soc analyst lead

4 weeks ago

Singapore INFINITY CYBERSEC PTE. LTD. Full time
Roles & Responsibilities

Job Overview

We seek an L2 SOC Lead with active threat hunting, incident response, and team leadership experience to manage a 5-8 member SOC team serving government and critical infrastructure sectors. Operating in 24/7 shifts, you will perform advanced triage, conduct forensic investigations, front client engagements, and maintain active cyber community involvement for real-time threat intelligence. This role requires SC clearance and deep expertise in GovTech IM8/CSA requirements.

Duties and Responsibilities

Threat Operations Leadership:

1. Lead daily shift operations with accountability for incident SLA adherence (MTTR < 15 mins for P1 cases).

2. Mentor L1 analysts in alert validation, triage techniques, and playbook execution.

3. Conduct purple team exercises quarterly to validate detection capabilities.

Advanced Security Operations:

1. Perform deep-dive investigations (memory/disk forensics, malware analysis) using tools:

2. EDR (CrowdStrike/SentinelOne)

3. SIEM (Splunk ES/QRadar with SOAR integration)

4. Network analysis (Wireshark, Corelight)

5. Lead proactive threat hunts using MITRE ATT&CK frameworks and threat intelligence.

6. Develop custom detection rules (YARA, Sigma) for APT groups targeting SEA.

Client & Governance:

1. Front incident response briefings for customers & stakeholders

2. Present monthly SOC reports to clients (threat trends, gap analysis, KPIs).

3. Ensure compliance with IM8, NIST 800-53, and CSA Cybersecurity Act.

Threat Intelligence Integration:

Maintain participation in:

1. ASEAN CERT communities

2. Threat intel platforms (MISP, ThreatConnect)

3. Industry groups (ISC2 Singapore, ACSC Partnership Program)

4. Disseminate actionable IOCs to team during shifts.

Requirements

Technical Competencies

Must-Have Tools Expertise:

1. Incident Response - Velociraptor, Autopsy, SIFT Workstation

2. Threat Hunting - Atomic Red Team, Kestrel analytics, ELK stack

3. Forensics - Volatility, Rekall, FTK Imager

4. CTI Management - MISP taxonomies, STIX/TAXII feeds, OpenCTI

Certifications:

1. Required: CISSP, GCIH/GCFA, SC Security Clearance

Leadership & Experience

1. 5+ years in SOC roles with 2+ years leading teams in 24/7 environments.

2. Proven track record:

3. Managed ≥200 critical incidents annually

4. Reduced false positives by ≥40% through detection engineering

5. Led threat hunts uncovering ≥3 advanced persistent threats

6. Government project experience (IM8, CSA Cyber Essentials, or equivalent).

Shift & Engagement Requirements

1. Willingness for 12-hour rotational shifts (including nights/weekends).

2. Monthly presentation of SOC reports to client CISOs.

3. Quarterly threat briefings at events (e.g., GovWare, Cyber Security ASEAN).

Tell employers what skills you have

Security Clearance
Information Security
Leadership
Security Operations
Wireshark
Cyber Security
Investigation
Targeting
Compliance
Team Leadership
Accountability
Threat Intelligence
APT
Network Security
CISSP
Malware Analysis

  • L2 SOC Analyst Lead

    3 days ago

    Singapore Monster SG Pte Limited Full time

    Roles & Responsibilities We are seeking a seasoned Level 2 SOC Analyst Lead to spearhead threat operations, mentor junior analysts, and drive advanced investigations within a high-stakes 24/7 Security Operations Center. You will be responsible for incident response leadership, threat hunting, forensic analysis, and client governance, while ensuring...

  • SOC Analyst

    1 week ago

    Singapore CYBEROWL PTE. LTD. Full time

    We're CyberOwl, a dynamic venture capital backed start-up that operates globally with colleagues based in the UK, Greece, Singapore, Malaysia, Poland and Portugal. CyberOwl helps maritime and CNI asset operators gain visibility, cybersecurity and compliance of systems on their distributed, remote assets. We work with ship owners and managers where our...

  • L2 SOC Analyst Lead

    4 weeks ago

    Singapore PERCEPT SOLUTIONS PTE. LTD. Full time

    Roles & ResponsibilitiesWe are seeking a seasoned Level 2 SOC Analyst Lead to spearhead threat operations, mentor junior analysts, and drive advanced investigations within a high-stakes 24/7 Security Operations Center. You will be responsible for incident response leadership, threat hunting, forensic analysis, and client governance, while ensuring alignment...

  • SOC Analyst

    1 week ago

    Singapore ITCAN Full time

    **SOC** **Analyst** To perform threat monitoring, advance triage, incident response, and follow up on customer query - Monitor, review and profile the events. - Assess each event based on factual information and wider contextual information available - Produce reports to provide an accurate depiction of the current threat landscape and associated risk. -...

  • SOC Analyst

    2 days ago

    Singapore OX Consultancy Full time

    job Title:SOC Analyst L2: (10+ Yrs of exp) Location:Singapore/Onsite job Title :SOC Analyst L2: (10+ Yrs of exp) The primary function of an L2 Analyst is to ensure that the SOC team is performing its Items functions as required and to trouble shoot problematic incidents and events. In summary, the L2 Analyst shall also act as the technical...

  • SOC Analyst

    20 hours ago

    Singapore NCS Full time

    **SOC Analyst**: **Date**:14 May 2025 **Location**: Singapore, Singapore **Company**:Singtel Group NCS is the leading technology services firm that operates across the Asia Pacific region in over 20 cities, providing consulting, digital services, technology solutions, and more. We believe in harnessing the power of technology to achieve extraordinary...

  • SOC Analyst

    2 weeks ago

    Singapore Snow Software Full time

    **Job Description**: The SOC Analyst is responsible for monitoring and responding to the security events and risks of the business and documenting their research, triage, and mitigation efforts. They are expected to assess the effectiveness of detections, risk management controls, and policies used to prevent security threats. They are involved in the...

  • Immediate Hires

    6 days ago

    Singapore Hays Full time

    SOC Analyst Hays Technology is looking for a SOC Analyst to help our client perform monitoring and review new cases for emerging threats - Performing analysis on suspicious files - Perform complex data analysis in support of security event management - Participate Incident Response that includes root cause - Identify opportunities to improve process to...

  • SOC Analyst

    1 week ago

    Singapore NCS Full time

    **SOC Analyst**: **Date**:17 Dec 2024 **Location**: Singapore, Singapore **Company**:Singtel Group NCS is a leading technology services firm that operates across the Asia Pacific region in over 20 cities, providing consulting, digital services, technology solutions, and more. We believe in harnessing the power of technology to achieve extraordinary...

  • SOC Analyst

    2 weeks ago

    Singapore Fastly Full time

    We're building a more trustworthy Internet. Come join us. **SOC Analyst** Leveraging our growing security product suite, a SOC Analyst contributes real world security insights to Fastly and our customers as we address Internet-scale threats. Cloud security solutions enable our customers to benefit from extra visibility across the world and expertise from a...