333 Threat Management jobs in Singapore

Job Description

You will be a member of the Group Information Security Team responsible for responding to threats and incidents to the corporate networks, systems (on-prem and cloud), and digital assets.

Key Responsibilities:

•Perform security monitoring and incident response activities across the scoot networks, leveraging a variety of tools and techniques.

•Manage Security Operations center.

•Detect incidents through proactive “hunting” across security-relevant data sets.

•Ability to correlate multiple events from different devices to identify abnormal behaviour

•Document incident response analysis activities thoroughly

•Develop new, repeatable methods for finding malicious activities

•Provide recommendations to enhance detection and protection capabilities.

•Effectively present technical topics to both technical and non-technical audiences

•Develop and follow detailed operational processes and procedures to appropriately analyze, escalate, and assist in the remediation of information security incidents

•Prioritize multiple high-priority tasks and formulate responses/recommendations in a fast-paced environment

•Prepare documentation for security technical standards, standard operational procedures, and hardening standards.

•Analyse endpoint, network, and application logs

•Assist other IT teams in security-related issues

•Engage with vendors and parent company SIA team members for security reviews.

Requirements:

•Degree in Computer Engineering, Computer Science, Information Systems, or equivalent qualification.

•At least 5-6 years of experience in Cybersecurity Incident and Security Operations.

•Demonstrate experience in Information Security with a focus on Cyber Security Operations, Incident Response and Detection.

•Experience working in the Security Operations Centre and/or Computer Incident Response Team.

•Excellent problem-solving skills combined with hands-on experience doing root cause analysis and post-incident reviews.

•Solid knowledge of computer networks and common protocols

•Knowledge of prominent cyber threat actors and APT groups.

•Experience with Threat Intelligence Platforms.

•Experience with SIEM (especially Splunk).

•Professional security related qualifications (i.e. GCIA, CISSP etc) will be an advantage

•Preferred certifications: CISSP, CISM, CISA, ISMS, TOGAF, SABS

•Good interpersonal skills

Press Tab to Move to Skip to Content Link

Select how often (in days) to receive an alert:

Select how often (in days) to receive an alert:

NCS is a leading technology services firm that operates across the Asia Pacific region in over 20 cities, providing consulting, digital services, technology solutions, and more. We believe in harnessing the power of technology to achieve extraordinary things, creating lasting value and impact for our communities, partners, and people. Our diverse workforce of 13,000 has delivered large-scale, mission-critical, and multi-platform projects for governments and enterprises in Singapore and the APAC region.

As a SOC Consultant, you'll be responsible for conducting advanced threat analysis and investigating security incidents to safeguard organizational assets. The role involves close collaboration with Cyber Incident Response Team (CIRT) members, business stakeholders, and executive leadership to coordinate effective response protocols. Key responsibilities include developing detection logic, configuring security platforms such as SIEM, SOAR, EDR, and threat intelligence tools, and creating detailed technical reports documenting forensic procedures and timelines.

What will you do?

• Perform advanced threat analysis and investigate security events.
• Work with CIRT members, business partners, and executive leadership to coordinate response protocols.
• Writing technical reports detailing how the computer evidence was discovered and all the steps taken during the retrieval process (timeline).
• Develop detection logic & security playbooks.
• Configure SIEM, SOAR, EDR and/or threat intelligence platforms.
• Sharing knowledge with SOC Security Analyst and supporting them.
• Conduct sampling check on SOC Security Analyst tickets.
• Be clear of customer's security framework, such as information security policies, processes/procedures, guidelines and etc.

The ideal candidate should possess:

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.
• Relevant certifications such as GCIA, GCIH, CEH, CISSP, or Security+ are highly preferred.
• 3–5 years of experience in cybersecurity operations, threat analysis, or incident response.
• Hands-on experience with SIEM, SOAR, EDR, and threat intelligence platforms.
• Proven experience in writing technical reports and conducting forensic investigations.
• Strong understanding of network protocols, malware behavior, and attack vectors.
• Proficiency in configuring and tuning security tools and platforms.
• Ability to develop detection logic and security playbooks.
• Familiarity with scripting languages (e.g., Python, PowerShell) is a plus.
• Excellent communication and report-writing skills.
• Strong analytical and problem-solving abilities.
• Ability to work collaboratively with cross-functional teams including CIRT, SOC, and leadership.
• Detail-oriented with a proactive approach to continuous improvement.
• Solid grasp of information security frameworks, policies, and procedures.
• Understanding of regulatory compliance standards (e.g., ISO 27001, NIST, GDPR).

We are driven by our AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity —and we seek individuals who embody these values in both their professional and personal lives. We are committed to our Impact: Valuing our clients, Growing our people, and Creating our future .

Together, we make the extraordinary happen .

Learn more about us at ncs.co and visit our LinkedIn career site.

Job Overview

We seek a diligent Surveillance Officer to fill a critical role in maintaining game integrity, ensuring guest and team member safety, and protecting company assets.

Key Responsibilities:

• Maintain the integrity of games by monitoring and addressing potential issues.
• Ensure the safety and security of guests and team members by identifying and mitigating risks.
• Protect company assets through vigilant monitoring and reporting.

Requirements:

• Detailed analytical skills for effective issue identification and resolution.
• Excellent communication skills for clear reporting and collaboration.
• Able to work independently with minimal supervision.

Benefits:

• Ongoing training and professional development opportunities.
• A supportive and dynamic work environment.
• A competitive compensation package.

About the Role:

This is an excellent opportunity for a motivated and detail-oriented individual to join our surveillance operations team.

Join to apply for the CYBER THREAT SECURITY ANALYST role at Lumen Technologies

Join to apply for the CYBER THREAT SECURITY ANALYST role at Lumen Technologies

About Lumen

Lumen connects the world. We are igniting business growth by connecting people, data and applications – quickly, securely, and effortlessly. Together, we are building a culture and company from the people up – committed to teamwork, trust and transparency. People power progress.

About Lumen

Lumen connects the world. We are igniting business growth by connecting people, data and applications – quickly, securely, and effortlessly. Together, we are building a culture and company from the people up – committed to teamwork, trust and transparency. People power progress.

We’re looking for top-tier talent and offer the flexibility you need to thrive and deliver lasting impact. Join us as we digitally connect the world and shape the future.

The Role

The Cyber Threat Security Analyst role will focus on security event and incident monitoring, threat hunting, and deep analysis of threat information within SIEM environments, various log sources, and within security control technologies directly. The Security Analyst will work directly with customers to determine and communicate relevant risk and potential impact, as well as make recommendations for risk mitigation. This role will also provide direction for SIEM rule changes, customer escalations and inquiries, and help develop improved threat analysis process and procedures.

The Cyber Threat Security Analyst role is expected to participate in a shift schedule and on-call rotation to accommodate a global 24x7x365 Managed Threat Security Services program.

The Main Responsibilities

• Perform security incident and event monitoring support, including deep dive data analysis and response
• Develop and manage customer security event analysis notifications with thoughtful analysis details, evidence, conclusions, and recommendations
• Respond and manage customer issues and questions regarding security events, including evidence supporting risk identification and recommended risk mitigation, via trouble ticket, email, and phone
• Review threat detection rules and correlations, and make recommendations for improved fidelity
  
  

• Requires Bachelor’s degree in related field or equivalent combination of education and experience.
• Possess strong customer service skills
• Communicate effectively with managers, customers and vendors
• Maintain solid working relationships, including collaborative technical activities with peers
• Good written and verbal communication skills
• Good analytical and problem-solving skills
• Attention to detail with good organizational skills
• Basic experience performing security monitoring, hunting, and analysis within SIEM platforms and security controls
  
  

• 1 or more years in a Security Operations environment performing cyber threat hunting and incident response support
• Security industry certifications (examples):
• GIAC
• CISSP
• CRISC
• CISM
• Security+
• CCNA
• CEH
• Basic knowledge and skills of at least one programming language (python preferred)
  
  

• Seniority level Entry level

• Employment type Full-time

• Job function Information Technology
• Industries Telecommunications

Referrals increase your chances of interviewing at Lumen Technologies by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

About Lumen

Lumen connects the world. We are igniting business growth by connecting people, data and applications – quickly, securely, and effortlessly. Together, we are building a culture and company from the people up – committed to teamwork, trust and transparency. People power progress. We’re invested in providing the flexibility you need to thrive and deliver lasting impact. Apply now to continue digitally connecting the world and shaping the future.

The Role

The Cyber Threat Security Analyst role will focus on security event and incident monitoring, threat hunting, and deep analysis of threat information within SIEM environments, various log sources, and within security control technologies directly. The Security Analyst will work directly with customers to determine and communicate relevant risk and potential impact, as well as make recommendations for risk mitigation. This role will also provide direction for SIEM rule changes, customer escalations and inquiries, and help develop improved threat analysis process and procedures.

The Cyber Threat Security Analyst role is expected to participate in a shift schedule and on-call rotation to accommodate a global 24x7x365 Managed Threat Security Services program.

The Main Responsibilities

• Perform security incident and event monitoring support, including deep dive data analysis and response
• Develop and manage customer security event analysis notifications with thoughtful analysis details, evidence, conclusions, and recommendations
• Respond and manage customer issues and questions regarding security events, including evidence supporting risk identification and recommended risk mitigation, via trouble ticket, email, and phone
• Review threat detection rules and correlations, and make recommendations for improved fidelity

What We Look For in a Candidate

Qualifications & Skills:

Required

• Requires Bachelor’s degree in related field or equivalent combination of education and experience.
• Possess strong customer service skills
• Communicate effectively with managers, customers and vendors
• Maintain solid working relationships, including collaborative technical activities with peers
• Good written and verbal communication skills
• Good analytical and problem-solving skills
• Attention to detail with good organizational skills
• Basic experience performing security monitoring, hunting, and analysis within SIEM platforms and security controls

Preferred

• 1 or more years in a Security Operations environment performing cyber threat hunting and incident response support
• Security industry certifications (examples):
• GIAC
• CISSP
• CRISC
• CISM
• Security+
• CCNA
• CEH
• Basic knowledge and skills of at least one programming language (python preferred)

Compensation

What to Expect Next

Requisition #: 338712

Background Screening

If you are selected for a position, there will be a background screen, which may include checks for criminal records and/or motor vehicle reports and/or drug screening, depending on the position requirements. For more information on these checks, please refer to the Post Offer section of our FAQ page . Job-related concerns identified during the background screening may disqualify you from the new position or your current role. Background results will be evaluated on a case-by-case basis.

Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

Equal Employment Opportunities

We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, gender expression, marital status, family status, pregnancy, or other legally protected status (collectively, “protected statuses”). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training.

Disclaimer

The job responsibilities described above indicate the general nature and level of work performed by employees within this classification. It is not intended to include a comprehensive inventory of all duties and responsibilities for this job. Job duties and responsibilities are subject to change based on evolving business needs and conditions.

In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information.

Please be advised that Lumen does not require any form of payment from job applicants during the recruitment process. All legitimate job openings will be posted on our official website or communicated through official company email addresses. If you encounter any job offers that request payment in exchange for employment at Lumen, they are not for employment with us, but may relate to another company with a similar name.

• Lead in-depth investigations to uncover abuse tactics, product vulnerabilities, and process gaps.
• Analyse large datasets to identify signals and patterns linked to fraud and abuse.
• Reverse-engineer scaled attacks and develop rapid-response mitigation strategies.

We are seeking a skilled and driven professional to join our Business Integrity team, focusing on identifying and mitigating fraud and abuse within business products. This role involves investigative work, data analysis, and cross-functional collaboration to uncover and address complex abuse patterns. If you are passionate about protecting users and businesses from harm and thrive in fast-paced, dynamic environments, this opportunity is for you.

Key Responsibilities:

·Lead in-depth investigations to uncover abuse tactics, product vulnerabilities, and process gaps.

·Analyse large datasets to identify signals and patterns linked to fraud and abuse.

·Reverse-engineer scaled attacks and develop rapid-response mitigation strategies.

·Prototype workflows and enforcement rules to disrupt ongoing abuse.

·Collaborate cross-functionally with Engineering, Product, and Operations teams to develop scalable solutions.

·Investigate networks of malicious actors, including off-platform research.

·Occasionally accommodate flexible working hours to collaborate with global teams.

Qualifications:

·2+ years of experience in investigative analysis or similar roles.

·1+ year of hands-on experience with SQL for data analysis and reporting.

·Experience with scripting languages such as Python, PHP, or R.

·Strong critical thinking and problem-solving skills.

·Ability to manage and own projects independently with minimal supervision.

·Excellent organizational, documentation, and presentation skills.

·Familiarity with trust and safety, online fraud investigations, or cybersecurity is a plus.

·Ability to think like an adversary and anticipate threat actor behaviour.

·Comfortable working across time zones and adapting to a dynamic work environment.

We regret to inform that only shortlisted candidates will be notified.

EA Registration No: 10C4544, Lim Jing Kai, Russell

Allegis Group Singapore Pte Ltd, Company Reg No. 200909448N, EA License No. 10C4544

XTX Markets is a leading algorithmic trading firm which uses state-of-the-art machine learning technology to produce price forecasts for over 50,000 financial instruments across equities, fixed income, currencies, commodities and crypto. It uses those forecasts to trade on exchanges and alternative trading venues, and to offer differentiated liquidity directly to clients worldwide. The firm trades over $250bn a day across 35 countries and has over 250 employees based in London, Singapore, New York, Paris, Bristol, Mumbai, Yerevan and Kajaani.

We leverage the talent of the people who work here, modern computational techniques and state-of-the-art research infrastructure to analyse large data sets across markets quickly and efficiently, to maximize the effectiveness of our proprietary trading algorithms. We are actively seeking new methods and ideas. The models that drive our trading strategies have evolved considerably over the last 10 years, from econometric methods that gave our company its name, to trees, to neural networks, to modern deep learning architectures.

XTX Markets has an unrivalled level of computational resources in the trading industry, with a growing research cluster currently containing over 25,000 GPUs with 650 petabytes of usable storage. Teams across the firm include world-class researchers with backgrounds in pure math, programming, physics, computer science and machine learning. The firm is also constructing a large-scale data centre in Finland to future-proof its significant computational capabilities.

At XTX Markets technology is our business and we are a diverse organization which attracts outstanding talent from across all industry backgrounds. We are focused on teamwork and our people collaborate on all aspects of the business, working openly and with respect for each other, our clients and the market. Our culture is non-hierarchical and one where everyone is valued. We strive for excellence in everything we do.

The Team

The Information Security team at XTX Markets are accountable for all aspects of the firm’s physical and IT security. From obtaining and transforming events and signals into actionable intelligence to helping design and implement authentication/authorisation systems, alongside third-party risk assessment and global regulatory compliance. This role is based in our Singapore office, and you will work closely with the Risk and Information Security teams in our London HQ.

The Role

As our first Information Security Analyst, you’ll work to ensure that XTX Markets’ data and infrastructure meet – and, where appropriate, exceed – the requirements of global regulators and auditors.

You will:

• Develop and automate compliance workflows (detection, analysis, business justifications, evidence-gathering).
• Liaise with external auditors to resolve findings and document compensating controls.
• Manage third-party/vendor risk assessments and ongoing security reviews.

You’ll also have opportunities to contribute across the security function: improving our vulnerability-management program, enhancing our detection framework, and helping triage and respond to security alerts. You will actively collaborate with a range of stakeholders within the firm.

• 3+ years in Information Security, with a focus on audit/compliance.
• Programming/scripting skills (e.g. Python, PowerShell) particularly for automating repeatable tasks.
• Strong written and verbal communication skills.
• Rapid learner with outstanding attention to detail.
• Self-starter: able to work autonomously, prioritise tasks, and admit mistakes.
• Able to write clear, succinct business justifications and technical documentation.
• Hands-on proficiency with vulnerability management/compliance platforms (e.g. Tenable Nessus).
• Familiarity with Indian information-security regulations and audit practices (SEBI, NSE, etc.)
• An academic foundation in computer science or a related subject would be beneficial.

*

indicates a required field

First Name *

Last Name *

Preferred First Name

Email *

Phone

Resume/CV

Enter manually

Accepted file types: pdf, doc, docx, txt, rtf

Enter manually

Accepted file types: pdf, doc, docx, txt, rtf

Website

Please indicate what right to work you have in Singapore. * Select.

Join to apply for the Principal Security Analyst role at Oracle

Join to apply for the Principal Security Analyst role at Oracle

Get AI-powered advice on this job and more exclusive features.

Job Description

We are looking for professionals with experience protecting critical infrastructure to help us defend Oracle cloud infrastructure. Our team is skilled in threat hunting, analyzing indicators of compromise (IOCs), investigating adverse security events, security incident management, and digital forensics across laaS, PaaS and SaaS environments. You will be part of a corporate security operations center responsible for defending infrastructure from adversaries and insider threats. This includes using tools to analyze and respond to threats, creating tools/scripts to aid in analysis, and responding in real time to adverse security events. Our team is the last line of defense if security controls are breached. We are expanding the team and working on ambitious new initiatives. The Senior SOC Analyst will leverage advance security tooling and automation to rapidly detect and respond to real-time security alerts and events and conduct detailed root cause investigations. The analyst will work closely with other SOC personnel, forensics, incident response, and engineering partners to mitigate a wide variety of threats and malicious activity.

Job Description

We are looking for professionals with experience protecting critical infrastructure to help us defend Oracle cloud infrastructure. Our team is skilled in threat hunting, analyzing indicators of compromise (IOCs), investigating adverse security events, security incident management, and digital forensics across laaS, PaaS and SaaS environments. You will be part of a corporate security operations center responsible for defending infrastructure from adversaries and insider threats. This includes using tools to analyze and respond to threats, creating tools/scripts to aid in analysis, and responding in real time to adverse security events. Our team is the last line of defense if security controls are breached. We are expanding the team and working on ambitious new initiatives. The Senior SOC Analyst will leverage advance security tooling and automation to rapidly detect and respond to real-time security alerts and events and conduct detailed root cause investigations. The analyst will work closely with other SOC personnel, forensics, incident response, and engineering partners to mitigate a wide variety of threats and malicious activity.

Career Level – IC4

Description

• Support shifts and on call rotations
• Detect and respond to security events and threats from alerting, escalations, and other sources
• Lead complex investigations and conduct deep analysis of security events focused on rapid containment, remediation, and mitigation
• Work closely with security engineering teams to improve monitoring, detection, and tooling
• Understand the threat landscape, emerging trends, and incorporate this understanding into day-to-day security monitoring
• Operate SOC technologies, including but not limited to a Security Information Event Management (SIEM) platform,Intrusion Detection Systems (IDS), SOAR, Firewalls, Anti-Malware solutions, and insider threat tooling
• Assist with security incident response activities
• Prepare assigned reports for the SOC manager
• Provide high quality written and verbal reports as required
• Actively monitor and respond the SIEM alert queue and triage alerts
• Investigate alerts using standard operating procedures
• Monitor several screens, systems, and alerts simultaneously
• This role is open to Singaporeans only
• Must meet eligibility requirements for obtaining and maintaining a Singapore government security clearance.
• This role will involve the successful applicant working on government projects which may require security clearance being obtained and maintained as a condition of employment. Candidates applying for this role must be willing to provide necessary personal details for the application and maintenance of necessary security clearance.
  
  
  

• 8+ years of Incident Response, Security Operations Center, and/or Forensic Analyst experience
• Comfortable working in an ambiguous, fast-paced, unpredictable environment
• Experience working in a highly collaborative, team centric, event driven operations team
• Experience with querying across large data sets to understand complicated and difficult to solve problems
• Strong attention to detail
• Experience in one or more of the following fields of work: National security, military, intelligence, law enforcement, criminology, and/or foreign areas and language
• Experience with variety of operating systems and threats that target them including Windows, UNIX/LINUX, and MacOS
• Experience performing open source research on a variety of topics
• Excellent verbal/non-verbal communication skills with proficient ability to deliver technical information to non-technical staff
  
  
  

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries IT Services and IT Consulting

Referrals increase your chances of interviewing at Oracle by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.