IT (Remote) Senior SOC Analyst (Mandarin Speaker) SG
Singapore, Singapore, Singapore - Remote
Applications have closed
ZFX
Trade forex, currencies, gold, oil, indices, stocks, cryptocurrencies on MT4 online trading platforms with ZFX, an FSA licensed forex brokerPrincipal Accountabilities :
- Security events monitoring tools administration
- Participation in security incident investigations
- Proactive detection of anomalous activity and security incidents in IT infrastructure
- Participation in the vulnerability discovery process (scanning, analysis of discovered vulnerabilities)
- New security monitoring tools research and development
- Installation support and content development (dashboards, alerting, etc) for Elastic Infrastructure
- Participation in Security team’s project activities
- Conducting periodic tests/exercises to respond on security incidents
- Connection to the SOC’s tools of new log sources, the development of the necessary processes and instructions for Cloud infrastructure
- Operational reporting on suspicious activity
- Develop in cooperation with other teams alerts, rules and monitoring automation solutions
- Automation of alerts
- Deliver SOC and SIEM solutions
- Participate actively and support company security driven projects and initiatives in terms of Security monitoring and automation
- Create best practices for SOC tools in terms of their implementation across all IT functions, setup and support security quantitative KPIs in terms of Security monitoring and awareness of activities
- Continuous improvement of Security events monitoring
- Budget management in terms of SOC field of responsibility within Information Security function
- Vendor assessment and comparison
- Contribute to the management of the Security tools development direction and roadmap of security tools, investigate technologies, run proof of concepts and testing
- Build and manage the on boarding of new security tools to SIEM (Security Incident & Event Management), infrastructure processes and SOC (Security Operations Centre)
- Support for internal documentation (standards, manuals, descriptions, etc.)
Requirements
- 3+ years of working experience on the same functional level
- Solid technical and knowledge in Information Security
- Expert knowledge and expertise with SIEM systems at the administrator level
- Python programming skills
- Knowledge in the area of modern techniques for exploiting the vulnerabilities of applications, information systems and networks
- ITIL knowledge (change control process, change management, problem/incident management, procedures, guidelines, etc)
- Understanding of the methods, techniques and procedures used at different stages of the development of complex attacks
- Understanding network security
- Information security principles for business applications practical knowledge is a plus
- Experience and skills in Unix and Windows administration, basic system utilities and functions
- Strong skills and experience with such data formats as Syslog, XML, JSON
- Team player with energy and a desire to progress in a fast moving, demanding and progressive environment
- Project management skills, vendor management
- Ability to thrive under stressful situations
- Strong knowledge in building correlations with such information security tools and systems (for understanding logs and building correlations) like: Antivirus, Endpoint detection and response, Firewalls, Vulnerability scans, Remote access technology, VPN gateways, Cloud infrastructure.
- Expert knowledge in identification and evaluation of indicators of compromise (IOC) associated with malicious code and malware
- Ability to work with several tasks at the same time
- Team player with energy and a desire to progress in a fast moving, demanding and progressive environment
- Project management skills, vendor management
- Ability to thrive under stressful situations
- English and Mandarin language proficiency is a MUST
Benefits
- Medical Benefit
- Optical Benefit
- Life Insurance
- Quarterly Performance Bonus
- Work From Home (Wednesdays)
- Work From Home / Anywhere Policy (T&C applies)
- Remote Working (based on HOD approval)
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Antivirus Automation C Cloud EDR Firewalls ITIL IT infrastructure JSON KPIs Malware Monitoring Network security Python SIEM SOC UNIX Vendor management VPN Vulnerabilities Vulnerability scans Windows XML
Perks/benefits: Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Chief Information Security Officer jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open IT Security Engineer jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open CI/CD-related jobs