Security Operational Engineer
Singapore
ADDX
Private market Investment with lower minimums. ADDX gives investors access to private equity, hedge fund, real estate & other alternative investment choices.
Who are we?Here at ADDX, we believe in a future where everybody can access financial ecosystems easily, fairly, and safely. That is why we’ve built the world’s first fully regulated platform for digital securities, licensed by the Monetary Authority of Singapore.
In 2021, we raised USD 50 million in Series A funding led by Japan Investment Corporation and Development Bank of Japan. Among other esteemed investors, we are backed by Singapore Exchange and Heliconia, a subsidiary of Temasek.
We have gone through a total re-brand and promise this to be an exciting time. An integral part of a fast-growing team enabling investments in unicorns, pre-IPO companies, and hedge funds, your role is to innovate and discover new solutions.
If you believe in a future of fair financial markets, just like we do, we’ve been waiting for you at ADDX.
Who are we looking for?
We are currently seeking a Security Operational Engineer, for ADDX. As part of security team, you will be the blue team expert responsible for monitoring, detection, and response activities with regards to security vulnerabilities, threats, events, and alerts within AWS.
Candidates will architect, implement, and use SIEM solutions to integrate data feeds and create content in a distributed computing environment. The focus of this role is primarily on operational security including security monitoring, email security, endpoint security and security patching.
In 2021, we raised USD 50 million in Series A funding led by Japan Investment Corporation and Development Bank of Japan. Among other esteemed investors, we are backed by Singapore Exchange and Heliconia, a subsidiary of Temasek.
We have gone through a total re-brand and promise this to be an exciting time. An integral part of a fast-growing team enabling investments in unicorns, pre-IPO companies, and hedge funds, your role is to innovate and discover new solutions.
If you believe in a future of fair financial markets, just like we do, we’ve been waiting for you at ADDX.
Who are we looking for?
We are currently seeking a Security Operational Engineer, for ADDX. As part of security team, you will be the blue team expert responsible for monitoring, detection, and response activities with regards to security vulnerabilities, threats, events, and alerts within AWS.
Candidates will architect, implement, and use SIEM solutions to integrate data feeds and create content in a distributed computing environment. The focus of this role is primarily on operational security including security monitoring, email security, endpoint security and security patching.
Responsibilities
- Monitor, analyse, and investigate security logs, events, and alerts from a variety of devices and platforms including but not limited to, SIEM, IDS/IPS, Container Security agents, WAF, OS logs and AWS platform logs, etc.
- Identify gaps in visibility and detection of attacks and malicious events, and work towards SOC maturity trends for AWS.
- Lead projects involving ingestion of new log sources, building content for the SIEM, new rules and filters as needed for improved context, visibility, correlation
- Provide subject matter expertise in security threat analysis, hunting, detection, and response across ADDX’s SaaS cloud environments, build IR run books and automated workflows
- Be part of the Security Incident Response Team (SIRT) activities, helping SIRT to detect, respond, contain, and recover from security incidents in a timely manner
- Good understanding of MITRE ATT&CK matrices, kill chains and other attack models.
- Manage Office365 security policies.
- Email Security and operation
- Simulate phishing campaigns and provide security awareness training.
- End point security
- Security patching
- Risk register security reviews
- Develop security experiments and procedures, and document best practices
- Respond to current or emerging threats and help mitigate damages in regard to product security
- Keep up to date with the latest news and threats in the security industry
Knowledge Requirements
- Bachelor’s degree in related business or technical areas, or an equivalency of education and work experience
- 5+ years of previous experience working in security operations, threat detection, hunt teams, or incident response, triaging cyber security alerts, events, incidents
- Excellent understanding and ability to investigate threat campaign(s) techniques, lateral movements, C&C communications, and indicators of compromise (IOCs)
- At least 3+ years of hands-on experience in a SIEM (a cloud native SIEM preferred) - querying of raw logs, tuning analysis and investigation of alerts, and writing content and correlation rules
- Experience developing operations playbooks, IR run books, security orchestration and automated responses and processes within SOC
- Thorough understanding of the threat and attack landscape in network and web applications, latest security attack vectors, MITRE ATT&CK Framework and Cyber Kill Chain and how they can be used in detection and prevention
- Office 365 security posture experience
- End point security Experience
- Strong interpersonal, oral, and written communication skills
Certification Requirements
- Good to have - CISSP
Tags: AWS Blue team C CISSP Cloud Cyber Kill Chain Endpoint security IDS Incident response IPS MITRE ATT&CK Monitoring Product security SaaS SIEM Threat detection Vulnerabilities
Perks/benefits: Team events
Region:
Asia/Pacific
Country:
Singapore
Job stats:
9
1
0
Category:
Security Engineering Jobs
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Forensics-related jobs
- Open Kubernetes-related jobs