295 Threat Analyst jobs in Singapore

Job Title : Threat Intelligence and Incident Response Specialist

Roles and Responsibilities:
As a Threat Intelligence and Incident Response Specialist, you will play a crucial role in enhancing the security posture of our clients by proactively hunting for advanced threats and developing effective threat intelligence. Your responsibilities will include designing, developing, and deploying high-fidelity detection rules in SIEM systems, creating custom use cases to detect MITRE TTPs aligned with real-world threats and red team activities, conducting detection gap analysis, tuning alerting mechanisms, and eliminating false positives at the MSS customer environment.

Key Skills and Qualifications:
To excel in this role, you must possess excellent analytical and problem-solving skills, with the ability to work independently and collaboratively as part of a cross-functional team. You should have experience with threat hunting and incident response, as well as proficiency in using various tools and technologies such as SIEM systems, EDR, NDR, and threat intelligence platforms. Additionally, you should have strong communication and collaboration skills, with the ability to effectively communicate complex technical information to both technical and non-technical stakeholders.

Benefits:
As a Threat Intelligence and Incident Response Specialist, you will have the opportunity to work on challenging and dynamic projects, collaborate with experienced professionals, and develop your skills and knowledge in threat intelligence and incident response. You will also have access to cutting-edge tools and technologies, as well as ongoing training and professional development opportunities.

Requirements:
A bachelor's degree in Computer Science, Cybersecurity, or a related field is required. You must have a minimum of 2 years of experience in threat hunting and incident response, with a strong background in using various tools and technologies. Additionally, you should have excellent analytical and problem-solving skills, with the ability to work independently and collaboratively as part of a cross-functional team.

Job Description:

We are seeking a highly skilled Cybersecurity Penetration Tester to join our team. As a key member of our security team, you will be responsible for conducting simulated attacks on systems, networks, and applications to identify potential security flaws.

Key Responsibilities:

">
• Design and execute penetration testing methodologies tailored to specific environments
">
• Identify and document security vulnerabilities and provide detailed reports with recommendations for remediation
">
• Collaborate with IT and security teams to improve defenses and patch vulnerabilities
">
• Stay up-to-date on emerging threats, tools, and techniques in cybersecurity
">

Required Skills & Qualifications:

To be successful in this role, you will need to have a strong understanding of network protocols, operating systems (Linux, Windows), and web technologies. You should also be proficient in using tools such as Metasploit, Burp Suite, Nmap, Nessus, and Wireshark.

In addition, you will need to have experience with scripting languages (Python, Bash, PowerShell) for automation and familiarity with compliance standards (e.g., PCI-DSS, ISO 27001, HIPAA).

Excellent analytical, problem-solving, and report-writing skills are essential, as is the ability to communicate complex technical information effectively.

Benefits:

As a valued member of our team, you will be eligible for a range of benefits, including marriage leave, childcare leave, and medical benefits.

By Applying:

By submitting any application or resume to us, you will be deemed to have agreed and consented to us collecting, using, retaining, and disclosing your personal information to prospective employers for their consideration.

• Analyze security events to identify potential threats and intrusions. Events include but not limited to Intrusion Detection/Prevention tools, anomaly detection systems, Firewalls, Antivirus and EDR systems, proxy devices, cloud security solution and data leakage prevention system.
• Act as a Level 2 escalation point for incident triage, investigation, and response.
• Perform a holistic use cases review and tuning to enhance monitoring value and efficiency.
• Develop and maintain advanced security monitoring content such as detection rules, correlation use cases, and security alerts.
• Implement and optimize security automation to improve process efficiency and response times.
• Lead incident response activities including root cause analysis, containment and remediation efforts.
• Collaborate with security infrastructure teams to ensure effective integration of security technologies with operational processes.
• Create and maintain comprehensive documentation for SOC procedures.
• Participate in/support cyber drill, regulatory, audit requests.
• Provide mentorship for junior analysts within the SOC team.
• Stay updated with the latest cybersecurity trends, emerging threats and technologies.

• Bachelor's degree or higher, major in Cybersecurity is a plus.
• Certifications: GCIA, GCIH, CISSP, CISM, GSEC or similar certification preferable.
• Strong investigative and analytical mindset with attention to details.
• A good team player, self driven and able to act as individual contributor.
• Consistently demonstrates clear and concise written and verbal communication.
• Manage work relationship with peers and partners.

• 8+ years of relevant experience in Cybersecurity operations.
• Security Operations Center experience required.
• Understand the life cycle of network threats, web attacks, attack vectors, methods of exploitation and aware of the evolving of cyber threat landscape.
• Ability to conduct analysis utilizing various logs to identify unusual behavior that may indicate malicious activity.
• Good understanding of computer networks, email flow, and operating system logs.
• Experience with automation and scripting. Preferably in Powershell/Python.
• Experience in XSOAR platforms.

Whether you’re at the start of your career or looking to discover your next adventure, your story begins here. At Citi, you’ll have the opportunity to expand your skills and make a difference at one of the world’s most global banks. We’re fully committed to supporting your growth and development from the start with extensive on-the-job training and exposure to senior leaders, as well as more traditional learning. You’ll also have the chance to give back and make a positive impact where we live and work through volunteerism.

Shape your Career with Citi

Citibank serves as a trusted advisor to our retail, mortgage, small business and wealth management clients at every stage of their financial journey. Through Citi's Access Account, Basic Banking, Citi Priority, Citigold and Citigold Private Client, we offer an array of products, services and digital capabilities to clients across the full spectrum of consumer banking needs worldwide.

We’re currently looking for a high caliber professional to join our team as Senior SOC Cyber Threat Analyst based in Singapore. Being part of our team means that we’ll provide you with the resources to meet your unique needs, empower you to make healthy decision and manage your financial well-being to help plan for your future. For instance:

We are seeking a highly skilled and experienced Senior SOC Cyber Threat Analyst to join our Cyber Threat team in the Security Operations Center (SOC). The Global SOC operates in a 24x7, follow the sun model and is the firm's first line of defense against evolving cyber threats, ensuring the safety and integrity of our digital assets. This role requires an individual with deep understanding of SOC processes, incident response, reviewing content/use case and security automation. As a senior analyst, the role would require coaching junior analysts in SOC and provide critical support to the management in handling cyber security incidents.

Responsibilities:

• Analyze security events to identify potential threats and intrusions. Events include but not limited to Intrusion Detection/Prevention tools, anomaly detection systems, Firewalls, Antivirus and EDR systems, proxy devices, cloud security solution and data leakage prevention system.
• Act as a Level 2 escalation point for incident triage, investigation, and response.
• Perform a holistic use cases review and tuning to enhance monitoring value and efficiency.
• Develop and maintain advanced security monitoring content such as detection rules, correlation use cases, and security alerts.
• Implement and optimize security automation to improve process efficiency and response times.
• Lead incident response activities including root cause analysis, containment and remediation efforts.
• Collaborate with security infrastructure teams to ensure effective integration of security technologies with operational processes.
• Create and maintain comprehensive documentation for SOC procedures.
• Participate in/support cyber drill, regulatory, audit requests.
• Provide mentorship for junior analysts within the SOC team.
• Stay updated with the latest cybersecurity trends, emerging threats and technologies.

Qualifications and desired qualities:

• Bachelor’s degree or higher, major in Cybersecurity is a plus.
• Certifications: GCIA, GCIH, CISSP, CISM, GSEC or similar certification preferable.
• Strong investigative and analytical mindset with attention to details.
• A good team player, self driven and able to act as individual contributor.
• Consistently demonstrates clear and concise written and verbal communication.
• Manage work relationship with peers and partners.

Work Experience:

• 8+ years of relevant experience in Cybersecurity operations.
• Security Operations Center experience required.
• Understand the life cycle of network threats, web attacks, attack vectors, methods of exploitation and aware of the evolving of cyber threat landscape.
• Ability to conduct analysis utilizing various logs to identify unusual behavior that may indicate malicious activity.
• Good understanding of computer networks, email flow, and operating system logs.
• Experience with automation and scripting. Preferably in Powershell/Python.
• Experience in XSOAR platforms.

How You’ll Succeed

Be conscientious and consistent in identifying security vulnerabilities and working with the respective engineering teams and stakeholders to provide sound guidance and remediations. Be a team player, and a keen learner.

Working at Citi is far more than just a job. A career with us means joining a family of more than 230,000 dedicated people from around the globe. At Citi, you’ll have the opportunity to grow your career, give back to your community and make a real impact.

Take the next step in your career, apply for this role at Citi today

Join to apply for the Senior Cyber Threat Analyst (Offensive Security, Threat Hunting & Incident Response) role at Marina Bay Sands .

1 day ago Be among the first 25 applicants

Join to apply for the Senior Cyber Threat Analyst (Offensive Security, Threat Hunting & Incident Response) role at Marina Bay Sands .

LOVE WHAT YOU DO? THERE IS A PLACE FOR YOU HERE!

Be part of our diverse and inclusive team.

The candidate is expected to perform the following activities:

• Adversarial Simulation: Perform comprehensive analyses and simulations to mimic cyber threats and identify vulnerabilities. Execute intel-led security testing and red/purple team exercises using frameworks such as MITRE Cyber Threat Informed Defence and TIBER-EU. Conduct attack simulation exercises using Tactics, Techniques, and Procedures (TTPs) that cyber threat actors use to plan and execute cyber-attacks.

• Conduct authorized offensive security operations to test the effectiveness of cyber defenses and simulate cyber-attacks. Perform social engineering assessments (email phishing, vishing, physical access attacks) to simulate password theft, system infiltration, and malware/ransomware deployment.

• Lead cyber incident investigations and response efforts. Collaborate with cybersecurity specialists to maintain and update security testing methodologies.

• Ensure consistent and regular attendance. Perform other related duties as assigned.

Education & Certification

• Degree or diploma with at least 5-10 years of hands-on cybersecurity experience in relevant areas. Preferred certifications: CISSP, OSCP, CRTP, CRTO, OSWE.

Experience

• Experience in Gaming, Banking, or Critical Infrastructure InfoComm Industry is an advantage. Effective verbal and written communication skills. Proficiency with offensive security tools such as Cobalt Strike, Empire, Havoc, Mythic. Experience in setting up red teaming Command and Control (C2) infrastructure, including web/proxy servers, redirectors, domain fronting. Skills in developing malicious payloads and understanding obfuscation and encryption techniques. Proficiency in at least one scripting language (e.g., Bash, PowerShell) and/or programming language (e.g., Python, C, C#, C++, Java). Understanding of basic networking concepts and Internet protocols (e.g., TCP/IP, HTTP(S), SMTP, DNS, SSL/TLS). Knowledge of industry-recognized security testing standards and penetration testing methodology. Strong understanding of enterprise technologies, operations, and security evaluations.

Other Prerequisites

• Strong analytical and problem-solving skills. Advanced written and verbal communication skills. Ability to foster an efficient, innovative, and team-oriented work environment. Proactive, dedicated, innovative, resourceful, and able to work under pressure. Excellent communication and interpersonal skills to present ideas and results to both technical and non-technical audiences. Thrive in a fast-paced, dynamic, and global working environment. Adapt quickly to changing priorities and complete tasks within established timeframes. Establish and maintain cooperative working relationships with team members, management, and external contacts. Maintain composure under pressure and meet deadlines with stakeholders.

Marina Bay Sands is committed to building a diverse, equitable and inclusive workforce, providing equal opportunities as we grow our talent base to match our growth ambitions in Singapore. Our employees are committed to adhere to and abide by all rules, regulations, policies and procedures, including the rules of conduct and business ethics of the Company.

• Mid-Senior level

• Full-time

• Information Technology

• Hospitality

Join to apply for the Senior Cyber Threat Analyst (Offensive Security, Threat Hunting & Incident Response) role at Marina Bay Sands .

1 day ago Be among the first 25 applicants

Join to apply for the Senior Cyber Threat Analyst (Offensive Security, Threat Hunting & Incident Response) role at Marina Bay Sands .

LOVE WHAT YOU DO? THERE IS A PLACE FOR YOU HERE!

Be part of our diverse and inclusive team.

Job Responsibilities

The candidate is expected to perform the following activities:

• Adversarial Simulation: Perform comprehensive analyses and simulations to mimic cyber threats and identify vulnerabilities. Execute intel-led security testing and red/purple team exercises using frameworks such as MITRE Cyber Threat Informed Defence and TIBER-EU. Conduct attack simulation exercises using Tactics, Techniques, and Procedures (TTPs) that cyber threat actors use to plan and execute cyber-attacks.

Red Team Activities

• Conduct authorized offensive security operations to test the effectiveness of cyber defenses and simulate cyber-attacks. Perform social engineering assessments (email phishing, vishing, physical access attacks) to simulate password theft, system infiltration, and malware/ransomware deployment.

Forensics And Incident Response

• Lead cyber incident investigations and response efforts. Collaborate with cybersecurity specialists to maintain and update security testing methodologies.

General Responsibilities

• Ensure consistent and regular attendance. Perform other related duties as assigned.

Job Requirements

Education & Certification

• Degree or diploma with at least 5-10 years of hands-on cybersecurity experience in relevant areas. Preferred certifications: CISSP, OSCP, CRTP, CRTO, OSWE.

Experience

• Experience in Gaming, Banking, or Critical Infrastructure InfoComm Industry is an advantage. Effective verbal and written communication skills. Proficiency with offensive security tools such as Cobalt Strike, Empire, Havoc, Mythic. Experience in setting up red teaming Command and Control (C2) infrastructure, including web/proxy servers, redirectors, domain fronting. Skills in developing malicious payloads and understanding obfuscation and encryption techniques. Proficiency in at least one scripting language (e.g., Bash, PowerShell) and/or programming language (e.g., Python, C, C#, C++, Java). Understanding of basic networking concepts and Internet protocols (e.g., TCP/IP, SMTP, DNS, SSL/TLS). Knowledge of industry-recognized security testing standards and penetration testing methodology. Strong understanding of enterprise technologies, operations, and security evaluations.

Other Prerequisites

• Strong analytical and problem-solving skills. Advanced written and verbal communication skills. Ability to foster an efficient, innovative, and team-oriented work environment. Proactive, dedicated, innovative, resourceful, and able to work under pressure. Excellent communication and interpersonal skills to present ideas and results to both technical and non-technical audiences. Thrive in a fast-paced, dynamic, and global working environment. Adapt quickly to changing priorities and complete tasks within established timeframes. Establish and maintain cooperative working relationships with team members, management, and external contacts. Maintain composure under pressure and meet deadlines with stakeholders.

Marina Bay Sands is committed to building a diverse, equitable and inclusive workforce, providing equal opportunities as we grow our talent base to match our growth ambitions in Singapore. Our employees are committed to adhere to and abide by all rules, regulations, policies and procedures, including the rules of conduct and business ethics of the Company.

Seniority level

• Mid-Senior level

Employment type

• Full-time

Job function

• Information Technology

Industries

• Hospitality

Join to apply for the CYBER THREAT SECURITY ANALYST role at Lumen Technologies

Join to apply for the CYBER THREAT SECURITY ANALYST role at Lumen Technologies

About Lumen

Lumen connects the world. We are igniting business growth by connecting people, data and applications – quickly, securely, and effortlessly. Together, we are building a culture and company from the people up – committed to teamwork, trust and transparency. People power progress.

About Lumen

Lumen connects the world. We are igniting business growth by connecting people, data and applications – quickly, securely, and effortlessly. Together, we are building a culture and company from the people up – committed to teamwork, trust and transparency. People power progress.

We’re looking for top-tier talent and offer the flexibility you need to thrive and deliver lasting impact. Join us as we digitally connect the world and shape the future.

The Role

The Cyber Threat Security Analyst role will focus on security event and incident monitoring, threat hunting, and deep analysis of threat information within SIEM environments, various log sources, and within security control technologies directly. The Security Analyst will work directly with customers to determine and communicate relevant risk and potential impact, as well as make recommendations for risk mitigation. This role will also provide direction for SIEM rule changes, customer escalations and inquiries, and help develop improved threat analysis process and procedures.

The Cyber Threat Security Analyst role is expected to participate in a shift schedule and on-call rotation to accommodate a global 24x7x365 Managed Threat Security Services program.

The Main Responsibilities

• Perform security incident and event monitoring support, including deep dive data analysis and response
• Develop and manage customer security event analysis notifications with thoughtful analysis details, evidence, conclusions, and recommendations
• Respond and manage customer issues and questions regarding security events, including evidence supporting risk identification and recommended risk mitigation, via trouble ticket, email, and phone
• Review threat detection rules and correlations, and make recommendations for improved fidelity
  
  

• Requires Bachelor’s degree in related field or equivalent combination of education and experience.
• Possess strong customer service skills
• Communicate effectively with managers, customers and vendors
• Maintain solid working relationships, including collaborative technical activities with peers
• Good written and verbal communication skills
• Good analytical and problem-solving skills
• Attention to detail with good organizational skills
• Basic experience performing security monitoring, hunting, and analysis within SIEM platforms and security controls
  
  

• 1 or more years in a Security Operations environment performing cyber threat hunting and incident response support
• Security industry certifications (examples):
• GIAC
• CISSP
• CRISC
• CISM
• Security+
• CCNA
• CEH
• Basic knowledge and skills of at least one programming language (python preferred)
  
  

• Seniority level Entry level

• Employment type Full-time

• Job function Information Technology
• Industries Telecommunications

Referrals increase your chances of interviewing at Lumen Technologies by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the CYBER THREAT SECURITY ANALYST role at Lumen Technologies

Join to apply for the CYBER THREAT SECURITY ANALYST role at Lumen Technologies

About Lumen
Lumen connects the world. We are igniting business growth by connecting people, data and applications – quickly, securely, and effortlessly. Together, we are building a culture and company from the people up – committed to teamwork, trust and transparency. People power progress.

About Lumen
Lumen connects the world. We are igniting business growth by connecting people, data and applications – quickly, securely, and effortlessly. Together, we are building a culture and company from the people up – committed to teamwork, trust and transparency. People power progress.
We’re looking for top-tier talent and offer the flexibility you need to thrive and deliver lasting impact. Join us as we digitally connect the world and shape the future.
The Role
The Cyber Threat Security Analyst role will focus on security event and incident monitoring, threat hunting, and deep analysis of threat information within SIEM environments, various log sources, and within security control technologies directly. The Security Analyst will work directly with customers to determine and communicate relevant risk and potential impact, as well as make recommendations for risk mitigation. This role will also provide direction for SIEM rule changes, customer escalations and inquiries, and help develop improved threat analysis process and procedures.
The Cyber Threat Security Analyst role is expected to participate in a shift schedule and on-call rotation to accommodate a global 24x7x365 Managed Threat Security Services program.
The Main Responsibilities

• Perform security incident and event monitoring support, including deep dive data analysis and response
• Develop and manage customer security event analysis notifications with thoughtful analysis details, evidence, conclusions, and recommendations
• Respond and manage customer issues and questions regarding security events, including evidence supporting risk identification and recommended risk mitigation, via trouble ticket, email, and phone
• Review threat detection rules and correlations, and make recommendations for improved fidelity
  

• Requires Bachelor’s degree in related field or equivalent combination of education and experience.
• Possess strong customer service skills
• Communicate effectively with managers, customers and vendors
• Maintain solid working relationships, including collaborative technical activities with peers
• Good written and verbal communication skills
• Good analytical and problem-solving skills
• Attention to detail with good organizational skills
• Basic experience performing security monitoring, hunting, and analysis within SIEM platforms and security controls
  

• 1 or more years in a Security Operations environment performing cyber threat hunting and incident response support
• Security industry certifications (examples):
• GIAC
• CISSP
• CRISC
• CISM
• Security+
• CCNA
• CEH
• Basic knowledge and skills of at least one programming language (python preferred)
  

Seniority level

• Seniority level

  Entry level

Employment type

• Employment type

  Full-time

Job function

• Job function

  Information Technology

• Industries

  Telecommunications

Referrals increase your chances of interviewing at Lumen Technologies by 2x

Sign in to set job alerts for “Cyber Security Analyst” roles.

Information Technology - Cyber Security Analyst (Scoot)

Information Security Analyst Level II - SIEM, Tues-Sat 7am-3pm

Graduate Hiring - Cybersecurity Engineer

Information Technology - Cyber Security Specialist (Risk and Governance)

Information Technology - Cyber Security Engineer (Threat Management and Incident Response) (Scoot)

Information Technology Security Engineer

Junior Specialist, Cyber Security Defense Operations

Information Security Analyst / IT Support Engineer

Intern - ONT, Information Security, Fall (July to Dec 2025)

Technology & Cyber Security Risk Analyst

Information Technology Security Engineer

Application Security Engineer (Pentester)

Security Operations Engineer (Shift) - 2 year contract

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.