SOC Manager/ Assistant Manager

Netpluz is a one-stop managed communications service provider for businesses. We deliver reliable, high-performance communications services for your business’s data, voice, video, cybersecurity, mobility and analytics needs.

Our young brand was incorporated in 2015, but our team has been pioneering network communications technologies in Singapore for the last twenty years, and making waves in leading some of the biggest names in the Information and Communications Technology industry to date.

We are a modern, highly-experienced and rapidly-growing brand in the ICT industry. Today, Netpluz provides managed data, voice, video, cybersecurity, mobility and analytics solutions to over 2,000 clients who trust us for our integrity, reliability and uncompromising service standards.

Job Summary:

The SOC Assistant Manager / Manager is responsible for leading and managing the day-to-day operations of the Security Operations Centre. This role oversees security monitoring, incident detection and response, threat intelligence integration, and ensures continuous protection of customer’s systems. The candidate will work closely with internal cybersecurity teams, platform providers, and stakeholders to maintain a resilient security posture and drive operational excellence.

Key Responsibilities:

· Oversee 24x7 SOC operations, ensuring efficient monitoring, detection, triage, and response to security incidents.

· Lead and mentor a team of SOC analysts and incident responders, ensuring alignment with security policies and processes.

· Manage and continuously improve SOC workflows, playbooks, and standard operating procedures (SOPs).

· Coordinate incident handling across internal teams and customers; lead response to high-severity incidents.

· Conduct root cause analysis and post-incident reviews; develop lessons learned and follow-up remediation plans.

· Monitor key SOC metrics (MTTD, MTTR, alert volume, SLA compliance) and report regularly to senior leadership.

· Maintain and enhance use cases, detection rules, and SIEM content for improved threat coverage.

· Integrate threat intelligence feeds and adapt monitoring to emerging threats and vulnerabilities.

· Support onboarding of new customer’s log sources, assets, and systems into the monitoring scope.

Requirements:

· Bachelor’s degree in Information Security, Computer Science, or a related field.

· 3 – 5 years of experience in cybersecurity operations, with at least 2 years in a supervisory or management role.

· Strong understanding of SIEM platforms, EDR, IDS/IPS, and other monitoring tools.

· Experience with incident response frameworks (e.g., NIST 800-61) and handling real-world security incidents.

· Familiarity with MITRE ATT&CK framework, threat modelling, and use-case development.

· Excellent leadership, communication, and decision-making skills.

· Ability to manage shift teams and maintain operational readiness.

Preferred Qualifications:

· Industry certifications: CISSP, CISM, GCIA, GCIH, CREST, CEH or equivalent.

· Experience with SOAR platforms and automation playbooks.

· Knowledge of data privacy regulations (e.g., GDPR, PDPA) and audit requirements.

Benefits

· mobile allowance: S$25/month (Claimable)