Security Operations Center (SOC) Analyst

About the role:

As the IT Operations/Security Operations Center (SOC) Analyst, you will be responsible for ensuring the proper administration of our IT systems, building the SOC, responding to security alerts and incidents. You will be reporting to Aspire’s Head of Information Security and will have the exciting opportunity to be part of a fast-growing team of security specialists within the company. Currently there is little need for any on premise administration or physical tasks. We are looking for someone who has experience with cloud environments and Software as a service (SaaS).

What will you be doing? 

• Monitoring and analyzing security logs and alerts to identify potential security incidents.
• Investigating and responding to security incidents and audits in a timely and effective manner.
• Collaborating with IT and other teams to implement security measures and controls to protect against potential threats.
• Participating in incident response and disaster recovery planning and exercises.
• Supporting IT integration operations, including (partly) hardware and software maintenance, backups, and system updates.
• Providing technical support to internal teams and end-users.
• Supporting the security architecture of the SOC tools and other IT technologies.
• Responding, documenting and reporting on security incidents and IT operations.
• Continuously improving IT operations processes and procedures to ensure efficient and secure service delivery.
• Writing user manuals, procedures standard operating procedure (SOPs) and FAQs 
• Supporting and driving other daily IT and security tasks

We would love to get to know you if you have the following: 

Minimum (need to have!):

• Based in ±4 hours to the Singapore timezone (GMT+8) e.g. India, Vietnam, Philippines.
• Good to very good written and spoken English communication skills.
• Studied at a University or polytechnic.
• Experience with triaging of security events, Azure Sentinel, Azure LogAnalytic Workspace, Azure Logic Apps, DataDog SIEM, MS Defender, Python and Jira.
• Experience in memory forensic, malware analysis, network traffic and log analysis.  
• Someone who keeps up-to-date with the latest security trends and technologies to maintain a strong security posture.
• Building, maintaining and operating a SOC.

The ideal candidate should have (optional):

• A degree in Computer Science, IT, Engineering or a related qualification.
• Exposed to AWS, GCloud, GitHub, Okta, Notion and Google Work Space, 1Password, CloudFlare, Azure Logic Apps and malware analysis.
• Retesting of penetration testing findings.
• Worked Linux environments.
• Software development experience e.g. Python, Go, Bash, Powershell.
• Personal electronics or computer science related projects in a personal blog or Github.