77 Security Analysis jobs in Singapore

(Job ID: 1020861)

What You'll Do

Detection Engineering

• Design and fine-tune high-fidelity detection rules across SIEMs (Splunk, Sentinel, Devo, QRadar) and EDR platforms.
• Build custom use cases based on MITRE ATT&CK and red team insights.
• Eliminate false positives, improve alert accuracy, and continuously optimize detection logic.
• Collaborate with red/purple teams to validate and evolve detection strategies.

Threat Hunting & Intelligence

• Proactively hunt for threats across hybrid environments using telemetry from SIEM, EDR, and NDR tools.
• Leverage threat intelligence and frameworks (MITRE, Diamond Model) to build and execute targeted hunting campaigns.
• Analyze and operationalize threat intel to inform detection rules and incident response.

Incident Response

• Lead end-to-end investigations—from triage to recovery—during security incidents.
• Conduct forensic analysis and produce detailed reports with root cause and mitigation plans.
• Develop playbooks, runbooks, and coordinate across teams and clients during major events.

Collaboration & Leadership

• Mentor junior analysts and contribute to process automation and SOP development.
• Engage with customers through regular reviews, briefings, and incident updates.
• Drive continuous improvement through lessons learned, threat trends, and feedback loops.

Requirements

• 8–10+ years in SOC/MSSP environments with deep SIEM (Splunk, QRadar, Sentinel, Devo) and EDR (CrowdStrike, Defender) expertise.
• Hands-on experience with SOAR platforms, malware analysis, scripting (shell, Python), and basic Unix/Linux troubleshooting.
• Strong grasp of threat detection, cyber TTPs, and frameworks like MITRE ATT&CK.
• Excellent communication skills and the ability to lead cross-functional collaboration.
• SANS certification (e.g., GCIH) strongly preferred.

Bonus Points For

• Experience with threat hunting, vulnerability assessments, or DFIR.
• Familiarity with cloud platforms (AWS, Azure, GCP) and network security tools.
• Exposure to threat intel platforms like MISP.

We regret that only shortlisted candidates will be notified. However, rest assured that all applications will be updated to our resume bank for future opportunities.

Please kindly refer to the Privacy Policy of Good Job Creations for your reference: Personnel Name: Ong Kang Quan Ryan

EA Personnel Registration Number: R23116952

EA License No.: 07C5771

This role involves assisting in the development and implementation of information security strategies, policies, and procedures.

• Job summary:

• Collaborate with cross-functional teams to develop and document comprehensive information security plans.

• Support the deployment, maintenance, and review of security tools, including firewalls, SIEM, antivirus, and IDS/IPS systems.

• Work closely with network and infrastructure teams to understand current setups and implement basic security configurations and controls.

• Participate in security risk assessments, vulnerability scans, and audits to identify areas for improvement.

• Monitor security logs and alerts, triage events, and support incident response activities to minimize disruption to business operations.

• Assist in maintaining asset inventories and configuration documentation related to security tools and processes.

• Contribute to compliance reporting and documentation efforts to ensure adherence to regulatory requirements.

• Stay informed on emerging cybersecurity trends, threats, and best practices to stay ahead of potential risks.

• Participate in training and awareness initiatives to promote security best practices across the organization.

• Learn and apply security best practices in public cloud environments such as AWS, Azure, or GCP.

• Other duties may be assigned by supervisor based on business needs.

Required Skills and Qualifications:

• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
• 3-5 years of experience in a cybersecurity, network support, or IT security operations role.
• Familiarity with security concepts: threat types, risk management, incident response, and data protection.
• Foundational understanding of networking principles and protocols (TCP/IP, routing basics, firewalls, VPN, Encryption).
• Familiarity with security tools (e.g., SIEM, antivirus, firewall, vulnerability scanner).
• Basic scripting or automation skills (Python, PowerShell) are a plus.

About This Opportunity

Netpoleon Solutions is a well-established IT Network Security solutions provider with a significant presence in Asia.

We have multiple offices across the continent, including Singapore, Malaysia, Indonesia, Philippines, Thailand, Vietnam, Myanmar, India, Australia, and New Zealand.

This role involves leveraging strong analytical skills and excellent cybersecurity knowledge to contribute to our team's success.

Key Responsibilities:

• Analyzing complex network security issues
• Developing effective solutions to mitigate risks
• Collaborating with cross-functional teams to implement security protocols

Benefits:

• A competitive compensation package
• Ongoing training and professional development opportunities
• A dynamic and supportive work environment

What We Offer:

At Netpoleon Solutions, we prioritize employee growth and well-being. Our team is comprised of talented individuals who share a passion for cybersecurity and innovation.

Get AI-powered advice on this job and more exclusive features.

We are seeking an experienced and highly skilled cybersecurity professional to join our dynamic team as a Senior Cybersecurity Analyst / Security Engineering Lead .

In this role, you will be responsible for leading advanced security engineering initiatives and providing oversight of incident monitoring and response activities within a Level 2/3 Security Operations Center (SOC) environment. You will play a critical role in proactively identifying, investigating, and mitigating security threats, as well as driving efforts to ensure robust endpoint protection and overall infrastructure security.

Responsibilities:

Cyber Incident and Forensic Investigation:

• Lead and conduct thorough cyber incident investigations, ensuring proper analysis of threats and breaches.
• Perform forensic analysis to understand the scope of security incidents and assist in data recovery, evidence preservation, and reporting.

SOC Incident Monitoring and Investigation:

• Oversee Level 2/3 SOC operations to ensure the timely identification and resolution of security threats.
• Coordinate and lead incident response efforts across various security systems, managing escalations effectively.

Vulnerability Assessment and Penetration Testing (VA/PT):

• Conduct vulnerability assessments and penetration testing on networks, systems, and applications.
• Provide actionable recommendations for remediation of identified vulnerabilities and ensure security measures are implemented.

Endpoint Security Management:

• Implement and manage endpoint security solutions including anti-malware, encryption, and troubleshooting of endpoint devices.
• Ensure that all endpoints are secured in compliance with company security policies.

Leadership in Security Engineering:

• Lead and mentor the security engineering team, providing guidance on the design, implementation, and maintenance of security systems.
• Oversee the development and deployment of proactive security measures, ensuring the team remains responsive to evolving cyber threats.

Ethical Hacking and Security Testing:

• Perform hands-on ethical hacking, including penetration testing and vulnerability assessments, to assess and enhance organizational security posture.

Requirements:-

Certifications:

• Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), or equivalent certifications.
• CISSP (Certified Information Systems Security Professional) or equivalent certification is highly preferred.

Experience:

• 5+ years of experience in cybersecurity, with hands-on experience in incident response, digital forensics, and security engineering.
• Demonstrated experience in managing security operations within a Level 2/3 SOC environment.
• Proven experience in vulnerability assessments, penetration testing, and remediation strategies.
• Expertise in endpoint security tools and anti-malware solutions.
• Strong experience in ethical hacking and penetration testing practices.

Technical Skills:

• Deep understanding of common attack vectors and security tools (e.g., SIEM, IDS/IPS, endpoint protection).
• Strong knowledge of encryption protocols and endpoint protection strategies.
• Familiarity with network security principles, firewalls, VPNs, and intrusion detection systems.

Leadership & Communication:

• Excellent leadership, communication, and team management skills.
• Ability to clearly explain complex security issues and incident findings to non-technical stakeholders.

Only shortlisted candidate will be notified.

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Analyst, Information Technology, and Project Management
• Industries Information Services and Financial Services

Referrals increase your chances of interviewing at Maybank by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the Cybersecurity Data Analyst role at IMDA .

The Data Operations and Intel Division in IMDA is the cybersecurity arm that processes and analyses data to discover trends and precursors to potential incidents impacting the resilience and cybersecurity posture of the infocomm and media sectors.

Early detection of cyber threats and prompt sharing of intel for intervention actions are crucial for mitigating potential damages. You will be part of the cyber operations team to analyze and identify potential cybersecurity threats using data analytics and threat hunting techniques on big data. You will work closely with cybersecurity counterparts to proactively initiate intervention actions on identified threats.

• Analyze, correlate, interpret, and visualize data to uncover trends and patterns.
• Formulate and test threat hunting hypotheses.
• Produce insights and supporting evidence to aid decision-making.
• Compile and share intelligence with counterparts for prompt intervention actions.
• Translate concepts and results into reports and presentations for senior stakeholders.

• Degree in Computer Science, Computer Engineering, Mathematics, Statistics, Data Science, or related fields.
• Knowledge of cybersecurity concepts and applications; relevant certifications are preferred.
• At least 5 years of experience in data transformation, interpretation, and analysis.
• Knowledge of statistical techniques and experience applying them.
• Experience with big data frameworks such as Hadoop, Hive, Spark, and complex SQL queries.
• Domain knowledge in Computer Networking, Network Security, or System Security is preferred.
• Strong communication, writing, and presentation skills.
• Fast learner, self-motivated, and able to acquire new knowledge quickly.

This position will be commensurate with experience.

Only shortlisted applicants will be notified.

• Seniority level: Mid-Senior level
• Employment type: Full-time
• Job function: Information Technology
• Industry: Government Administration

Referrals increase your chances of interviewing at IMDA by 2x.

Sign in to set job alerts for “Cyber Security Analyst” roles.

• Analyst would be part of 24x7 Cyber Security Operations function to perform security monitoring and incident response, data loss prevention, vulnerability management, threat intelligence and threat hunting.
• Perform monitoring, research, assessment and analysis on alerts from SIEM tools.
• Follow pre-defined actions to investigate possible security incidents or perform incident response actions, including escalating to other support groups.
• Maintains standard operating procedures (SOP), processes and guidelines.
• Ensure proper functioning of systems in the Security Operations Centre.
• Send out emails to L2 and other groups and follow up accordingly.

Requirements

- Strong analytical and problem-solving skills, with the ability to quickly identify and resolve security issues.

- Proven ability to work in a fast-paced environment, prioritize tasks, and meet deadlines.

- Ability to work in a team and each individual's contribution is crucial to the team's objectives.

- This is a 24/7 operational work. Able to commit to 12-hour shifts, weekends and public holidays.

- Excellent communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams and convey complex security concepts to non-technical stakeholders.

- Proven ability to work in a fast-paced environment, prioritize tasks, and meet deadlines.

Select how often (in days) to receive an alert:

NCS is a leading technology services firm that operates across the Asia Pacific region in over 20 cities, providing consulting, digital services, technology solutions, and more. We believe in harnessing the power of technology to achieve extraordinary things, creating lasting value and impact for our communities, partners, and people. Our diverse workforce of 13,000 has delivered large-scale, mission-critical, and multi-platform projects for governments and enterprises in Singapore and the APAC region.

As a Security Analyst, this incumbent will perform initial analysis (e.g. analysing and reviewing alerts, eliminating false positives and determining severity of threats) to determine impact of compromise

What will you do?

• Perform initial analysis (e.g. analysing and reviewing alerts, eliminating false positives and determining severity of threats) to determine impact of compromise
• Conduct basic investigations of security events, including malware infections and unauthorized access attempts.
• Determine the nature, mechanisms and scope of incident by performing event correlation and historical searches to determine the extent of a security compromise
• Escalate complex or highly suspicious alerts for further investigation and response.
• Record details of all activities, including investigations performed, findings and remediation steps taken.
• Collects data, evidence, and context necessary for further escalation.
• Perform event correlation across the In-Scope Institutions to identify similar attack pattern and spread of attack.
• Handling case management, generating tickets and reports when required, and tracking open tickets until closure

The ideal candidate should possess:

• Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, or related field.
• Able to commit to permanent night shifts
• Team player and able to work independently.
• Experience in analysing data and review alerts

We are driven by our AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity —and we seek individuals who embody these values in both their professional and personal lives. We are committed to our Impact: Valuing our clients, Growing our people, and Creating our future .

Together, we make the extraordinary happen .

Learn more about us at ncs.co and visit our LinkedIn career site.

Select how often (in days) to receive an alert:

NCS is a leading technology services firm that operates across the Asia Pacific region in over 20 cities, providing consulting, digital services, technology solutions, and more. We believe in harnessing the power of technology to achieve extraordinary things, creating lasting value and impact for our communities, partners, and people. Our diverse workforce of 13,000 has delivered large-scale, mission-critical, and multi-platform projects for governments and enterprises in Singapore and the APAC region.

As a Security Analyst, this incumbent will perform initial analysis (e.g. analysing and reviewing alerts, eliminating false positives and determining severity of threats) to determine impact of compromise

What will you do?

• Perform initial analysis (e.g. analysing and reviewing alerts, eliminating false positives and determining severity of threats) to determine impact of compromise
• Conduct basic investigations of security events, including malware infections and unauthorized access attempts.
• Determine the nature, mechanisms and scope of incident by performing event correlation and historical searches to determine the extent of a security compromise
• Escalate complex or highly suspicious alerts for further investigation and response.
• Record details of all activities, including investigations performed, findings and remediation steps taken.
• Collects data, evidence, and context necessary for further escalation.
• Perform event correlation across the In-Scope Institutions to identify similar attack pattern and spread of attack.
• Handling case management, generating tickets and reports when required, and tracking open tickets until closure

The ideal candidate should possess:

• Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, or related field.
• Able to commit to permanent night shifts
• Team player and able to work independently.
• Experience in analysing data and review alerts

We are driven by our AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity —and we seek individuals who embody these values in both their professional and personal lives. We are committed to our Impact: Valuing our clients, Growing our people, and Creating our future .

Together, we make the extraordinary happen .

Learn more about us at ncs.co and visit our LinkedIn career site.

Press Tab to Move to Skip to Content Link

Select how often (in days) to receive an alert:

Select how often (in days) to receive an alert:

NCS is a leading technology services firm that operates across the Asia Pacific region in over 20 cities, providing consulting, digital services, technology solutions, and more. We believe in harnessing the power of technology to achieve extraordinary things, creating lasting value and impact for our communities, partners, and people. Our diverse workforce of 13,000 has delivered large-scale, mission-critical, and multi-platform projects for governments and enterprises in Singapore and the APAC region.

As a SOC Consultant, you'll be responsible for conducting advanced threat analysis and investigating security incidents to safeguard organizational assets. The role involves close collaboration with Cyber Incident Response Team (CIRT) members, business stakeholders, and executive leadership to coordinate effective response protocols. Key responsibilities include developing detection logic, configuring security platforms such as SIEM, SOAR, EDR, and threat intelligence tools, and creating detailed technical reports documenting forensic procedures and timelines.

What will you do?

• Perform advanced threat analysis and investigate security events.
• Work with CIRT members, business partners, and executive leadership to coordinate response protocols.
• Writing technical reports detailing how the computer evidence was discovered and all the steps taken during the retrieval process (timeline).
• Develop detection logic & security playbooks.
• Configure SIEM, SOAR, EDR and/or threat intelligence platforms.
• Sharing knowledge with SOC Security Analyst and supporting them.
• Conduct sampling check on SOC Security Analyst tickets.
• Be clear of customer's security framework, such as information security policies, processes/procedures, guidelines and etc.

The ideal candidate should possess:

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.
• Relevant certifications such as GCIA, GCIH, CEH, CISSP, or Security+ are highly preferred.
• 3–5 years of experience in cybersecurity operations, threat analysis, or incident response.
• Hands-on experience with SIEM, SOAR, EDR, and threat intelligence platforms.
• Proven experience in writing technical reports and conducting forensic investigations.
• Strong understanding of network protocols, malware behavior, and attack vectors.
• Proficiency in configuring and tuning security tools and platforms.
• Ability to develop detection logic and security playbooks.
• Familiarity with scripting languages (e.g., Python, PowerShell) is a plus.
• Excellent communication and report-writing skills.
• Strong analytical and problem-solving abilities.
• Ability to work collaboratively with cross-functional teams including CIRT, SOC, and leadership.
• Detail-oriented with a proactive approach to continuous improvement.
• Solid grasp of information security frameworks, policies, and procedures.
• Understanding of regulatory compliance standards (e.g., ISO 27001, NIST, GDPR).

We are driven by our AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity —and we seek individuals who embody these values in both their professional and personal lives. We are committed to our Impact: Valuing our clients, Growing our people, and Creating our future .

Together, we make the extraordinary happen .

Learn more about us at ncs.co and visit our LinkedIn career site.