Cyber Security Operation Analyst

Avensys is a reputed global IT professional services company headquartered in Singapore. Our service spectrum includes enterprise solution consulting, business intelligence, business process automation and managed services. Given our decade of success we have evolved to become one of the top trusted providers in Singapore and service a client base across banking and financial services, insurance, information technology, healthcare, retail and supply chain.

Job Description:

Working closely with the CIRC threat intelligence team to aid in the enhancement of contextual analysis and providing threat hunting support towards Open Source Intelligence (OSINT) related Indicators of Compromise (IoCs).

• Taking the lead in managing client's end users and stakeholders in providing

cybersecurity incidents updates and other related activities that might arise from time to

time during the incident coordination, remediation and recovery

• Providing duty analyst support for the CIRC operations during weekends, utilizing a pre

defined duty roaster, ensuring the continued operations and monitoring of threats and

triggering alerts 24 by 7, follow the sun model.

• Coordinating projects assigned by the Head of Global Defensive Operations towards the

rollout, implementation and acting as the point of contact for local stakeholders towards the

implementation and coordination of the projects assigned.

• Providing technical inputs towards the virtual teams as assigned by the Head of Global

Defensive Operations towards the operational directions, method determination and other

related administrative support required from time to time.

• Provide guidance and technical support in mentoring and guiding newer members of the

team in technical and incident management skills and processes.

Qualifications

• Degree from a reputable university or significant course work in Computer Science,

Networking, engineering or other computer-related fields of study

• One or more of the following professional certification is beneficial: CISSP, GCIH or similar.

• Experience with Threat Hunting techniques (endpoint and network data)

• Strong understanding of attack lifecycle and common attack vectors, tools and techniques

• Ability to leverage existing data to identify anomalies / IOA / TTP

• Ability to develop / maintain detection/prevention use cases

• SIEM (Splunk ES) and EDR (CrowdStrike) experiences

• Strong report writing and communication skills

• Nice to have:

• Experiences in leveraging AI / ML for Threat Hunting
• Experience with OT / ICS and Cloud environments
• Experience working with threat intelligence platforms and premium intelligence sources/feeds

• Proficient understanding of cyber and IT security risk, threat and prevention measure

• Proficient understanding of networking and network security technologies.

• Good understanding of Forensic tools and methodolgy used in incident response

• Good knowledge of security standards and best practices

• Good understanding of various operating systems

• Good understanding of the Cyber Kill Chain and the ability to display clear analytical skills

• Previous experience in a corporate or enterprise environment, engaging with and

responding to a diverse array of internal stakeholders, including senior management.

• Knowledge of Microsoft Office suite (Word, Excel, PowerPoint and Access)

• Knowledge of Splunk is beneficial

To submit your application, please apply online or email your UPDATED CV in Microsoft Word format to [email protected] Your interest will be treated with strict confidentiality.

CONSULTANT DETAILS:

Consultant Name : Joyce Trieu

Avensys Consulting Pte Ltd

Privacy Statement: Data collected will be used for recruitment purposes only. Personal data provided will be used strictly in accordance with the relevant data protection law and Avensys' privacy policy