity related qualification will be favorable although not mandatory.

• Knowledge of industry best practices.

Technical Skills

• Overall experience 5+ years of experience.

• 2+ years of relevant experience in Security/IT governance disciplines.

• Have a strong security risk and analytical mindset in approaching situations and interactions with stakeholders.

• Effective negotiating skills and demonstrated sensitivity to working and interacting with stakeholders.

• Good knowledge of Security concepts and practices.

• Good knowledge of Security related guidelines and advisories from regulators.

• Good with numbers for use in metrics.

Soft Skills

• Good written and verbal communication skills and expertise in setting and managing stakeholder expectations.

• Process aware mindset.

• Strong analytical and problem-solving skills.

• Effective time management and organizational skills.

• Strong team player.

• Able to work independently with minimal supervision.

• High degree of attention to detail and discipline on tracking and managing the closure of identified gaps and issues.

• Willing to learn quickly.

Job Objectives

The Security Governance Specialist role will support the Head of Security Governance in enhancing and maintaining the Security Governance within the Group Information Security(GIS) function in the

United Overseas Bank Limited (UOB) is a leading bank in Asia with a global network of more than 500 branches and offices in 19 countries and territories in Asia Pacific, Europe and North America. In Asia, we operate through our head office in Singapore and banking subsidiaries in China, Indonesia, Malaysia, Thailand and Vietnam, as well as branches and offices. Our history spans more than 80 years. Over this time, we have been guided by our values – Honorable, Enterprising, United and Committed. This means we always strive to do what is right, build for the future, work as one team and pursue long-term success. It is how we work, consistently, be it towards the company, our colleagues or our customers.

About Department

The Technology and Operations function is comprised of five teams of specialists with distinct capabilities: business partnership, technology, operations, risk governance and planning support and services. We work closely together to harness the power of technology to support our physical and digital banking services and operations. This includes developing, centralising and standardising technology systems as well as banking operations in Singapore and overseas branches.

Job Objectives

• Act as the 1st line of defense with the responsibility to protect the bank information.

• Implement Information Security controls aligning with Group directions.

Responsibilities

• Access control management including provisioning, recertification, privilege access management.

• Conduct due diligence on 3rd parties providing services to UOB that involve information security.

• Conduct application security review for internal development.

• Drive the campaigns to raise awareness on Information Security among staffs following Group program.

• Support the mandatory trainings on Information Security for all staffs.

• DLP rules review and management.

• Manage exception handling process.

• Coordinate for Security projects being rolled out.

• Perform gap analysis against regulatory requirements.

• Prepare response and evidence submission for security assessment/review requested by various parties.

• Consult BUs/SUs on Information Security matters.

KEY RESPONSIBILITIES

• Carry out the end-to-end security management for enterprise of application security, host security, data security, network security, including but not limited to security policy management and system maintenance.

• Responsible for the Governance, Risk and Compliance technical implementation of personal information protection requirements.

• Project management, plan and coordinate security tools implementation throughout the overseas region. Providing periodic reporting of progress and issues.

• Conduct and perform periodic security awareness training and phishing campaigns.

• Responsible for the break-down and implementation of the development work in the baseline specification and technical architecture.

• Provide day-to-day IT support to all employees, including troubleshooting hardware, software, network, and system issues.

• Manage and maintain IT infrastructure, including servers, network devices, computers, printers, and security systems.

KEY REQUIREMENTS

The ideal candidates we are looking for should be seasoned Information Security Professionals with:

• Bachelor’s degree or above in Computer Science.

• At least 3 years working experience in network or information security related fields.

• Familiar with ISO27001, ITIL related technical standards and control measures.

• Familiar with common information security products and technical principles, e.g. system and network security, DLP, antivirus, encryption, SIEM, Zero Trust etc.

• Security certification such as CISSP, CISA, CCNP, CCIE is preferred.

Join to apply for the Information Security Engineer role at Manpower Singapore

2 days ago Be among the first 25 applicants

Join to apply for the Information Security Engineer role at Manpower Singapore

Information Security Engineer, Vulnerability Management and Operation

We are seeking an exceptional Security Engineer to support our vulnerability management program. This is a technical, operation-oriented, and hands-on role in a dynamic and fast-paced environment.

You'll work with various applications and systems to manage vulnerabilities, follow up with different teams, drive remediation, and improve current processes.

• You will join a team that stays up to date on emerging security vulnerabilities and threats, maintains composure in crises, and advocates for improving product and service security.
• You need a good technical background and a strong interest in network, system, and web security.
• The role requires excellent communication skills to collaborate effectively with diverse teams. Responsibilities include:
• Working cross-functionally to identify and assess vulnerabilities, guiding teams through the remediation lifecycle with a focus on timely resolution and outcome-driven communication.
• Using programming to analyze large data dumps related to systems and applications to extract key information for vulnerability impact analysis.

• BSc in Computer Science, Information Technology, Information Security, or related field
• At least 3 years of experience in information security or related field
• Self-starter with flexibility to work remotely and support a global team
• Ability to manage multiple activities concurrently
• Passionate about data security
• Experience with vulnerability scanning tools like Tenable, Qualys, etc.
• Familiarity with common security vulnerabilities and their severity assessment
• Ability to analyze vulnerabilities and provide remediation guidance
• Independent in supporting and driving vulnerability remediation
• Continuous improvement mindset and automation skills
• Ability to run proof of concept for known vulnerabilities
• Understanding of IPv4 and IPv6 networks
• Proficiency in programming languages such as Python, Go, Rust, or Bash scripting
• Excellent critical thinking skills
• Problem-solving skills related to logic and algorithms
• Experience with SQL and Linux
• Experience with penetration testing
• Knowledge of the security research community

Note: Your response to this advertisement and communications will constitute informed consent for the collection, use, and disclosure of personal data by ManpowerGroup Singapore, in accordance with the Personal Data Protection Act 2012. For more information, visit ManpowerGroup's Privacy Policy .

• Carry out the end-to-end security management for enterprise of application security, host security, data security, network security, including but not limited to security policy management and system maintenance.
• Responsible for the Governance, Risk and Compliance technical implementation of personal information protection requirements.
• Project management, plan and coordinate security tools implementation throughout the overseas region. Providing periodic reporting of progress and issues.
• Conduct and perform periodic security awareness training and phishing campaigns.
• Responsible for the break-down and implementation of the development work in the baseline specification and technical architecture.

• Bachelor's degree or above in Computer Science.
• At least 3 years working experience in network or information security related fields.
• Familiar with ISO27001, ITIL related technical standards and control measures.
• Familiar with common information security products and technical principles, e.g. system and network security, DLP, antivirus, encryption, SIEM, Zero Trust etc.
• Security certification such as CISSP, CISA, CCNP, CCIE is preferred.