Security Operations

Liquid Group is a FinTech payments services group based in Singapore. Liquid empowers and connects businesses and individuals to make transactions in a smart, secure and cost-effective way, anywhere in the world.

We operate a regional payment network to enable cross-border QR payment services for e-wallet operators, banks, and merchants. We also provide white-label solutions to accelerate the development and adoption of mobile payments for our business partners.

We work in a collaborative and adaptive way, exploring innovative ideas and solving challenging problems to develop our products. Together, we ensure efficiency, security, and convenience for our partners and customers.

Website: www.liquidgroup.sg

We are seeking a Security & SOC Analyst (SecOps) to support security monitoring, incident response, cloud security operations, vulnerability management, and compliance activities across our AWS-based platforms. This role plays a critical part in threat detection, investigation, regulatory compliance, and coordination with Cloud Operations, Engineering teams, and external security vendors. The ideal candidate is hands-on, detail-oriented, and comfortable working in a fast-paced production environment.

Key Responsibilities

SOC Operations & Incident Response

• Monitor security alerts and events using SIEM, EDR, and security monitoring tools
• Perform alert triage, investigation, containment, and incident response
• Escalate confirmed incidents to Security Engineering / Infrastructure Leadership with clear evidence and impact analysis
• Participate in incident bridges, post-incident reviews, and security reporting
• Maintain incident timelines, evidence collection, and response documentation
• Support continuous improvement of SOC workflows, alert tuning, and response playbooks

AWS Security Operations

• Monitor and support security controls across AWS environments
• Review and respond to findings from AWS Security Hub, Amazon GuardDuty, AWS CloudTrail, and
• IAM Access Analyzer
• Assist with IAM access reviews, privilege management, and policy enforcement (least privilege)
• Support encryption and key management using AWS KMS, key rotation, and secure configurations
• Work with Cloud Ops / DevOps teams to remediate AWS security findings and reduce risk exposure
• Support logging and audit readiness across AWS accounts and services

Vulnerability Management

• Support vulnerability scanning, tracking, prioritization, and remediation validation
• Coordinate with infrastructure, application, and vendor teams on vulnerability fixes
• Track risk acceptance, exceptions, remediation SLAs, and closure reporting
• Assist with patch management tracking and verification across systems and cloud services

Compliance & VPAT Support

• Support VPAT (Voluntary Product Accessibility Template) assessments and evidence collection
• Assist with security and compliance questionnaires, audits, and customer due diligence requests• Support regulatory and certification requirements such as PCI DSS, SOC 2, ISO 27001, and MAS
• Maintain compliance documentation, evidence repositories, audit trails, and control mapping

Security Operations & Governance

• Support implementation and enforcement of security policies, standards, and procedures
• Assist with third-party risk assessments and vendor security reviews
• Maintain security dashboards, operational metrics, and reporting (weekly/monthly)
• Promote security awareness and operational best practices across teams

Key Requirements

• 3–6 years of experience in SOC, Security Operations, or Cloud Security roles
• Hands-on experience with AWS security services and cloud security operations
• Experience working in a SOC or 24/7 monitoring environment
• Strong understanding of incident response lifecycle and security fundamentals (network security, IAM,
• logging, threat detection)
• Familiarity with compliance frameworks such as PCI DSS, SOC 2, ISO 27001, MAS
• Experience supporting VPAT or accessibility/security assessments and evidence collection
• Strong analytical skills with good documentation and communication abilities
• Ability to coordinate across multiple teams during incidents and investigations

Nice to Have / Certifications (Added Advantage)

• AWS Certified Security – Specialty
• AWS Certified Solutions Architect / AWS SysOps Administrator
• Security certifications: CompTIA Security+, GCIH / GCED, or equivalent
• Experience with SIEM tools such as Splunk, OpenSearch, Microsoft