SOC Incident Response Manager (DSC/JH) - #1131631

This is a role whereby the candidate will advise and uplift the security operations together with his/her colleagues in Managed Security Services. This person will have the opportunity to work on technology & processes with a global reach and is an integral part of the security operations that the company uses to protect its data and intellectual property.

To be successful, you will need to have the relevant skillset and aptitude to understand and support our complex systems and processes that enable the delivery of our world-class services. This position also requires the ability to work with a variety of different groups, communicate effectively via electronically and in person, drive a problem to resolution and know when to escalate and seek assistance, work independently and as part of a team, have a keen attention to detail and follow through on work items. The candidate is also required to show strong resiliency and willing to roll up his/her sleeves and be hands-on when it comes to security operations.

Responsibilities:

• Review, identify, address and uplift the capability of Managed Security Services when it comes to intrusion detection in depth, threat hunting, incident response management and digital forensics, including malware analysis.

• Oversee, advise and have the ability to enhance existing (or develop new) use-cases to provide enhance intrusion detection in depth using the MITRE ATT&CK framework, including playbooks for SOAR, and to perform proactive threat hunting with reference to the evolving threat environment.

• Ability to hunt, identify, counter and recover from a wide range of threats within enterprise/operational technology network, including APT nation-state adversaries and ransomware operator.

• Ability to coordinate, front and perform threat hunting, function as a incident response lead and perform digital forensics, including malware analysis

Requirements / Qualifications:

• At least three years of relevant experience

• Possesses relevant professional certifications

• Working experience with SIEM, SOAR and ticketing system

• Strong problem resolution, judgement and decision-making skills

• Fosters proactive and cooperative relationships within own team and other individuals/groups that interface with the team.

• Excellent interpersonal and group dynamic skills.

• Highly developed analytical and problem-solving skills.

• Ability to deal with the ambiguity associated with working in a fast paced and changing environment

• Excellent written and oral communication skills.

• Resourceful, take initiatives and ownership at work, and ability to work without supervision, taking personal responsibilities and accountability

Work Location: Ang Mo Kio