185 Gsoc Specialist jobs in Singapore

• Conduct 24/7 monitoring of the company's information assets using various cybersecurity tools to assess internal and external threats.
• Detect, identify, and alert on potential security incidents including intrusions, abnormal behaviors, and misuse, while differentiating these from non-malicious activities.
• Utilize cybersecurity tools to continuously monitor system activities for signs of malicious behavior.
• Analyze and respond to emerging threats, vulnerabilities in software/hardware, and system anomalies.
• Develop automation scripts and fine-tune SIEM rules to streamline incident triage and analysis.
• Provide incident response (IR) support as needed.
• Generate actionable threat intelligence using both open-source and commercial threat feeds.
• Conduct proactive threat hunting for Indicators of Compromise (IOCs), threat actor tactics, techniques, and procedures (TTPs), and other signs of malicious activity in the environment.

• Min 1 year of relevant working experience in SOC as security analyst, IT Security Operations and Computer Emergency Response Team (CERT/CIRT)
• Diploma/ Degree in computer science/ Computer Engineering / Information Security or related certifications.
• Strong understanding of data from network diagnostic tools (e.g., ping, traceroute, nslookup).
• Certifications with GSEC, GCIH, GCIA, GCTI, GCFA, GCFE, or GNFA will be advantageous.
• Proficiency in scripting languages like Python, Bash, or PowerShell is a plus.
• Working experience with OWASP Top 10, CVSS, MITRE ATT&CK framework, Cyber Kill Chain and DevSecOps strongly preferred.
• Able to work with 24/7 work shift pattern that including weekend.
• Strong knowledge of incident response and incident handling methodologies.

Roles and Responsibilities:

• Monitor network traffic, system logs, and security alerts to identify potential security incidents and unauthorized activities in a timely manner.

• esign, deploy, and manage threat detection rules and preventive security controls to safeguard critical systems and data in response to the latest threat landscape.

• P rform in-depth analysis of security events to determine the nature and scope of potential security incidents and recommend risk mitigation strategies. When necessary, carry out digital forensic for reporting and auditing purposes.

• C ntribute in threat hunting exercises or cyber projects to improve overall security posture. 

Qualifications & Experience:

• Tec nical know-how and experience in solutions such as but not limited to:

• N twork Security (F/W, IPS, VPN, NAC) - Fortigate, Palo Alto

• W b Security (WAF, Web isolation) - Cloudflare, Zscaler, Microsoft

• E dpoint Security (EDR, AV, DLP) - Crowdstrike, Microsoft

• T reat Monitoring - Qradar, GoogleSec Ops, Resilient, Claroty

• V lnerability Management – Tenable, Ivanti, Microsoft

• Clo d Security – Microsoft, Palo Alto

• Ide tity Management - Microsoft, CyberArk

• T reat Hunting and Simulation – Cymulate, Crowdstrike

• 3 y ars of relevant experience in SOC environment

We are looking for a Level 1 SOC Analyst to monitor and respond to security alerts. You will be the first point of contact for identifying potential security incidents and escalating them as needed. This is a great role for someone starting their career in cybersecurity.

• Monitor security alerts using tools like SIEM, firewalls, antivirus, etc.
• Do the first level of analysis and triage of alerts.
• Create and update incident tickets.
• Escalate critical alerts to senior analysts.
• Follow standard procedures (runbooks).
• Document all actions taken.

• Basic knowledge of cybersecurity and networking.
• Familiar with tools like SIEM or firewalls (training will be provided).
• Good communication and documentation skills.
• Willing to work in rotational shifts (24x7).
• Degree in IT/Cybersecurity or related field (or relevant certification like Security+).

• Knowledge of Windows/Linux systems.
• Basic scripting (Python, PowerShell)
• Any prior internship or hands-on lab work in cybersecurity.

EA License # 14C6941

• Conduct 24/7 monitoring of the company's information assets using various cybersecurity tools to assess internal and external threats.
• Detect, identify, and alert on potential security incidents including intrusions, abnormal behaviors, and misuse, while differentiating these from non-malicious activities.
• Utilize cybersecurity tools to continuously monitor system activities for signs of malicious behavior.
• Analyze and respond to emerging threats, vulnerabilities in software/hardware, and system anomalies.
• Develop automation scripts and fine-tune SIEM rules to streamline incident triage and analysis.
• Provide incident response (IR) support as needed.
• Generate actionable threat intelligence using both open-source and commercial threat feeds.
• Conduct proactive threat hunting for Indicators of Compromise (IOCs), threat actor tactics, techniques, and procedures (TTPs), and other signs of malicious activity in the environment.

• Min 1 year of relevant working experience in SOC as security analyst, IT Security Operations and Computer Emergency Response Team (CERT/CIRT)
• Diploma/ Degree in computer science/ Computer Engineering / Information Security or related certifications.
• Strong understanding of data from network diagnostic tools (e.g., ping, traceroute, nslookup).
• Certifications with GSEC, GCIH, GCIA, GCTI, GCFA, GCFE, or GNFA will be advantageous.
• Proficiency in scripting languages like Python, Bash, or PowerShell is a plus.
• Working experience with OWASP Top 10, CVSS, MITRE ATT&CK framework, Cyber Kill Chain and DevSecOps strongly preferred.
• Able to work with 24/7 work shift pattern that including weekend.
• Strong knowledge of incident response and incident handling methodologies.

We are looking for a Level 1 SOC Analyst to monitor and respond to security alerts. You will be the first point of contact for identifying potential security incidents and escalating them as needed. This is a great role for someone starting their career in cybersecurity.

• Monitor security alerts using tools like SIEM, firewalls, antivirus, etc.
• Do the first level of analysis and triage of alerts.
• Create and update incident tickets.
• Escalate critical alerts to senior analysts.
• Follow standard procedures (runbooks).
• Document all actions taken.

• Basic knowledge of cybersecurity and networking.
• Familiar with tools like SIEM or firewalls (training will be provided).
• Good communication and documentation skills.
• Willing to work in rotational shifts (24x7).
• Degree in IT/Cybersecurity or related field (or relevant certification like Security+).

• Knowledge of Windows/Linux systems.
• Basic scripting (Python, PowerShell)
• Any prior internship or hands-on lab work in cybersecurity.

EA License # 14C6941

Roles and Responsibilities:

• Monitor network traffic, system logs, and security alerts to identify potential security incidents and unauthorized activities in a timely manner.

• esign, deploy, and manage threat detection rules and preventive security controls to safeguard critical systems and data in response to the latest threat landscape.

• P rform in-depth analysis of security events to determine the nature and scope of potential security incidents and recommend risk mitigation strategies. When necessary, carry out digital forensic for reporting and auditing purposes.

• C ntribute in threat hunting exercises or cyber projects to improve overall security posture. 

Qualifications & Experience:

• Tec nical know-how and experience in solutions such as but not limited to:

• N twork Security (F/W, IPS, VPN, NAC) - Fortigate, Palo Alto

• W b Security (WAF, Web isolation) - Cloudflare, Zscaler, Microsoft

• E dpoint Security (EDR, AV, DLP) - Crowdstrike, Microsoft

• T reat Monitoring - Qradar, GoogleSec Ops, Resilient, Claroty

• V lnerability Management – Tenable, Ivanti, Microsoft

• Clo d Security – Microsoft, Palo Alto

• Ide tity Management - Microsoft, CyberArk

• T reat Hunting and Simulation – Cymulate, Crowdstrike

• 3 y ars of relevant experience in SOC environment

Roles and Responsibilities:

• Monitor network traffic, system logs, and security alerts to identify potential security incidents and unauthorized activities in a timely manner.

• esign, deploy, and manage threat detection rules and preventive security controls to safeguard critical systems and data in response to the latest threat landscape.

• P rform in-depth analysis of security events to determine the nature and scope of potential security incidents and recommend risk mitigation strategies. When necessary, carry out digital forensic for reporting and auditing purposes.

• C ntribute in threat hunting exercises or cyber projects to improve overall security posture. 

Qualifications & Experience:

• Tec nical know-how and experience in solutions such as but not limited to:

• N twork Security (F/W, IPS, VPN, NAC) - Fortigate, Palo Alto

• W b Security (WAF, Web isolation) - Cloudflare, Zscaler, Microsoft

• E dpoint Security (EDR, AV, DLP) - Crowdstrike, Microsoft

• T reat Monitoring - Qradar, GoogleSec Ops, Resilient, Claroty

• V lnerability Management – Tenable, Ivanti, Microsoft

• Clo d Security – Microsoft, Palo Alto

• Ide tity Management - Microsoft, CyberArk

• T reat Hunting and Simulation – Cymulate, Crowdstrike

• 3 y ars of relevant experience in SOC environment

Position: Junior SOC Analyst / Engineer

Experience: 3-5 years

Number of Positions: 2

Salary Range: 5k-7k

• Experience in cyber security as an analyst or incident responder (in a SOC/CSIRT setup, preferably)
• In-depth knowledge of current threat landscape, offensive tooling, and OWASP and MITRE ATT&CK techniques
• Technical writing skills to present complex topics to non-technical audiences
• Excellent oral and written communication skills (English)
• Malware and exploit analysis (or reverse engineering)
• Developing hypothesis-driven threat hunts
• Analyzing various events, including but not limited to web traffic, underlying network protocols, malware, lateral movement TTPs (techniques, tactics, and procedures), or Microsoft and Linux security events
• Logfile correlation and analysis, and/or system and memory analysis
• Major incident response or breach investigation management
• Chain of custody and forensic acquisitions is a bonus
• Experience with Amazon AWS is desirable

• Analyst would be part of 24x7 Cyber Security Operations function to perform security monitoring and incident response, data loss prevention, vulnerability management, threat intelligence and threat hunting.
• Perform monitoring, research, assessment and analysis on alerts from SIEM tools.
• Follow pre-defined actions to investigate possible security incidents or perform incident response actions, including escalating to other support groups.
• Maintains standard operating procedures (SOP), processes and guidelines.
• Ensure proper functioning of systems in the Security Operations Centre.
• Send out emails to L2 and other groups and follow up accordingly.

• - Strong analytical and problem-solving skills, with the ability to quickly identify and resolve security issues.
• - Proven ability to work in a fast-paced environment, prioritize tasks, and meet deadlines.
• - Ability to work in a team and each individual's contribution is crucial to the team's objectives.
• - This is a 24/7 operational work. Able to commit to 12-hour shifts, weekends and public holidays.
• - Excellent communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams and convey complex security concepts to non-technical stakeholders.
• - Proven ability to work in a fast-paced environment, prioritize tasks, and meet deadlines.