Enable job alerts via email!
Senior SOC Analyst
Good Job Creations (Singapore) Pte Ltd
Singapore
On-site
SGD 90,000 - 130,000
Full time
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A leading cybersecurity company in Singapore is seeking an experienced candidate to specialize in detection engineering. The role requires strong expertise in designing detection rules, threat hunting across hybrid environments, and leading incident responses. Ideal candidates will have 8–10 years in SOC/MSSP settings and deep knowledge of various SIEM and EDR platforms. Suitable candidates will excel in communication and possess a SANS certification. This opportunity promises a dynamic work environment and the chance to engage with clients.
Qualifications
- 8–10+ years in SOC/MSSP environments with deep expertise in SIEM and EDR.
- Hands‑on experience with SOAR platforms and scripting (shell, Python).
- Strong grasp of threat detection and cyber TTPs.
Responsibilities
- Design and fine-tune detection rules across various platforms.
- Proactively hunt for threats across hybrid environments.
- Lead investigations during security incidents.
Skills
Education
Tools
[Job ID:1020861]
- Design and fine-tune high-fidelity detection rules across SIEMs (Splunk, Sentinel, Devo, QRadar) and EDR platforms.
- Build custom use cases based on MITRE ATT&CK and red team insights.
- Eliminate false positives, improve alert accuracy, and continuously optimize detection logic.
- Collaborate with red/purple teams to validate and evolve detection strategies.
- Proactively hunt for threats across hybrid environments using telemetry from SIEM, EDR, and NDR tools.
- Leverage threat intelligence and frameworks (MITRE, Diamond Model) to build and execute targeted hunting campaigns.
- Analyze and operationalize threat intel to inform detection rules and incident response.
- Lead end-to-end investigations—from triage to recovery—during security incidents.
- Conduct forensic analysis and produce detailed reports with root cause and mitigation plans.
- Develop playbooks, runbooks, and coordinate across teams and clients during major events.
- Mentor junior analysts and contribute to process automation and SOP development.
- Engage with customers through regular reviews, briefings, and incident updates.
- Drive continuous improvement through lessons learned, threat trends, and feedback loops.
- 8–10+ years in SOC/MSSP environments with deep SIEM (Splunk, QRadar, Sentinel, Devo) and EDR (CrowdStrike, Defender) expertise.
- Hands‑on experience with SOAR platforms, malware analysis, scripting (shell, Python), and basic Unix/Linux troubleshooting.
- Strong grasp of threat detection, cyber TTPs, and frameworks like MITRE ATT&CK.
- Excellent communication skills and the ability to lead cross‑functional collaboration.
- SANS certification (e.g., GCIH) strongly preferred.
- Experience with threat hunting, vulnerability assessments, or DFIR.
- Familiarity with cloud platforms (AWS, Azure, GCP) and network security tools.
- Exposure to threat intel platforms like MISP.
We regret that only shortlisted candidates will be notified. However, rest assured that all applications will be updated to our resume bank for future opportunities.
Please kindly refer to the Privacy Policy of Good Job Creations for your reference: https://goodjobcreations.com.sg/en/privacy-policy/
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
