#NEW#Security Engineer – Malware Defense - 12 Months

Hours/Shift: Sat–Wed OR Wed–Sun | 8:00 am – 4:00 pm SGT

Our client is a leading global financial institution committed to strong cyber defense, safeguarding operations and protecting clients’ trust worldwide. Our Malware Defense Team is looking for talented Security Engineers to join one of the most advanced cybersecurity teams in the industry.

What You’ll Do

• Respond, triage, and adapt to real‑time malware threats targeting the organization.
• Perform static, dynamic, and behavioral analysis of malicious software and potential indicators of compromise (IoCs).
• Maintain detailed documentation and produce comprehensive analysis reports with observations, actions, and recommendations.
• Identify cyber risks and contribute to improving controls and detection mechanisms.
• Collaborate with response teams to defend against emerging threats and participate in Incident Response efforts.

• Mid‑level security professional with 3–5 years of experience in malware analysis, incident response, or threat prevention.
• Hands‑on experience in triaging detections, prioritizing threats, static/dynamic malware analysis, identifying security gaps and implementing preventative measures.
• Strong investigative mindset with the ability to drive process improvements and control enhancements.

• Understanding of browser exploitation techniques.
• Familiarity with web technologies (JavaScript, HTML) and their abuse by threat actors.
• Experience analyzing Email Headers and detecting phishing or other email threats.
• SIEM experience, including event correlation and searching.
• Familiarity with dynamic analysis tools (Process Monitor, FakeDNS, Regshot, Wireshark).
• Ability to interpret malware analysis results from sandbox technologies and maintain virtualized sandbox environments.
• Experience with URL categorization and analysis tools (Fiddler, web proxy, commercial sandbox).
• Ability to assess files or URLs and extract IoCs (malicious domains, IPs, file hashes).
• Knowledge of Endpoint Detection and Response (EDR) tools and forensic artifacts (Browser, Registry, Event Logs).
• Strong documentation and communication skills for both technical and non‑technical audiences.

• 3+ years conducting end‑to‑end malware analysis for Email, Web, or Endpoint.
• Incident response experience with commercial tools.
• Digital forensics experience.
• Knowledge of major cloud providers (AWS, GCP, Azure).
• Scripting or automation experience.
• Experience conducting interviews with an investigative mindset.

Please reach out to co.co@ambition.com.sg with your updated resume and contact details. Incomplete applications may not be considered /Only shortlisted candidates will be contacted.

Business Registration Number: 200611680D | Licence Number: 10C5117 | EA Registration Number: R1768258