Regional Security Support Engineer

The Security Operation Support Engineer is responsible for overseeing daily security operations, monitoring security systems, and analyzing events to detect potential threats. The role leads the full incident response process, including detection, analysis, containment, eradication, recovery, root cause analysis, and post-incident reporting. The engineer also manages security vulnerabilities, collaborates with teams to implement solutions, evaluates security tools and practices, enforces security policies, conducts security awareness training, and ensures compliance with industry standards. Additionally, the role involves mentoring IT and security teams, maintaining comprehensive documentation, and preparing regular operational reports.

Role & Responsibilities

• Involve in daily security operations, continuously monitor various security systems, including SOC, AV, EDR, ITD, Endpoint security, IDS/IPS, SIEM and other security technologies, analyse security events and incidents to identify potential threats and vulnerabilities.
• Lead the detection, analysis, containment, eradication and recovery efforts for security incidents. Perform root cause analysis and post incident reporting.
• Taking part in leading security operation on security notice response, managing vulnerability notice, involve in assessments and penetration testing whenever is needed.
• Identifying and managing security weakness in the organization’s systems and networks. Works with system and application and operation teams and the vendor to prioritize and address these vulnerabilities. Evaluate and implement security tools, processes, and best practices to improve overall security posture.
• Managing and maintaining security tools and technologies, recommends of security practices to the system, network and application teams to ensure that the tools, the system, network and the applications are properly setup and configured and updated to mitigate potential risks.
• Enforces security policies and procedures across the organization, to ensure that employees follow security best practices, conduct security awareness training programs, and ensure compliance with relevant security requirements and standards.
• Stay updated on the latest cybersecurity with external security organizations to proactively defend against emerging threats.
• Ensure compliance with industry standards and regulation, e.g., ISM, ISO, SOX, NIST,GDPR, etc.
• Guide and mentor the IT and security operation teams, providing knowledge sharing and training session when needed.
• Maintain detailed documentation or security process and procedure, incident records, investigation reports, and remediation efforts. Prepare regular reports for management and stakeholders to communicate the organization’s security posture and any ongoing security issues or concerns.

Job Requirements

• Bachelor’s degree in computer science, Information Technology, or a related field preferred.
• Min 5 years’ experience in security operation role.
• Proven experience in leading and managing security incidents.
• Experience within security workforce, security operations, or any IT security exposures.
• Familiar with SIEM tools, such as LogRhythm, Microsoft Defender, and common tools like Antivirus, EDR, Monitoring, etc.
• Strong understanding of common cyber-attack techniques.
• Excellent communication skills, able to communicate technical information effectively to both technical and non-technical audiences.
• Able to work collaboratively in a team environment, and independently when necessary.
• Relevant certification a plus, e.g., Azure Security, ISC, GCIA/IH, OSCP.

Ideal candidate profile:

• Attention to Detail: This role requires meticulous attention to detail to identify potential threats and vulnerabilities in security systems.
• Strong Communication Skills: Effective communication is crucial for coordinating with various teams and stakeholders.
• Problem-Solving Skills: The ability to analyze security incidents and perform root cause analysis is essential.
• Technical Proficiency: A deep understanding of security technologies and tools, such as SOC, AV, EDR, and SIEM, is necessary.
• Adaptability: The ability to stay updated on the latest cybersecurity trends and adapt to new security challenges.

Employment Type:

• 1 year contract

We regret only shortlisted candidates will be notified.

Huang Zerong (Lucas) | EA License No.: 02C3423 | Personnel Registration No.: R24124779

Please note that your response to this advertisement and communications with us pursuant to this advertisement will constitute informed consent to the collection, use and/or disclosure of personal data by ManpowerGroup Singapore for the purpose of carrying out its business, in compliance with the relevant provisions of the Personal Data Protection Act 2012. To learn more about ManpowerGroup's Global Privacy Policy, please visit https://www.manpower.com.sg/privacy-notice