156 Threat Intelligence jobs in Singapore

Cybersecurity Threat Intelligence Analyst

Job Description

• The Cybersecurity Threat Intelligence Analyst is responsible for analyzing and interpreting threat intelligence data to identify potential security risks and vulnerabilities. They will work closely with the security operations team to implement strategies to mitigate these risks.
• The ideal candidate will have a strong understanding of security protocols and procedures, as well as excellent analytical and problem-solving skills. They must be able to work effectively in a fast-paced environment and prioritize tasks to meet deadlines.
• The successful candidate will also have excellent communication and interpersonal skills, with the ability to collaborate with cross-functional teams and convey complex security concepts to non-technical stakeholders.

Requirements:

• Strong analytical and problem-solving skills
• Proven ability to work in a fast-paced environment and prioritize tasks to meet deadlines
• Excellent communication and interpersonal skills

Benefits:

- Opportunity to work in a dynamic and innovative team

- Competitive salary and benefits package

- Professional development and growth opportunities

Others:

- Must be willing to work flexible hours, including evenings and weekends

- Ability to commit to 12-hour shifts, weekends, and public holidays

The Cyber Security Analyst is responsible for safeguarding the organization's digital assets by identifying and mitigating potential security risks, monitoring network activity for unusual behavior, and responding to incidents.

• Ensure accurate and rapid response to security events.
• Analyze security logs, SIEM alerts, and incident reports to identify and mitigate risks.
• Respond to and investigate security incidents, including breaches, malware outbreaks, and phishing attacks. Monitor networks and systems for security breaches, alerts, and anomalous activity.
• Conduct root-cause analysis to prevent future incidents and develop incident response procedures.
• Provide analysis and trending of security log data from various security devices.
• Configure and maintain SIEM tools to align with the organization's security objectives and threat landscape.
• Create custom SIEM dashboards and reports for different stakeholders to visualize critical security metrics and incident data.
• Develop and optimize SIEM content, including rules, alerts, and correlation logic, to improve threat detection and response.
• Regularly review and tune SIEM rules to reduce false positives, enhance event correlation, and maintain relevance to evolving threats.
• Document and update SIEM processes and configurations, ensuring a high level of data accuracy and availability.
• Perform regular vulnerability scans and assist in patch management processes. Work with IT teams to prioritize and remediate them.
• Recommend solutions to mitigate risks in any activity that may potentially impact security of existing IT and information management.
• Ensure compliance with industry regulations (e.g., GDPR, ISO 27001) and company policies.
• Assist in the development, implementation, and maintenance of security policies, standards, and guidelines.
• Assist in training staff on security best practices, including phishing awareness and data protection.
• Help develop educational materials and conduct periodic security awareness training.
• Advise and consult internal/external customers on risk assessment, threat modeling, and vulnerability management. Perform risk assessments and recommend security measures to mitigate potential risks.
• Document risks, vulnerabilities, and remediation strategies in a detailed risk management report.
• Maintain up-to-date knowledge of the IT security industry, including awareness of new or revised security solutions, improved security processes, and development of new attacks and threat vectors.
• Manage and optimize security tools, such as firewalls, antivirus software, and intrusion detection/prevention systems (IDPS).
• Perform 1st-level troubleshooting on servers and network issues with regards to log collection/security tools.
• Generate reports on security metrics, incidents, and remediation efforts for management.
• Maintain accurate documentation of incidents, security changes, and system configurations.

• Monitor and analyze network traffic for suspicious activity
• Conduct proactive threat hunting to identify Indicators of Compromise (IOCs) and threat actor tactics, techniques, and procedures (TTPs)
• Develop and implement SIEM rules to streamline incident triage and analysis
• Provide incident response support as needed

• Minimum 1 year of relevant working experience in SOC as security analyst, IT Security Operations, and Computer Emergency Response Team (CERT/CIRT)
• Diploma/ Degree in computer science/computer engineering/information security or related certifications
• Strong understanding of data from network diagnostic tools
• Certifications with GSEC, GCIH, GCIA, GCTI, GCFA, GCFE, or GNFA will be advantageous
• Proficiency in scripting languages like Python, Bash, or PowerShell is a plus
• Working experience with OWASP Top 10, CVSS, MITRE ATT&CK framework, Cyber Kill Chain, and DevSecOps strongly preferred

• 24/7 operations
• Incident response and incident handling methodologies

Interested candidates who wish to apply should submit their updated resume in MS Word format to the relevant hiring authority.

• Information Security
• Tactics
• SIEM
• Security Operations
• Technical Analysis
• Remediation
• 24/7 operations
• Incident Response
• Security Operations Center
• Cyber Security
• Root Cause Analysis
• Scripting
• Cyber Defense
• Emergency Response
• Threat Intelligence
• DevSecOps
• Security Incident Response
• Firewalls

XTX Markets is a leading algorithmic trading firm which uses state-of-the-art machine learning technology to produce price forecasts for over 50,000 financial instruments across equities, fixed income, currencies, commodities and crypto. It uses those forecasts to trade on exchanges and alternative trading venues, and to offer differentiated liquidity directly to clients worldwide. The firm trades over $250bn a day across 35 countries and has over 250 employees based in London, Singapore, New York, Paris, Bristol, Mumbai, Yerevan and Kajaani.

We leverage the talent of the people who work here, modern computational techniques and state-of-the-art research infrastructure to analyse large data sets across markets quickly and efficiently, to maximize the effectiveness of our proprietary trading algorithms. We are actively seeking new methods and ideas. The models that drive our trading strategies have evolved considerably over the last 10 years, from econometric methods that gave our company its name, to trees, to neural networks, to modern deep learning architectures.

XTX Markets has an unrivalled level of computational resources in the trading industry, with a growing research cluster currently containing over 25,000 GPUs with 650 petabytes of usable storage. Teams across the firm include world-class researchers with backgrounds in pure math, programming, physics, computer science and machine learning. The firm is also constructing a large-scale data centre in Finland to future-proof its significant computational capabilities.

At XTX Markets technology is our business and we are a diverse organization which attracts outstanding talent from across all industry backgrounds. We are focused on teamwork and our people collaborate on all aspects of the business, working openly and with respect for each other, our clients and the market. Our culture is non-hierarchical and one where everyone is valued. We strive for excellence in everything we do.

The Team

The Information Security team at XTX Markets are accountable for all aspects of the firm’s physical and IT security. From obtaining and transforming events and signals into actionable intelligence to helping design and implement authentication/authorisation systems, alongside third-party risk assessment and global regulatory compliance. This role is based in our Singapore office, and you will work closely with the Risk and Information Security teams in our London HQ.

The Role

As our first Information Security Analyst, you’ll work to ensure that XTX Markets’ data and infrastructure meet – and, where appropriate, exceed – the requirements of global regulators and auditors.

You will:

• Develop and automate compliance workflows (detection, analysis, business justifications, evidence-gathering).
• Liaise with external auditors to resolve findings and document compensating controls.
• Manage third-party/vendor risk assessments and ongoing security reviews.

You’ll also have opportunities to contribute across the security function: improving our vulnerability-management program, enhancing our detection framework, and helping triage and respond to security alerts. You will actively collaborate with a range of stakeholders within the firm.

• 3+ years in Information Security, with a focus on audit/compliance.
• Programming/scripting skills (e.g. Python, PowerShell) particularly for automating repeatable tasks.
• Strong written and verbal communication skills.
• Rapid learner with outstanding attention to detail.
• Self-starter: able to work autonomously, prioritise tasks, and admit mistakes.
• Able to write clear, succinct business justifications and technical documentation.
• Hands-on proficiency with vulnerability management/compliance platforms (e.g. Tenable Nessus).
• Familiarity with Indian information-security regulations and audit practices (SEBI, NSE, etc.)
• An academic foundation in computer science or a related subject would be beneficial.

*

indicates a required field

First Name *

Last Name *

Preferred First Name

Email *

Phone

Resume/CV

Enter manually

Accepted file types: pdf, doc, docx, txt, rtf

Enter manually

Accepted file types: pdf, doc, docx, txt, rtf

Website

Please indicate what right to work you have in Singapore. * Select.

Posted 29 July 2025 Salary S$12000 - S$13000 per annum + Variable Bonus Location Singapore Job type Permanent Discipline Technology Reference 283869_1753768672

Our client is seeking an experienced Information Security Manager to lead and strengthen their security operations. This role will focus on monitoring, detecting, and responding to cyber threats, managing security technologies, driving vulnerability management initiatives, and ensuring compliance with industry regulations. The position will work closely with IT, engineering, and risk management teams to maintain a secure and resilient environment.

Key Responsibilities:

1. Security Operations & Incident Response

• Lead and enhance the operations of the Security Operations Center (SOC), ensuring timely monitoring, detection, and incident response.
• Manage and optimize the use of SIEM, EDR, IDS/IPS, and other security technologies.
• Oversee the full incident response lifecycle, including investigation, containment, eradication, and recovery.
• Conduct post-incident reviews and implement continuous improvements.

2. Vulnerability & Threat Management

• Coordinate vulnerability scanning, penetration testing, and remediation activities.
• Stay informed of emerging threats and ensure proactive security measures are implemented.
• Partner with IT and engineering teams to address vulnerabilities and harden systems.

3. Security Compliance & Risk Management

• Ensure compliance with relevant regulatory frameworks (e.g., PCI DSS, MAS TRM, GDPR).
• Support internal and external audits, risk assessments, and regulatory reviews.
• Maintain and continuously update security policies, standards, and procedures

4. Security Awareness & Collaboration

• Lead security awareness and training initiatives across the organization.
• Collaborate with DevOps and engineering teams to embed security into CI/CD pipelines.
• Engage with external vendors, partners, and law enforcement on security-related matters.

Key Requirements:

• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field.
• Minimum 5 years of experience in information security, with at least 2 years in a leadership or management role within security operations.
• Hands-on experience with security technologies such as SIEM (Splunk, Azure Sentinel), EDR, IDS/IPS, firewalls, and cloud security platforms (AWS, Azure, GCP).
• Strong understanding of threat intelligence, malware analysis, and forensic investigation tools.
• Knowledge of regulatory compliance frameworks, particularly within the financial services sector (PCI DSS, MAS TRM, GDPR).

If this job isn't quite right for you, but you know someone who would be great at this role, why not take advantage of our referral scheme? We offer SGD1,000 or SGD350 in shopping vouchers for every referred candidate who we place in a role. Terms & Conditions Apply.