Cybersecurity Engineer (Technology Risk & Blue Team)

dtcpay is a MAS licensed payment service provider that bridges traditional finance and digital assets. We enable businesses to accept and make payments in both fiat and digital currencies, delivering secure, efficient, and seamless payment experiences across borders. As we expand globally, we are shaping the future of digital payments.

We are also recognised as one of Singapore’s Top 10 Startups in the LinkedIn Top Startups 2025 list, a reflection of our momentum and the exciting journey ahead for our team.

We are seeking a proactive Cybersecurity Engineer to serve as the bridge between our external Managed Security Operations Center (MSOC) and our internal technology teams. In this role, you will manage the day‑to‑day collaboration with our MSOC partners and drive the refinement of our response capabilities (SOAR/Playbooks). Uniquely, this role also requires a strong grasp of Technology Risk Management (TRM). You will ensure that our security posture aligns with rigorous regulatory standards across multiple jurisdictions, making you a key player in protecting dtcpay’s infrastructure and reputation.

• MSOC Management & Collaboration: Act as the primary point of contact for the Managed Security Operations Center (MSOC). Monitor their performance against SLAs and ensure seamless communication during security events.
• Threat Triage & Escalation (L2+): Lead the investigation and remediation of Level 2 and above security alerts. Perform deep‑dive analysis on potential cyber threats and manage the escalation process to internal stakeholders and senior management when necessary.
• L1 Oversight: Maintain a deep understanding of Level 1 alert management protocols to ensure the MSOC is effectively filtering noise and identifying genuine precursors to attacks.
• Playbook & SOAR Refinement: Continuously analyse alert trends to refine MSOC playbooks and tune Security Orchestration, Automation, and Response (SOAR) rules. Your goal is to reduce false positives, automate repetitive responses, and decrease Mean Time to Respond (MTTR).
• Incident Management: Coordinate end‑to‑end incident response activities, including containment, eradication, and post‑incident reviews (Root Cause Analysis).

• Risk Framework Implementation: Execute and maintain the Technology Risk Management (TRM) framework, ensuring IT risks are identified, assessed, mitigated, and monitored effectively.
• Control Assessments: Conduct regular risk assessments on critical systems, applications, and third‑party vendors to identify vulnerabilities and control gaps.
• Audit Support: Liaise with internal and external auditors regarding technology risk matters and ensure timely remediation of audit findings.

• Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or a related field.
• 2–3+ years of experience in Cybersecurity Operations, SOC, or Incident Response.
• Hands‑on experience with SIEM tools (e.g., Splunk, Sentinel, QRadar) and SOAR platforms.
• Proven ability to manage and collaborate with external MSSP/MSOC providers.
• Deep understanding of the Cyber Kill Chain and MITRE ATT&CK framework.
• Experience handling L2/L3 incidents and analysing logs/network traffic.
• Solid grounding in Technology Risk Management principles and methodologies (e.g., ISO 27001, NIST).
• Proficiency in both English and Mandarin as you will need to work closely with Chinese vendors.
• The role is based fully onsite, requiring your presence in the office.

• Regional Regulatory Knowledge: Familiarity with Technology Risk Management guidelines and regulatory requirements in Singapore (MAS TRM), Malaysia (BNM RMiT), Hong Kong (HKMA), or Europe (EBA/DORA).
• Data Privacy: Knowledge of or experience implementing controls for PDPA (Singapore) and GDPR (Europe).
• Certifications: Professional certifications such as CEH, CISSP, CISM, CRISC, GCIH, or CompTIA CySA+.

Be careful - Don’t provide your bank or credit card details when applying for jobs. Don’t transfer any money or complete suspicious online surveys. If you see something suspicious, report this job ad.