SOC Analysts / DFIR Analysts / SOC Engineer

Our client is hiring across SOC Analysts, SOC Engineers, DFIR Analysts, DFIR Engineers and Threat Intel.

Position 1: SOC Analysts/Engineers

Key Responsibilities:

1. Security Monitoring: Utilize SIEM tools (e.g., Splunk, LogRhythm, QRadar) for real-time monitoring, event analysis, and threat detection.
2. Email Security: Investigate and assess the security of email traffic using platforms like MS O365 or similar solutions.
3. Malware Analysis: Evaluate suspicious files for malicious activity and manage the response to malware incidents.
4. Rule Development: Create and refine detection rules to enhance threat identification and response accuracy.

Requirements for SOC Engineer:

1. Education: Degree in Computer Science, Information Security, or related field.
2. Experience: At least 3 years in IT Security Operations with practical experience in SIEM tools and threat detection.
3. Skills: Hands-on experience with SIEM platforms (e.g., Splunk, QRadar, LogRhythm) and email security tools.
4. Strong understanding of malware analysis and detection rule creation.
5. Certifications: CEH, CISSP, or equivalent certifications are advantageous.
6. Regulatory Knowledge: Familiarity with the Cybersecurity Act 2018, Cybersecurity Code of Practice, and MAS guidelines is a plus.

Position 2: DFIR Analysts/Engineers

Key Responsibilities:

1. Threat Hunting: Conduct proactive searches for indicators of compromise (IoCs) to uncover potential cyber threats.
2. Incident Response & Forensics: Lead tier 2/3 incident investigations, perform forensics on affected devices, and manage evidence preservation.
3. Vulnerability Management: Assess vulnerabilities, collaborate with IT teams for remediation, and ensure effective patching.
4. Reporting & Analysis: Compile detailed reports on incidents, providing root cause analysis and security recommendations.

Requirements for DFIR Engineer:

1. Education: Degree in Computer Science, Information Security, or related field.
2. Experience: Minimum 5 years in security operations, with at least 2 years specializing in incident response and digital forensics.
3. Skills: Expertise in digital forensics, incident response procedures, and vulnerability management.
4. In-depth knowledge of threat hunting techniques and evidence handling.
5. Certifications: CEH, CISSP, GCIH, or similar certifications are beneficial.
6. Regulatory Knowledge: Familiarity with Cybersecurity Act 2018, Cybersecurity Code of Practice, and MAS guidelines is preferred.

Please contact Sheralynn Tjioe at SheralynnT@charterhouse.com.sg for a confidential discussion.

EA License no: 16S8066 | Reg no.: R1878306

Only successful candidates will be notified.