842 Siem Engineer jobs in Singapore

Responsibilities:

• Design, plan, installation, maintenance, configuration of Splunk distributed/cluster deployment, and integration with infrastructure tools, security devices and application software.
• Drive collaboration with peers to manage efforts with our Splunk solutions.
• Manage and maintain all Splunk components (search heads, indexers, forwarders)
• Manage data ingestion from different sources (data inputs, indexes, source types)
• Create Splunk contents (dashboard, reports, alerts, etc) for new use cases
• Manage Splunk access and permissions (users, roles, authentications)
• Fine tuning of existing searches for better performance
• Upgrade and installation of Splunk application (custom apps, Splunk-base apps)
• View Splunk logs for troubleshooting – must be well versed with Splunk SPL, Linux commands and python scripting.
• Troubleshoot technical issues to establish the root cause of problems and form a solution or workaround across a range of environments.
• Reproduce issues and if necessary, file bug reports, escalate cases to vendor, and provide necessary documentation
  Requirements:

Education:

• Bachelor’s degree in computer science or related field.
• Certifications (preferred but not explicitly listed):

o Splunk Certified Power User / Admin / Architect
Essential:
• You must be well versed with Splunk SPL, Linux commands and python scripting
o Design, deployment, and maintenance of distributed/clustered Splunk environments
o Management of search heads, indexers, forwarders
o Data ingestion: configuring inputs, indexes, source types
o Content creation: dashboards, reports, alerts
o Access control: user roles, authentication
o Application management: installing/upgrading custom and Splunk base apps
o Scripting & Troubleshooting
o Linux command-line skills
o Python scripting for automation and troubleshooting
o Log analysis and issue reproduction
o Bug reporting and vendor escalation

• You must be the experienced developer, with good experience in system integration/interfacing.
• Depending on the project, your duties may include coding, scripting, building new systems (where necessary) and interfaces. For new system build-up, you may need to environment support during SIT/UAT.
• You are expected to ensure your work are adequately documented and transferred to the production team post-cutover.
• You will be expected to work with the senior developers and system architect in formulating technical solutions that is fit for purpose for your assigned projects. The solution will need to satisfy all security, regulatory and architectural standards.
  Key Domain/ Technical Skills:
• Splunk as a core SPL (Search Processing Language) and reporting
• Integration with infrastructure and security devices
• Python Scripting for automation and troubleshooting.

About us:
D L Resources Pte Ltd is a leading provider of IT Professional Services & Banking outsourced staffing solutions, serving a diverse portfolio of clients across various industries including Financial Services Institutions, Banks & MNCs.
Interested candidates may reach out directly to our recruiters (Edwin
| EA License No: 24C2333 | EA Personnel No: R24123520)
#J-18808-Ljbffr

about the role

• Implement and manage security information and event management (SIEM) and user and entity behavior analytics (UEBA) systems
• Develop and fine-tune monitoring rules and automated workflows to maintain compliance with industry standards and best practices.
• Configure and administer a variety of security management platforms and tools at an enterprise level.

.

Skills and experience required

• Minimum diploma in Computer Science or equivalent
• Minimum 2 years of experience with the implementation and administration of enterprise-scale SIEM/UEBA platforms.

To apply online please use the apply function, alternatively you may contact Chloe Chen at chloe.chen(@)randstad.com.sg. (EA: 94C3609 /R1768253)

1 year ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

Job Description

Develop and continually refine the security framework, information security policies, processes, procedures, and guidelines.

Ensure compliance with these policies and procedures through regular security reviews and audits, including log analysis and security assessments of customer ICT systems.

Conduct security risk management exercises and table-top exercises.

Perform vulnerability assessments and coordinate penetration testing activities.

Deliver information security awareness training.

Develop and manage the customer’s security incident response plan.

Lead and support the customer in resolving and responding to security incidents.

Serve as the primary point of contact and advisor for the customer on ICT security-related matters.

Manage project activities and deliverables during the implementation phase.

Job Requirements

Minimum of 5 years of experience in IT security.

Experience with networks, servers (Windows and UNIX), and databases.

Proven track record in IT security auditing and security assessments.

Proficient in analyzing logs from various sources and understanding protocols and traffic flows.

Knowledge of Active Directory, endpoint protection solutions, Early Detection and Response solutions, Database Activity Monitoring tools, and SIEM.

Adaptable, team-oriented, and proactive personality.

Ability to independently organize and plan work.

Capable of working effectively in a rapidly changing environment.

Strong multi-tasking skills and the ability to switch contexts effectively between different activities and teams.

CISSP, CISM, Security+, or other relevant IT security certifications (e.g., Imperva, Carbon Black) are advantageous.

EA Licence No.:18S9405 / EA Reg. No.:R1330864

Skills & Competencies

IT security,CISSP,CISM,Security+

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries IT Services and IT Consulting

Referrals increase your chances of interviewing at Percept Solutions by 2x

Get notified about new Information Security Analyst jobs in Singapore .

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

1 year ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

Job Description
Develop and continually refine the security framework, information security policies, processes, procedures, and guidelines.
Ensure compliance with these policies and procedures through regular security reviews and audits, including log analysis and security assessments of customer ICT systems.
Conduct security risk management exercises and table-top exercises.
Perform vulnerability assessments and coordinate penetration testing activities.
Deliver information security awareness training.
Develop and manage the customer’s security incident response plan.
Lead and support the customer in resolving and responding to security incidents.
Serve as the primary point of contact and advisor for the customer on ICT security-related matters.
Manage project activities and deliverables during the implementation phase.
Job Requirements
Minimum of 5 years of experience in IT security.
Experience with networks, servers (Windows and UNIX), and databases.
Proven track record in IT security auditing and security assessments.
Proficient in analyzing logs from various sources and understanding protocols and traffic flows.
Knowledge of Active Directory, endpoint protection solutions, Early Detection and Response solutions, Database Activity Monitoring tools, and SIEM.
Adaptable, team-oriented, and proactive personality.
Ability to independently organize and plan work.
Capable of working effectively in a rapidly changing environment.
Strong multi-tasking skills and the ability to switch contexts effectively between different activities and teams.
CISSP, CISM, Security+, or other relevant IT security certifications (e.g., Imperva, Carbon Black) are advantageous.
EA Licence No.:18S9405 / EA Reg. No.:R1330864
Skills & Competencies
IT security,CISSP,CISM,Security+

Seniority level

• Seniority level

  Mid-Senior level

Employment type

• Employment type

  Full-time

Job function

• Job function

  Information Technology

• Industries

  IT Services and IT Consulting

Referrals increase your chances of interviewing at Percept Solutions by 2x

Get notified about new Information Security Analyst jobs in Singapore .

Information Technology - Cyber Security Analyst (Scoot)

Security Specialist, Detection & Response, Global Security Organisation - TikTok, Singapore

Information Security Analyst / IT Support Engineer

Technology & Cyber Security Risk Analyst

Information Technology - Cyber Security Specialist (Architecture and Engineering)

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

People deserve more from their money. More visibility, more control, and more freedom. Since 2015, Revolut has been on a mission to deliver just that. Our powerhouse of products — including spending, saving, investing, exchanging, travelling, and more — help our 60+ million customers get more from their money every day.

As we continue our lightning-fast growth, 2 things are essential to our success: our people and our culture. In recognition of our outstanding employee experience, we've been certified as a Great Place to Work. So far, we have 10,000+ people working around the world, from our offices and remotely, to help us achieve our mission. And we're looking for more brilliant people. People who love building great products, redefining success, and turning the complexity of a chaotic world into the simplicity of a beautiful solution.

Our Technology team isn’t just one of the best in the industry. It's one of the best in the world. And we’re proud of it. It’s our driving force — our engine.

From building a new financial backend to creating an innovative app, there’s nothing they can’t do. Our Technology team isn’t here to fix legacy systems — it’s here to build world-class financial features from the ground up that'll be used by millions of people around the world.

We're looking for an Information Security Analyst who'll be responsible for managing and operating the prevention, detection, and response capabilities to proactively address security threats. Your main focus will be learning and preventing threats to IT environments.

If you have a passion for designing detections, deploying automations, performing threat hunting, and thriving under pressure when responding to an active incident, then you might just be the person we're looking for.

• Designing, developing, and deploying security rules/detections
• Independently triaging, investigating, escalating, and closing security cases
• Reviewing logs, alerts, and cases for suspicious activity and threats
• Assessing and monitoring infrastructure and remediating capability gaps
• Operating and configuring security tools and platforms on workstations and cloud service providers
• Reporting on detection and response processes and metrics
• Assisting in developing forward-thinking security processes as needed

• 3+ years of information security experience or equivalent in relevant academic experience
• Expertise in security analysis tools and techniques (ELK stack, Jupyter notebooks, etc.)
• Hands-on experience with security response procedures and triage of incidents
• Fundamental knowledge of modern operating systems, file systems, networking, and information security
• Experience with EDR, network edge protection, web filtering, or other security tools
• Experience analysing threats according to the MITRE ATT&CK framework
• Fluency in English

• Detection and response experience within cloud environments (GCP, AWS, Azure)
• Experience with cloud, CI/CD, and containerised environments (K8s, docker, Ansible/Terraform)
• ML and GenAI data analysis experience, such as automating security use cases
• A bachelor's degree in a STEM subject
• A postgraduate degree in information security

Building a global financial super app isn’t enough. Our Revoluters are a priority, and that’s why in 2021 we launched our inaugural D&I Framework, designed to help us thrive and grow everyday. We're not just doing this because it's the right thing to do. We’re doing it because we know that seeking out diverse talent and creating an inclusive workplace is the way to create exceptional, innovative products and services for our customers. That’s why we encourage applications from people with diverse backgrounds and experiences to join this multicultural, hard-working team.

Important notice for candidates:

Job scams are on the rise. Please keep these guidelines in mind when applying for any open roles.

• Only apply through official Revolut channels. We don’t use any third-party services or platforms for our recruitment.
• Always double-check the emails you receive. Make sure all communications are being done through official Revolut emails, with an @revolut.com domain.

We won't ask for payment or personal financial information during the hiring process. If anyone does ask you for this, it’s a scam. Report it immediately.

By submitting this application, I confirm that all the information given by me in this application for employment and any additional documents attached hereto are true to the best of my knowledge and that I have not wilfully suppressed any material fact. I confirm I have disclosed if applicable any previous employment with Revolut. I accept that if any of the information given by me in this application is in any way false or incorrect, my application may be rejected, any offer of employment may be withdrawn or my employment with Revolut may be terminated summarily or I may be dismissed. By submitting this application, I agree that my personal data will be processed in accordance with Revolut's Candidate Privacy Notice

Notice: This is a remote position based in Singapore.

Select how often (in days) to receive an alert:

NCS is a leading technology services firm that operates across the Asia Pacific region in over 20 cities, providing consulting, digital services, technology solutions, and more. We believe in harnessing the power of technology to achieve extraordinary things, creating lasting value and impact for our communities, partners, and people. Our diverse workforce of 13,000 has delivered large-scale, mission-critical, and multi-platform projects for governments and enterprises in Singapore and the APAC region.

As a Security Analyst, this incumbent will perform initial analysis (e.g. analysing and reviewing alerts, eliminating false positives and determining severity of threats) to determine impact of compromise

What will you do?

• Perform initial analysis (e.g. analysing and reviewing alerts, eliminating false positives and determining severity of threats) to determine impact of compromise
• Conduct basic investigations of security events, including malware infections and unauthorized access attempts.
• Determine the nature, mechanisms and scope of incident by performing event correlation and historical searches to determine the extent of a security compromise
• Escalate complex or highly suspicious alerts for further investigation and response.
• Record details of all activities, including investigations performed, findings and remediation steps taken.
• Collects data, evidence, and context necessary for further escalation.
• Perform event correlation across the In-Scope Institutions to identify similar attack pattern and spread of attack.
• Handling case management, generating tickets and reports when required, and tracking open tickets until closure

The ideal candidate should possess:

• Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, or related field.
• Able to commit to permanent night shifts
• Team player and able to work independently.
• Experience in analysing data and review alerts

We are driven by our AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity —and we seek individuals who embody these values in both their professional and personal lives. We are committed to our Impact: Valuing our clients, Growing our people, and Creating our future .

Together, we make the extraordinary happen .

Learn more about us at ncs.co and visit our LinkedIn career site.

Security Analyst (Night Shift only) to perform initial analysis (e.g. analyzing and reviewing alerts, eliminating false positives and determining severity of threats) to determine impact of compromise

L1 - Security Analyst (Night Shift)

Responsibilities

• Perform initial analysis (e.g. analyzing and reviewing alerts, eliminating false positives and determining severity of threats) to determine impact of compromise.
• Conduct basic investigations of security events, including malware infections and unauthorized access attempts.
• Determine the nature, mechanisms and scope of incident by performing event correlation and historical searches to determine the extent of a security compromise.
• Escalate complex or highly suspicious alerts for further investigation and response.
• Record details of all activities, including investigations performed, findings and remediation steps taken.
• Collects data, evidence, and context necessary for further escalation.
• Perform event correlation across the In-Scope Institutions to identify similar attack pattern and spread of attack.
• Handling case management, generating tickets and reports when required, and tracking open tickets until closure.

Requirement

• IT or security-related educational background is required).
• Understanding of networking, system administration, and security concepts.
• Familiarity with security frameworks and standards (NIST, ISO 27001, CIS Controls, etc.).
• Experience with security tools such as SIEMs, endpoint protection, vulnerability scanners.

Select how often (in days) to receive an alert:
NCS is a leading technology services firm that operates across the Asia Pacific region in over 20 cities, providing consulting, digital services, technology solutions, and more. We believe in harnessing the power of technology to achieve extraordinary things, creating lasting value and impact for our communities, partners, and people. Our diverse workforce of 13,000 has delivered large-scale, mission-critical, and multi-platform projects for governments and enterprises in Singapore and the APAC region.
As a Security Analyst, this incumbent will perform initial analysis (e.g. analysing and reviewing alerts, eliminating false positives and determining severity of threats) to determine impact of compromise
What will you do?
Perform initial analysis (e.g. analysing and reviewing alerts, eliminating false positives and determining severity of threats) to determine impact of compromise
Conduct basic investigations of security events, including malware infections and unauthorized access attempts.
Determine the nature, mechanisms and scope of incident by performing event correlation and historical searches to determine the extent of a security compromise
Escalate complex or highly suspicious alerts for further investigation and response.
Record details of all activities, including investigations performed, findings and remediation steps taken.
Collects data, evidence, and context necessary for further escalation.
Perform event correlation across the In-Scope Institutions to identify similar attack pattern and spread of attack.
Handling case management, generating tickets and reports when required, and tracking open tickets until closure
The ideal candidate should possess:
Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, or related field.
Able to commit to permanent night shifts
Team player and able to work independently.
Experience in analysing data and review alerts
We are driven by our
AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity —and we seek individuals who embody these values in both their professional and personal lives. We are
committed to our Impact: Valuing our clients, Growing our people, and Creating our future .
Together, we
make the extraordinary happen .
Learn more about us at ncs.co and visit our LinkedIn career site.
#J-18808-Ljbffr

Join to apply for the Information Security Analyst (CSOC) role at TD

Join to apply for the Information Security Analyst (CSOC) role at TD

Get AI-powered advice on this job and more exclusive features.

Job Role/Responsibilities

The Information Security Analyst is responsible for tier 1/tier 2 triage, investigation, and incident response for Cyber security incidents.

• Conduct Real-time analysis on identified cyber incidents currently impacting the bank’s operations.
• Analyze, triage and remediate security incidents internally and/or escalate to Cyber Security Incident Response team (CSIRT) for further investigation, treatment or support if needed.
• Manage intake of incidents and reports from internal customers through internal ticketing system in a timely accurate manner in order to resolve a multitude of information security related situations.
• The ability to identify and triage and remediate security incidents such as Malware, Phishing and Web Attacks is required.
• The CSOC Security Analyst is responsible for supporting the event log monitoring, analysis needs of customers.
• The personnel in this role will work as part of a cyber security operations team responsible for carrying out 24x7 on-site security monitoring operations. Operations which are carried out in Singapore shifts that run from 7am-3pm, 12pm-8pm or 7pm-7am on a rotating basis.
• Accountable to respond to, investigate and remediate cyber threats to the bank. Escalate to internal and Cyber Security Incident Response team if required.
• This job contributes to Technology and Operations through first line management and identifications of electronic threats to TDBG’s infrastructure.
• The Information Security Analyst will be responsible for managing information between multiple technical teams, the CSOC, CSIRT and ITS, LOB TS when appropriate.

Job Requirements

• Min 3 years of Information Security Operations or similar working experience
• Understanding of security controls/mechanisms and threat/risk assessment techniques pertaining to complex data, application and networking environments.
• Excellent written and oral communication skills.
• Organizational and self-directing skills – ability to initiate, coordinate and prioritize responsibilities and follow through on tasks to completion.
• An approach to work that includes initiative, sound judgment, diplomacy and Discretion.
• Ability to work independently on a variety of assignments with minimal supervision.
• Ability to work without supervision with senior managers, supervisors, VIPs and Users.
• Advanced knowledge of security incident and event management, log analysis, Network traffic analysis, Malware investigation and remediation, SIEM correlation logic and alert generation.
• Ability to perform analysis and reporting on information from multiple data sources using data mining technique for the purpose of documenting analysis results, produce report and present to a technical and executive stakeholders.
• Understanding of Security principles, techniques and technologies such as SANS Top 20 Critical Security Controls and OWASP Top 10.
• A background with Cloud Security Monitoring is highly desired, preferably with Azure Security Center, Microsoft MCAS, AWS.
• Basic programming skills in various disciplines including scripting languages.
• Candidate should possess strong hands-on experience with traditional incidents response detection tools such as SIEM, EDR, XDR, Firewall, WAF, NIDS and equivalent.
• Experience with Security Orchestration, Automation and Response tools (SOAR).
• Demonstrate expert knowledge in Enterprise IT operations, incident management, change management, Access/Identity Management, Security Operations, vulnerability and compliance management, ticketing system, incident ticket life cycle and SLA terms

Background and Education:

• Completion of a Bachelor’s degree or equivalent program in Computer Science, Management Information Systems or similar field is required.
• Completion of a Master's degree or equivalent program in Computer Science, Management Information Systems or similar field is preferred.
• Preferably to have at least one of the following: GIAC (GSEC, GCIH, GCIA, GCFE, GCFA) CompTIA Security+ / CySA+, SC200, CISSP, CCSP

• Seniority level Associate

• Employment type Full-time

• Job function Information Technology
• Industries Banking

Referrals increase your chances of interviewing at TD by 2x

Get notified about new Information Security Analyst jobs in Singapore, Singapore .

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.