Enable job alerts via email!
Cyber Security Defensive Analyst
SAGL Consulting
Singapore
On-site
SGD 70,000 - 90,000
Full time
Job summary
A cybersecurity consulting firm in Singapore is seeking a Cyber Security Defensive Analyst to detect and respond to advanced threats. Key responsibilities include threat hunting, developing detection use cases, and mentoring junior analysts. Strong experience in Threat Hunting and Threat Intelligence, along with SIEM and EDR knowledge, is essential. Proficiency in English is required, and basic Mandarin is a plus. Competitive compensation and a collaborative work environment are offered.
Qualifications
- Strong hands-on experience in Threat Hunting and Threat Intelligence.
- Proficient with SIEM (Splunk ES) and EDR (CrowdStrike).
- Strong understanding of attack lifecycle, common attack vectors, tools, and techniques.
- Ability to analyze large data sets.
- Excellent report writing and communication skills in English.
- Basic understanding of Mandarin is preferred.
Responsibilities
- Conduct threat hunting across endpoint and network data.
- Develop and maintain detection/prevention use cases in SIEM and EDR.
- Perform triage and technical analysis of alerts.
- Leverage threat intelligence feeds to enrich investigations.
- Provide clear reports and updates to stakeholders during incidents.
- Mentor junior analysts.
Skills
Tools
We are looking for a Cyber Security Defensive Analyst with strong expertise in Threat Hunting and Threat Intelligence. You will be responsible for detecting, analyzing, and responding to advanced threats using SIEM and EDR tools, while supporting incident response and proactive defense operations. This role is part of a 24/7 global cyber defense function and requires strong technical, analytical, and communication skills.
- Conduct threat hunting across endpoint and network data to identify anomalies, IOAs, and TTPs.
- Develop and maintain detection/prevention use cases in SIEM (Splunk ES) and EDR (CrowdStrike).
- Perform triage and technical analysis of alerts, determining scope and remediation actions.
- Leverage threat intelligence feeds (OSINT and premium sources) to enrich investigations.
- Provide clear reports and updates to stakeholders during incidents.
- Mentor junior analysts in threat hunting and incident response practices.
- Strong hands‑on experience in Threat Hunting and Threat Intelligence (endpoint + network).
- Proficient with SIEM (Splunk ES) and EDR (CrowdStrike).
- Strong understanding of attack lifecycle, common attack vectors, tools, and techniques.
- Ability to analyze large data sets to detect anomalies, IOAs, and TTPs.
- Excellent report writing and communication skills (English).
- Basic understanding of Mandarin is preferred but not mandatory (to support stakeholders in the region).
- Experience with AI/ML in threat hunting.
- Exposure to OT/ICS and Cloud security environments.
- Experience with threat intelligence platforms and premium intel feeds.
- Relevant certifications (CISSP, GCIH, or similar).
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
