Assistant Vice President, Senior SOC Analyst, Security Operations

Job Responsibilities

Lead proactive hunting and analysis against the dataset (e.g., alerts, logs, etc.) and reverse engineering as needed to support Security Operation Centre (SOC) investigations and proactive threat detection and prevention.

Coordinate and facilitate in-depth analysis, trending, and root cause analysis of security events / incidents while creating and maintaining processes and procedures.

Perform advanced research on threats, vulnerabilities and potential threat vectors and work with multi-disciplines to improve prevention and detection methods.

Act as the technical subject-matter-expert for SOC related topics or during incidents.

Develop and document the SOC procedures and processes based on industry best practices and internal requirements.

Support or lead projects to improve SOC effectiveness, advancing technical capabilities on pace with the latest threats.

Support and integrate with incident response, threat intelligence, and overall security strategy as needed.

Perform other essential duties as assigned.

Job Requirements

Bachelor’s degree in IT or equivalent with a minimum of 5 years of working experience and has 3 years of experience leading a SOC team.

Strong knowledge in networking / major internet protocols and security concepts.

Minimum 3 years of experience in cyber incident response and / or Security Operations center in an enterprise environment.

Minimum 2 years of experience with standard enterprise security tools (e.g., Database Activity Monitoring, Zero Trust Segmentation, Security Information & Event Management, Intrusion Detection Prevention System, Endpoint Detection & Response, etc).

Minimum 2 years of operational experience with Splunk or similar log aggregation / analysis platforms.

Expert execution of investigative concepts for escalated incidents to determine the impact and root cause.

Strong foundation in security threat and attack countermeasures.

Possess analytical and problem-solving skills, with the ability to manage multiple tasks in a fast-paced environment.

Hands-on experience in SIEM and intrusion detection analysis as well as application layer protocols.

Experience in security-related areas, especially in security incident detection and threat intelligence.

Advanced understanding of various operating systems and web technologies; professional security certifications would be a plus.

Experience in multiple domains within IT or Information Security (e.g., Identity and access management, IT infrastructure operations, Key management, system administration, etc.).

Meticulous, team player, flexible, proactive, and with a positive attitude.

Strong sense of responsibility and initiative.

Excellent communication and interpersonal skills.

Work Location : One@ChangiCity

J-18808-Ljbffr