148 Threat Intelligence jobs in Singapore

We are seeking a skilled and experienced Threat Hunter to work in the Security Operations team. The ideal candidate should be a proactive and resourceful individual with a passion for identifying and neutralizing advanced threats to strengthen the company's defenses. This role requires a deep understanding of threat hunting methodologies, a strong analytical mindset, and exceptional communication skills. The role is expected to potentially work overtime in the event of responding to Security Incident to accommodate and manage Group's Threat Intelligence services/program.

Key Responsibilities

Threat Hunting and Analysis

• Conduct proactive threat hunting activities across various environments (endpoints, networks, cloud).

• Develop and maintain threat hunting hypotheses based on current threat intelligence and organizational risk assessments.

• Apply structured threat hunting methodologies leveraging frameworks such as MITRE ATT&CK, PEAK, TAHITI, THMM and Diamond Model to guide hypothesis creation, evidence collection and iterative improvements.

• Deep technical knowledge of adversary tactics, malware analysis, intrusion detection and cloud security.

Tooling and Automation

• Familiar with EDR/XDR solutions, SIEM platform, data pipeline and threat hunting tooling to detect and disrupt adversary tactics.

• Develop custom scripts and tools to automate threat hunting processes and improve efficiency.

• Leverage various threat hunting techniques, including but not limited to, YARA rules, IOC analysis, and behavioral based analysis.

Incident Investigation

• Analyze security logs, network traffic, and endpoint data to identify malicious activity and potential threats.

• Investigate security incidents and provide detailed reports on findings, including root cause analysis and remediation recommendations.

• Collaborate with other security teams (incident response, vulnerability management, etc.) to share threat intelligence and coordinate security efforts.

Cyber Threat Intelligence (CTI)

• Develop and manage Cyber Threat Intelligence while staying up to date on the latest threat landscape, attack techniques, and emerging technologies.

• Map advisory behaviors to ATT&CK techniques and translate findings into actionable intelligence.

• Share actionable intelligence with internal teams and external stakeholders.

• Present findings and recommendations to technical and executive audiences.

Continuous Improvement

• Contributes to the development and improvement of threat hunting strategies, processes and playbooks aligning with PEAK and TAHITI cycles for structural threat hunting.

• Develop and maintain a strong understanding of the organization's infrastructure and applications to strengthen awareness of evolving threats and adversary behavior.

• Drive maturing of the overall security operations service.

Qualifications & Skill

Required

• Bachelor's degree in Computer Science, Cybersecurity, or a related field.

• At least 3+ years of experience in cybersecurity, with a minimum of 1-2 years focused on threat hunting.

• Strong understanding of various operating systems (Windows, Linux, macOS).

• Experience with various security tools and technologies (SIEM, EDR, network monitoring tools).

• Proficiency in scripting (Python, PowerShell).

• Strong analytical and problem-solving skills.

• Excellent communication and presentation skills to translate technical findings into business impact.

Preferred

• Experience with threat intelligence platforms, feeds and CTI frameworks.

• Relevant security certifications (e.g., SANS GIAC, GNFA, GCFA, Offensive Security, etc)

• Experience with cloud platforms (AWS, Azure, GCP) and container security is a plus.

Cyber Threat Intelligence Analyst

We are seeking a skilled and experienced Cyber Security Professional to strengthen our company's defenses.

• Threat Hunting: Conduct proactive threat hunting activities across various environments, develop and maintain threat hunting hypotheses, and apply structured threat hunting methodologies.
• Cyber Threat Intelligence (CTI): Develop and manage CTI while staying up-to-date on the latest threat landscape, attack techniques, and emerging technologies.

You will analyze security logs, network traffic, and endpoint data to identify malicious activity and potential threats. You will also be responsible for tooling and automation, including developing custom scripts and tools to automate threat hunting processes.

This role requires a deep understanding of threat hunting methodologies, a strong analytical mindset, and exceptional communication skills. You will share actionable intelligence with internal teams and external stakeholders, and present findings and recommendations to technical and executive audiences.

Key Responsibilities:

• Identify and neutralize advanced threats.
• Develop and maintain threat hunting hypotheses.
• Analyze security logs, network traffic, and endpoint data.
• Develop and manage Cyber Threat Intelligence.

Required Skills and Qualifications:

• Strong analytical mindset and exceptional communication skills.
• Deep understanding of threat hunting methodologies.
• Ability to stay up-to-date on the latest threat landscape, attack techniques, and emerging technologies.

Benefits:

• Opportunity to work with cutting-edge technology.
• Chance to develop and manage Cyber Threat Intelligence.
• Collaborative and dynamic work environment.

Others:

• Maintain confidentiality and handle sensitive information securely.
• Travel as required for meetings and training sessions.

• Lead the Cyber Threat Intelligence Center in driving strategic initiatives and delivering high-impact results.
• Develop and implement effective threat intelligence programs to enhance the organization's cyber resilience.
• Collaborate with cross-functional teams to identify and mitigate emerging threats.

• Proven experience in leading cyber threat intelligence teams and developing strategic initiatives.
• Excellent leadership, communication, and collaboration skills.
• Ability to think critically and make informed decisions in fast-paced environments.

• Opportunity to work in a dynamic and global environment.
• Chance to develop and lead high-impact projects.
• Competitive compensation and benefits package.

Role Overview

We are seeking a skilled professional to lead our Cyber Detection efforts as a Threat Intelligence Analyst.

1. Design, develop, and refine threat intelligence systems to uncover potential malicious activities and attacks before they impact the organization.
2. Conduct thorough analysis of detection requirements to develop and implement robust detection strategies aimed at safeguarding critical infrastructure and assets.
3. Proactively contribute to the improvement of new content based on observed security activity, ensuring defenses remain ahead of emerging threats.
4. Collaborate closely with colleagues from Cyber Monitoring, Threat Response, Red and purple teams, CTI and Security Engineering to fortify the security landscape.
5. Stay up-to-date with emerging threats and industry-based best practices to continuously enhance the security posture.

• You have at least 2 to 5 years of experience in security, threat detection, or consultancy, with a focus on cyber detection.
• You excel in designing, implementing, and optimizing SIEM detection rules, particularly with Microsoft Sentinel and Splunk, tailored to unique risks and requirements.
• You can develop comprehensive documentation, including use cases and standard operation procedures, to facilitate knowledge sharing and team efficiency.
• You conduct in-depth analysis of security events and alerts generated by the SIEM platform to identify potential gaps or improvements in monitoring capabilities.
• You work closely with cross-functional teams, including Incident Response, Insider Threat, Threat Intelligence, IT Security, and component owners to improve existing monitoring capabilities.
• You possess strong analytical, problem-solving, and synthesizing skills, with the ability to analyze large datasets and identify patterns.
• You stay abreast of the latest cybersecurity trends, emerging threats, and industry best practices to continuously improve detection capabilities and resilience against cyber-attacks.

We are seeking a skilled Cybersecurity Threat Intelligence Specialist to join our team. This role will play a key part in shaping our global cyber defense environment.

The successful candidate will be deeply motivated by the ever-evolving world of Cyber Security and have a passion for uncovering potential malicious activities and attacks before they impact our organization.

In this role, you will design, develop, and refine cyber detections to identify emerging threats and ensure our defenses remain ahead of them.

You will conduct thorough analysis of detection requirements to develop and implement robust detection aimed at safeguarding our critical infrastructure and assets within the organization.

• Design, develop, and refine cyber detections to uncover potential malicious activities and attacks.
• Conduct through analysis of detection requirements to develop and implement robust detection.
• Proactively contribute to the improvement of new content based on observed security activity.
• Collaborate closely with colleagues from various teams to fortify our defenses.

This is an exciting opportunity to work with a talented team and contribute to the advancement of our cyber defense capabilities.

You will have the opportunity to learn and grow with our organization, as well as develop your skills and expertise in threat intelligence and cybersecurity.

We are a dynamic organization committed to delivering exceptional results in the field of cybersecurity.

We pride ourselves on our collaborative and innovative approach to tackling complex challenges and staying ahead of emerging threats.

Our client, a leading global bank, is seeking an experienced and visionary Cyber Threat Intelligence Global Lead to design, lead, and execute the bank's global threat intelligence strategy. This is a high-impact role with a strong focus on strategic threat intelligence , ensuring the bank remains ahead of evolving threat actors and cyber risks. The position offers visibility at the C-suite level and requires close collaboration across regional and global teams.

Key Responsibilities

• Lead the bank's global Cyber Threat Intelligence (CTI) function, defining strategy and framework across all regions.
• Drive the development of a strategic threat intelligence programme that provides forward-looking insights into adversary intent, capabilities, and global cyber risk trends.
• Translate intelligence into actionable risk insights and deliver high-quality briefings to senior stakeholders, including the CISO, Board, and regulators.
• Guide the integration of intelligence into security decision-making, risk management, and cyber defence strategies.
• Build, lead, and mentor a global CTI team, fostering analytical rigour and strategic insights.
• Partner with SOC, Incident Response, and Red Team functions to support intelligence-driven response and attack simulations.
• Establish strong external partnerships with industry groups, law enforcement, and global threat intelligence communities.
• Ensure compliance with evolving regulatory requirements for cyber security and intelligence functions.

Requirements

• 10+ years of experience in cyber security with significant expertise in strategic threat intelligence.
• Strong understanding of advanced persistent threats, adversary tactics, techniques, and procedures (TTPs), and the MITRE ATT&CK framework.
• Proven experience engaging with regulators and presenting intelligence at Board/Executive level.
• Deep knowledge of intelligence analysis frameworks and methodologies, with a focus on strategic reporting and threat landscape assessments.
• Exceptional leadership skills with a track record of building and guiding globally distributed teams.
• In-depth knowledge of the financial services threat landscape.
• Excellent communication skills, able to translate complex intelligence into business-relevant decision points.

Why Join

This is a rare global leadership opportunity to shape the strategic cyber intelligence capabilities of a leading international bank. You will drive the direction of the bank's intelligence programme, deliver critical insights to senior leadership, and directly influence how the organisation prepares for the evolving global cyber threat landscape.

EA Licence: 16S8091

EA Reg No.: R

Work Location :

Singapore, Singapore

Hours:

40

Line of Business:

Technology Solutions

Pay Details:

We're committed to providing fair and equitable compensation to all our colleagues. As a candidate, we encourage you to have an open dialogue with a member of our HR Team and ask compensation related questions, including pay details for this role.

Job Description:

Summary

This role is for a Manager, Senior Threat Intelligence Analyst for the Protect Threat Intelligence (PTI) team. The successful candidate will support PTI's mission to provide timely, actionable, and relevant intelligence to its stakeholders within TD's follow-the-sun operating model. The candidate will be required to maintain a holistic view of the threat landscape for both current and emerging threats. The candidate should have broad intelligence collection and production expertise across a variety of intelligence functions, to include cyber, fraud, geopolitical and insider threat domains. This role requires an experienced manager familiar with leading and managing international teams to lead and coordinate intelligence operations within the Singapore Threat Intelligence Group supporting the Regional Operations. PTI operates an on-call rotation across the team (inclusive of this position).

Job Description

• Enable cyber threat identification by proactively and continuously monitoring the internal and external landscape for relevant events, risks and threats.
• Lead regional geopolitical threat analysis to assess emerging physical, cyber and other threats.
• Use OSINT research and tooling to investigate top priority threats, applying deep knowledge of the MITRE ATT&CK framework and threat actor tradecraft.
• Partner with Threat Management teams to understand events and support technical threat analysis of malicious cyber security incidents.
• Identify and assess threats to supply chain by partnering effectively with Vendor Management in managing risk to TD, support response activities for supply chain incidents and pro-actively identifying emerging threats to supply chain.
• Effectively author and review intelligence products and communications for stakeholders, operational personnel, and leadership.
• Support cyber fraud intelligence capabilities by identifying and mitigating methods for account compromise and fraud.
• Provide expertise and consultation to partners and/or stakeholders on a broad range of threats and emerging threats relevant to TD, its supply chain and the financial sector.
• Proactively review internal processes and activities and identify opportunities for improvement.
• Influence behavior to reduce risk and foster a strong technology risk management culture throughout the enterprise.
• Drive APAC intelligence community engagement through active participation in the FS-ISAC ATIC and enhance TD's regional presence by building and expanding a robust intelligence network across the region.
• Develop and deliver threat briefings.

BREADTH & DEPTH

• 7 years experience or more in intelligence collection and production
• 2 years experience or move of leading and managing teams
• 2 years experience or more supporting international (follow-the-sun) operations
• Experience and familiarity using common intelligence processes and tools, including a threat intelligence platform.
• Proven superior oral and written communication skills and ability to translate complicated threat actor behavior to an executive audience.
• Demonstrated tradecraft in open-source collection.
• Excellent time management skills, including the ability to perform to a production calendar.
• Demonstrated ability to lead shift handovers and transitions.
• Demonstrated ability to stay abreast of emerging threat actor TTP's.
• Advanced ability to apply real world geopolitical indicators to predict threat actor behavior.
• Demonstrated knowledge of the current threat landscape, banking and technology standards and regulatory requirements.

Who We Are

TD is one of the world's leading global financial institutions and is the fifth largest bank in North America by branches/stores. Every day, we deliver legendary customer experiences to over 27 million households and businesses in Canada, the United States and around the world. More than 95,000 TD colleagues bring their skills, talent, and creativity to the Bank, those we serve, and the economies we support. We are guided by our vision to Be the Better Bank and our purpose to enrich the lives of our customers, communities and colleagues.

TD is deeply committed to being a leader in customer experience, that is why we believe that all colleagues, no matter where they work, are customer facing. As we build our business and deliver on our strategy, we are innovating to enhance the customer experience and build capabilities to shape the future of banking. Whether you've got years of banking experience or are just starting your career in financial services, we can help you realize your potential. Through regular leadership and development conversations to mentorship and training programs, we're here to support you towards your goals. As an organization, we keep growing – and so will you.

Our Total Rewards Package

Our Total Rewards package reflects the investment we make in our colleagues to help them, and their families achieve their well-being goals. Total Rewards at TD includes a base salary and several other key plans such as health and well-being benefits, including medical coverage, paid time off, career development, and reward and recognition programs.

Additional Information:

We're delighted that you're considering building a career with TD. Through regular development conversations, training programs, and a competitive benefits plan, we're committed to providing the support our colleagues need to thrive both at work and at home.

Colleague Development

If you're interested in a specific career path or are looking to build certain skills, we want to help you succeed. You'll have regular career, development, and performance conversations with your manager, as well as access to an online learning platform and a variety of mentoring programs to help you unlock future opportunities. Whether you have a passion for helping customers and want to expand your experience, or you want to coach and inspire your colleagues, there are many different career paths within our organization at TD – and we're committed to helping you identify opportunities that support your goals.

Training & Onboarding

We will provide training and onboarding sessions to ensure that you've got everything you need to succeed in your new role.

Interview Process

We'll reach out to candidates of interest to schedule an interview. We do our best to communicate outcomes to all applicants by email or phone call.

Accommodation

If you require an accommodation for the recruitment / interview process (including alternate formats of materials, or accessible meeting rooms or other accommodation), please let us know and we will work with you to meet your needs.

Cybersecurity Incident Response Specialist Role Overview

We are seeking an accomplished Cybersecurity Incident Response & Technology Specialist to join our team. The successful candidate will be responsible for leading incident response efforts, evaluating emerging security technologies, and applying project management methodologies.

• Lead incident response efforts with the team, contribute to incident response plans, and coordinate with stakeholders.
• Evaluate current cybersecurity incident response processes to identify opportunities for AI integration and automation.
• Assess, investigate, and manage security incidents throughout their lifecycle, determining root cause and impact.
• Conduct thorough assessments of prospective security tools to determine their efficacy and suitability.
• Collaborate effectively with diverse teams to facilitate incident resolution and the implementation of security solutions.

• Proven experience in cybersecurity incident response and technology evaluation.
• Strong leadership skills and ability to work collaboratively with cross-functional teams.
• Excellent communication and project management skills.
• Able to assess and evaluate security technologies.

This is a fantastic opportunity to work with a talented team, develop your skills, and make a meaningful contribution to our organization.

If you are passionate about cybersecurity and want to be part of a dynamic team, please submit your application.