173 Threat Management jobs in Singapore

Press Tab to Move to Skip to Content Link

Select how often (in days) to receive an alert:

Select how often (in days) to receive an alert:

NCS is a leading technology services firm that operates across the Asia Pacific region in over 20 cities, providing consulting, digital services, technology solutions, and more. We believe in harnessing the power of technology to achieve extraordinary things, creating lasting value and impact for our communities, partners, and people. Our diverse workforce of 13,000 has delivered large-scale, mission-critical, and multi-platform projects for governments and enterprises in Singapore and the APAC region.

As a Security Operations Center (SOC) Analyst, you'll play a crucial part in maintaining, monitoring, and enhancing our IT security infrastructure. You'll be at the forefront of incident response, patch management, and system integrity, ensuring our digital assets remain secure and operational.

What will you do?

• Act as Incident first responder for a 24/7 staffed SOC.
• Monitor security sensors and review logs to identify network anomalies or intrusions.
• Perform initial analysis of security alerts.
• Escalate security incidents using established policies and procedures in a timely manner.
• Work with customers to analysis potential security incidents, identifying root cause and implement mitigation step(s)/ remedial action(s).
• Performing Response action based on standardize workflow and agreement with clients.
• Assist with the development of incident response plans, workflows, and SOPs.
• Provide threat and vulnerability analysis security advisory services.
• Fulfil Change Requests, Service Requests and respond to internal / external enquiries with regards to Incident Management.

The ideal candidate should possess:

• Professional security certifications such as GCIA will be an advantage.
• Experience in managing security alerts and identifying network intrusions
• Able to work well as a team and with different stakeholders

We are driven by our AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity —and we seek individuals who embody these values in both their professional and personal lives. We are committed to our Impact: Valuing our clients, Growing our people, and Creating our future .

Together, we make the extraordinary happen .

Learn more about us at ncs.co and visit our LinkedIn career site.

#J-18808-Ljbffr

Select how often (in days) to receive an alert:

NCS is a leading technology services firm that operates across the Asia Pacific region in over 20 cities, providing consulting, digital services, technology solutions, and more. We believe in harnessing the power of technology to achieve extraordinary things, creating lasting value and impact for our communities, partners, and people. Our diverse workforce of 13,000 has delivered large-scale, mission-critical, and multi-platform projects for governments and enterprises in Singapore and the APAC region.

As a Security Analyst, this incumbent will perform initial analysis (e.g. analysing and reviewing alerts, eliminating false positives and determining severity of threats) to determine impact of compromise

What will you do?

• Perform initial analysis (e.g. analysing and reviewing alerts, eliminating false positives and determining severity of threats) to determine impact of compromise
• Conduct basic investigations of security events, including malware infections and unauthorized access attempts.
• Determine the nature, mechanisms and scope of incident by performing event correlation and historical searches to determine the extent of a security compromise
• Escalate complex or highly suspicious alerts for further investigation and response.
• Record details of all activities, including investigations performed, findings and remediation steps taken.
• Collects data, evidence, and context necessary for further escalation.
• Perform event correlation across the In-Scope Institutions to identify similar attack pattern and spread of attack.
• Handling case management, generating tickets and reports when required, and tracking open tickets until closure

The ideal candidate should possess:

• Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, or related field.
• Able to commit to permanent night shifts
• Team player and able to work independently.
• Experience in analysing data and review alerts

We are driven by our AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity —and we seek individuals who embody these values in both their professional and personal lives. We are committed to our Impact: Valuing our clients, Growing our people, and Creating our future .

Together, we make the extraordinary happen .

Learn more about us at ncs.co and visit our LinkedIn career site.

#J-18808-Ljbffr

Select how often (in days) to receive an alert:

NCS is a leading technology services firm that operates across the Asia Pacific region in over 20 cities, providing consulting, digital services, technology solutions, and more. We believe in harnessing the power of technology to achieve extraordinary things, creating lasting value and impact for our communities, partners, and people. Our diverse workforce of 13,000 has delivered large-scale, mission-critical, and multi-platform projects for governments and enterprises in Singapore and the APAC region.

As a Security Analyst, this incumbent will perform initial analysis (e.g. analysing and reviewing alerts, eliminating false positives and determining severity of threats) to determine impact of compromise

What will you do?

• Perform initial analysis (e.g. analysing and reviewing alerts, eliminating false positives and determining severity of threats) to determine impact of compromise
• Conduct basic investigations of security events, including malware infections and unauthorized access attempts.
• Determine the nature, mechanisms and scope of incident by performing event correlation and historical searches to determine the extent of a security compromise
• Escalate complex or highly suspicious alerts for further investigation and response.
• Record details of all activities, including investigations performed, findings and remediation steps taken.
• Collects data, evidence, and context necessary for further escalation.
• Perform event correlation across the In-Scope Institutions to identify similar attack pattern and spread of attack.
• Handling case management, generating tickets and reports when required, and tracking open tickets until closure

The ideal candidate should possess:

• Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, or related field.
• Able to commit to permanent night shifts
• Team player and able to work independently.
• Experience in analysing data and review alerts

We are driven by our AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity —and we seek individuals who embody these values in both their professional and personal lives. We are committed to our Impact: Valuing our clients, Growing our people, and Creating our future .

Together, we make the extraordinary happen .

Learn more about us at ncs.co and visit our LinkedIn career site.

#J-18808-Ljbffr

About Lumen

Lumen connects the world. We are igniting business growth by connecting people, data and applications – quickly, securely, and effortlessly. Together, we are building a culture and company from the people up – committed to teamwork, trust and transparency. People power progress. We’re invested in providing the flexibility you need to thrive and deliver lasting impact. Apply now to continue digitally connecting the world and shaping the future.

The Role

The Cyber Threat Security Analyst role will focus on security event and incident monitoring, threat hunting, and deep analysis of threat information within SIEM environments, various log sources, and within security control technologies directly. The Security Analyst will work directly with customers to determine and communicate relevant risk and potential impact, as well as make recommendations for risk mitigation. This role will also provide direction for SIEM rule changes, customer escalations and inquiries, and help develop improved threat analysis process and procedures.

The Cyber Threat Security Analyst role is expected to participate in a shift schedule and on-call rotation to accommodate a global 24x7x365 Managed Threat Security Services program.

The Main Responsibilities

• Perform security incident and event monitoring support, including deep dive data analysis and response
• Develop and manage customer security event analysis notifications with thoughtful analysis details, evidence, conclusions, and recommendations
• Respond and manage customer issues and questions regarding security events, including evidence supporting risk identification and recommended risk mitigation, via trouble ticket, email, and phone
• Review threat detection rules and correlations, and make recommendations for improved fidelity

What We Look For in a Candidate

Qualifications & Skills:

Required

• Requires Bachelor’s degree in related field or equivalent combination of education and experience.
• Possess strong customer service skills
• Communicate effectively with managers, customers and vendors
• Maintain solid working relationships, including collaborative technical activities with peers
• Good written and verbal communication skills
• Good analytical and problem-solving skills
• Attention to detail with good organizational skills
• Basic experience performing security monitoring, hunting, and analysis within SIEM platforms and security controls

Preferred

• 1 or more years in a Security Operations environment performing cyber threat hunting and incident response support
• Security industry certifications (examples):
• GIAC
• CISSP
• CRISC
• CISM
• Security+
• CCNA
• CEH
• Basic knowledge and skills of at least one programming language (python preferred)

Compensation

What to Expect Next

Requisition #: 338712

Background Screening

If you are selected for a position, there will be a background screen, which may include checks for criminal records and/or motor vehicle reports and/or drug screening, depending on the position requirements. For more information on these checks, please refer to the Post Offer section of our FAQ page . Job-related concerns identified during the background screening may disqualify you from the new position or your current role. Background results will be evaluated on a case-by-case basis.

Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

Equal Employment Opportunities

We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, gender expression, marital status, family status, pregnancy, or other legally protected status (collectively, “protected statuses”). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training.

Disclaimer

The job responsibilities described above indicate the general nature and level of work performed by employees within this classification. It is not intended to include a comprehensive inventory of all duties and responsibilities for this job. Job duties and responsibilities are subject to change based on evolving business needs and conditions.

In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information.

Please be advised that Lumen does not require any form of payment from job applicants during the recruitment process. All legitimate job openings will be posted on our official website or communicated through official company email addresses. If you encounter any job offers that request payment in exchange for employment at Lumen, they are not for employment with us, but may relate to another company with a similar name.

#J-18808-Ljbffr

Press Tab to Move to Skip to Content Link

Lumen connects the world. We are igniting business growth by connecting people, data and applications – quickly, securely, and effortlessly. Together, we are building a culture and company from the people up – committed to teamwork, trust and transparency. People power progress.

We’re looking for top-tier talent and offer the flexibility you need to thrive and deliver lasting impact. Join us as we digitally connect the world and shape the future.

The Role

The Cyber Threat Security Analyst role will focus on security event and incident monitoring, threat hunting, and deep analysis of threat information within SIEM environments, various log sources, and within security control technologies directly. The Security Analyst will work directly with customers to determine and communicate relevant risk and potential impact, as well as make recommendations for risk mitigation. This role will also provide direction for SIEM rule changes, customer escalations and inquiries, and help develop improved threat analysis process and procedures.

The Main Responsibilities

• Perform security incident and event monitoring support, including deep dive data analysis and response
• Develop and manage customer security event analysis notifications with thoughtful analysis details, evidence, conclusions, and recommendations
• Respond and manage customer issues and questions regarding security events, including evidence supporting risk identification and recommended risk mitigation, via trouble ticket, email, and phone
• Review threat detection rules and correlations, and make recommendations for improved fidelity

What We Look For in a Candidate

Qualifications & Skills:

Required

• Requires Bachelor’s degree in related field or equivalent combination of education and experience.
• Communicate effectively with managers, customers and vendors
• Maintain solid working relationships, including collaborative technical activities with peers
• Good written and verbal communication skills
• Good analytical and problem-solving skills
• Attention to detail with good organizational skills
• Basic experience performing security monitoring, hunting, and analysis within SIEM platforms and security controls

Preferred

• 1 or more years in a Security Operations environment performing cyber threat hunting and incident response support
• Security industry certifications (examples):
• GIAC
• CISSP
• CRISC
• CISM
• Security+
• CCNA
• CEH
• Basic knowledge and skills of at least one programming language (python preferred)

Compensation What to Expect Next

Requisition #: 338712

If you are selected for a position, there will be a background screen, which may include checks for criminal records and/or motor vehicle reports and/or drug screening, depending on the position requirements. For more information on these checks, please refer to the Post Offer section of our FAQ page . Job-related concerns identified during the background screening may disqualify you from the new position or your current role. Background results will be evaluated on a case-by-case basis.

Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, gender expression, marital status, family status, pregnancy, or other legally protected status (collectively, “protected statuses”). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training.

Disclaimer

The job responsibilities described above indicate the general nature and level of work performed by employees within this classification. It is not intended to include a comprehensive inventory of all duties and responsibilities for this job. Job duties and responsibilities are subject to change based on evolving business needs and conditions.

In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information.

Please be advised that Lumen does not require any form of payment from job applicants during the recruitment process. All legitimate job openings will be posted on our official website or communicated through official company email addresses. If you encounter any job offers that request payment in exchange for employment at Lumen, they are not for employment with us, but may relate to another company with a similar name.

#J-18808-Ljbffr

**About Lumen**
Lumen connects the world. We are igniting business growth by connecting people, data and applications - quickly, securely, and effortlessly. Together, we are building a culture and company from the people up - committed to teamwork, trust and transparency. People power progress.
We're looking for top-tier talent and offer the flexibility you need to thrive and deliver lasting impact. Join us as we digitally connect the world and shape the future.
**The Role**
The Cyber Threat Security Analyst role will focus on security event and incident monitoring, threat hunting, and deep analysis of threat information within SIEM environments, various log sources, and within security control technologies directly. The Security Analyst will work directly with customers to determine and communicate relevant risk and potential impact, as well as make recommendations for risk mitigation. This role will also provide direction for SIEM rule changes, customer escalations and inquiries, and help develop improved threat analysis process and procedures.
**The Main Responsibilities**
+ Perform security incident and event monitoring support, including deep dive data analysis and response
+ Develop and manage customer security event analysis notifications with thoughtful analysis details, evidence, conclusions, and recommendations
+ Respond and manage customer issues and questions regarding security events, including evidence supporting risk identification and recommended risk mitigation, via trouble ticket, email, and phone
+ Review threat detection rules and correlations, and make recommendations for improved fidelity
**What We Look For in a Candidate**
Qualifications & Skills:
Required
+ Requires Bachelor's degree in related field or equivalent combination of education and experience.
+ Possess strong customer service skills
+ Communicate effectively with managers, customers and vendors
+ Maintain solid working relationships, including collaborative technical activities with peers
+ Good written and verbal communication skills
+ Good analytical and problem-solving skills
+ Attention to detail with good organizational skills
+ Basic experience performing security monitoring, hunting, and analysis within SIEM platforms and security controls
Preferred
+ 1 or more years in a Security Operations environment performing cyber threat hunting and incident response support
+ Security industry certifications (examples):
+ GIAC
+ CISSP
+ CRISC
+ CISM
+ Security+ CCNA
+ CEH
+ Basic knowledge and skills of at least one programming language (python preferred)
**Compensation**
**What to Expect Next**
Requisition #: 338712
**Background Screening**
If you are selected for a position, there will be a background screen, which may include checks for criminal records and/or motor vehicle reports and/or drug screening, depending on the position requirements. For more information on these checks, please refer to the Post Offer section of our FAQ page ( . Job-related concerns identified during the background screening may disqualify you from the new position or your current role. Background results will be evaluated on a case-by-case basis.
Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.
**Equal Employment Opportunities**
We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, gender expression, marital status, family status, pregnancy, or other legally protected status (collectively, "protected statuses"). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training.
**Disclaimer**
The job responsibilities described above indicate the general nature and level of work performed by employees within this classification. It is not intended to include a comprehensive inventory of all duties and responsibilities for this job. Job duties and responsibilities are subject to change based on evolving business needs and conditions.
In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information.
Please be advised that Lumen does not require any form of payment from job applicants during the recruitment process. All legitimate job openings will be posted on our official website or communicated through official company email addresses. If you encounter any job offers that request payment in exchange for employment at Lumen, they are not for employment with us, but may relate to another company with a similar name.

The Cyber Security Analyst is responsible for safeguarding the organization’s digital assets by identifying and mitigating potential security risks, monitoring network activity for unusual behaviour, and responding to incidents. This role requires a strong understanding of security best practices, hands-on experience with various security tools, and the ability to respond quickly and effectively to emerging threats.

A key focus of this role is on the effective management and optimization of the Security Information and Event Management (SIEM) system, ensuring it provides actionable intelligence for rapid threat response. This role will require strong analytical skills, good collaboration skills, detailed working knowledge of current and emerging security technologies, and the ability to correlate events to identify abnormal behaviour.

•

Responsible to ensure accurate and rapid response to security events

•

Analyze security logs, SIEM alerts, and incident reports to identify and mitigate risks.

•

Respond to and investigate security incidents, including breaches, malware outbreaks, and phishing attacks. Monitor networks and systems for security breaches, alerts, and anomalous activity.

•

Conduct root-cause analysis to prevent future incidents and develop incident response procedures.

•

Provide analysis and trending of security log data from various security devices

•

Configure and maintain SIEM tools to align with the organization’s security objectives and threat landscape.

•

Create custom SIEM dashboards and reports for different stakeholders to visualize critical security metrics and incident data.

•

Develop and optimize SIEM content, including rules, alerts, and correlation logic, to improve threat detection and response.

•

Regularly review and tune SIEM rules to reduce false positives, enhance event correlation, and maintain relevance to evolving threats.

•

Document and update SIEM processes and configurations, ensuring a high level of data accuracy and availability.

•

Perform regular vulnerability scans and assist in patch management processes. Work with IT teams to prioritize and remediate them.

•

Recommend solutions to mitigate risks in any activity that may potentially impact security of existing IT and information management

•

Ensure compliance with industry regulations (e.g. GDPR, ISO 27001) and company policies.

•

Assist in the development, implementation, and maintenance of security policies, standards, and guidelines.

•

Assist in training staff on security best practices, including phishing awareness and data protection.

•

Help develop educational materials and conduct periodic security awareness training.

•

Advise and consult internal/ external customers on risk assessment, threat modelling and vulnerability management. Perform risk assessments and recommend security measures to mitigate potential risks.

•

Document risks, vulnerabilities, and remediation strategies in a detailed risk management report.

•

Maintain up-to-date knowledge of the IT security industry, including awareness of new or revised security solutions, improved security processes and development of new attacks and threat vectors

•

Manage and optimize security tools, such as firewalls, antivirus software, and intrusion detection/prevention systems (IDPS).

•

Perform 1st level troubleshooting on servers and network issues with regards to log collection/ security tools

•

Generate reports on security metrics, incidents, and remediation efforts for management.

•

Maintain accurate documentation of incidents, security changes, and system configurations.

•

Any other ad-hoc duties as required or assigned.

•

Strong knowledge of cybersecurity principles, practices, and technologies.

•

Expertise in SIEM tools and content management, including rule creation, alert tuning, and report customization.

•

Proficiency with security tools like firewalls, IDPS, antivirus, and vulnerability scanners.

•

Knowledge of scripting (Python, PowerShell) for automation within the SIEM environment is a plus.

•

Ability to analyze and interpret security data to identify vulnerabilities and potential threats.

•

Excellent communication skills, with the ability to explain complex security concepts to non-technical stakeholders.

•

Strong analytical skills and attention to detail.

•

Ability to work on-call or off-hours as needed to respond to security incidents.

•

May require occasional travel for training or workshop.

•

Bachelor Degree or Advanced Diploma in Computer Science, Information Technology, Cybersecurity from a recognized university or related field (or equivalent experience)

•

At least 1-3 years in a cybersecurity role, with hands-on experience in SIEM content management, network security, threat monitoring, or incident response.

•

Experience in the application of threat modelling or other risk identification techniques

•

Detailed knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the development of exploits

•

Breadth of knowledge in information security space with emphasis on TCP/IP network security, operating system security, common attack patterns and exploitation techniques

•

Relevant certifications (e.g., CompTIA Security+, Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), GIAC Security Essentials (GSEC)) are a plus

•

Effective leadership skills and a team player

•

Strong sense of ownership and drive

#J-18808-Ljbffr

1 year ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

Job Description

Develop and continually refine the security framework, information security policies, processes, procedures, and guidelines.

Ensure compliance with these policies and procedures through regular security reviews and audits, including log analysis and security assessments of customer ICT systems.

Conduct security risk management exercises and table-top exercises.

Perform vulnerability assessments and coordinate penetration testing activities.

Deliver information security awareness training.

Develop and manage the customer’s security incident response plan.

Lead and support the customer in resolving and responding to security incidents.

Serve as the primary point of contact and advisor for the customer on ICT security-related matters.

Manage project activities and deliverables during the implementation phase.

Job Requirements

Minimum of 5 years of experience in IT security.

Experience with networks, servers (Windows and UNIX), and databases.

Proven track record in IT security auditing and security assessments.

Proficient in analyzing logs from various sources and understanding protocols and traffic flows.

Knowledge of Active Directory, endpoint protection solutions, Early Detection and Response solutions, Database Activity Monitoring tools, and SIEM.

Adaptable, team-oriented, and proactive personality.

Ability to independently organize and plan work.

Capable of working effectively in a rapidly changing environment.

Strong multi-tasking skills and the ability to switch contexts effectively between different activities and teams.

CISSP, CISM, Security+, or other relevant IT security certifications (e.g., Imperva, Carbon Black) are advantageous.

EA Licence No.:18S9405 / EA Reg. No.:R1330864

Skills & Competencies

IT security,CISSP,CISM,Security+

Seniority level

• Seniority level Mid-Senior level

Employment type

• Employment type Full-time

Job function

• Job function Information Technology
• Industries IT Services and IT Consulting

Referrals increase your chances of interviewing at Percept Solutions by 2x

Get notified about new Information Security Analyst jobs in Singapore .

Information Technology - Cyber Security Analyst (Scoot) Security Specialist, Detection & Response, Global Security Organisation - TikTok, Singapore Information Security Analyst / IT Support Engineer Technology & Cyber Security Risk Analyst Information Technology - Cyber Security Specialist (Architecture and Engineering)

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

• Lead in-depth investigations to uncover abuse tactics, product vulnerabilities, and process gaps.
• Analyse large datasets to identify signals and patterns linked to fraud and abuse.
• Reverse-engineer scaled attacks and develop rapid-response mitigation strategies.

We are seeking a skilled and driven professional to join our Business Integrity team, focusing on identifying and mitigating fraud and abuse within business products. This role involves investigative work, data analysis, and cross-functional collaboration to uncover and address complex abuse patterns. If you are passionate about protecting users and businesses from harm and thrive in fast-paced, dynamic environments, this opportunity is for you.

Key Responsibilities:

·Lead in-depth investigations to uncover abuse tactics, product vulnerabilities, and process gaps.

·Analyse large datasets to identify signals and patterns linked to fraud and abuse.

·Reverse-engineer scaled attacks and develop rapid-response mitigation strategies.

·Prototype workflows and enforcement rules to disrupt ongoing abuse.

·Collaborate cross-functionally with Engineering, Product, and Operations teams to develop scalable solutions.

·Investigate networks of malicious actors, including off-platform research.

·Occasionally accommodate flexible working hours to collaborate with global teams.

Qualifications:

·2+ years of experience in investigative analysis or similar roles.

·1+ year of hands-on experience with SQL for data analysis and reporting.

·Experience with scripting languages such as Python, PHP, or R.

·Strong critical thinking and problem-solving skills.

·Ability to manage and own projects independently with minimal supervision.

·Excellent organizational, documentation, and presentation skills.

·Familiarity with trust and safety, online fraud investigations, or cybersecurity is a plus.

·Ability to think like an adversary and anticipate threat actor behaviour.

·Comfortable working across time zones and adapting to a dynamic work environment.

We regret to inform that only shortlisted candidates will be notified.

EA Registration No: 10C4544, Lim Jing Kai, Russell

Allegis Group Singapore Pte Ltd, Company Reg No. 200909448N, EA License No. 10C4544

#J-18808-Ljbffr