Enable job alerts via email!
Cyber Security Defensive Analyst
SAGL CONSULTING PTE. LTD.
Singapore
On-site
SGD 70,000 - 100,000
Full time
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A leading consulting firm in Singapore is seeking a Cyber Security Defensive Analyst. The role requires expertise in Threat Hunting and Threat Intelligence, focused on detecting and responding to advanced threats. Responsibilities include conducting threat hunting, developing SIEM use cases, and mentoring junior analysts. Candidates should possess strong analytical and communication skills, with proficiency in SIEM and EDR tools. Basic Mandarin understanding is advantageous. Join a dynamic team in a 24/7 global cyber defense function.
Qualifications
- Strong hands-on experience in Threat Hunting and Threat Intelligence (endpoint + network).
- Strong understanding of attack lifecycle, common attack vectors, tools, and techniques.
- Ability to analyze large data sets to detect anomalies, IOAs, and TTPs.
- Basic understanding of Mandarin is preferred but not mandatory.
Responsibilities
- Conduct threat hunting across endpoint and network data to identify anomalies, IOAs, and TTPs.
- Develop and maintain detection/prevention use cases in SIEM and EDR.
- Perform triage and technical analysis of alerts, determining scope and remediation actions.
- Leverage threat intelligence feeds to enrich investigations.
- Provide clear reports and updates to stakeholders during incidents.
- Mentor junior analysts in threat hunting and incident response practices.
Skills
Tools
We are looking for a Cyber Security Defensive Analyst with strong expertise in Threat Hunting and Threat Intelligence. You will be responsible for detecting, analyzing, and responding to advanced threats using SIEM and EDR tools, while supporting incident response and proactive defense operations. This role is part of a 24/7 global cyber defense function and requires strong technical, analytical, and communication skills.
- Conduct threat hunting across endpoint and network data to identify anomalies, IOAs, and TTPs.
- Develop and maintain detection/prevention use cases in SIEM (Splunk ES) and EDR (CrowdStrike).
- Perform triage and technical analysis of alerts, determining scope and remediation actions.
- Leverage threat intelligence feeds (OSINT and premium sources) to enrich investigations.
- Provide clear reports and updates to stakeholders during incidents.
- Mentor junior analysts in threat hunting and incident response practices.
- Strong hands-on experience in Threat Hunting and Threat Intelligence (endpoint + network).
- Proficient with SIEM (Splunk ES) and EDR (CrowdStrike).
- Strong understanding of attack lifecycle, common attack vectors, tools, and techniques.
- Ability to analyze large data sets to detect anomalies, IOAs, and TTPs.
- Excellent report writing and communication skills (English).
- Basic understanding of Mandarin is preferred but not mandatory (to support stakeholders in the region).
- Experience with AI/ML in threat hunting.
- Exposure to OT/ICS and Cloud security environments.
- Experience with threat intelligence platforms and premium intel feeds.
- Relevant certifications (CISSP, GCIH, or similar).
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
