Current jobs related to SOC Incident Responder - Singapore - Secur

  • Cyber Incident Responder

    4 days ago

    Singapore Secur Solutions Group Pte Ltd Full time

    Position Purpose APAC Production Security teams are responsible for multiple IT Security activities for BNP Paribas in Asia Pacific region, such as: IT Production Security Governance, PMO & Risks Network Security and Security Design & Architecture Vulnerability & Compliance Management IAM Production Production CSIRT, Detection & SIEM Engineering Production...

  • Cyber Incident Responder

    4 days ago

    Singapore This is an IT support group Full time

    POSITION PURPOSE APAC Production Security teams are responsible for multiple IT Security activities for BNP Paribas in Asia Pacific region, such as: IT Production Security Governance, PMO & Risks Network Security and Security Design & Architecture Vulnerability & Compliance Management IAM Production Production CSIRT, Detection & SIEM Engineering Production...

  • SOC Incident Responder

    5 days ago

    Singapore Citibank N.A. Full time

    SOC Incident Responder (AVP)Citi's Security Operations Center (SOC) Incident Response Team seeks a highly skilled and experienced incident response practitioner to support critical efforts aimed at protecting Citi infrastructure, assets, clients, and stakeholders. This is a demanding role with global exposure and responsibility. You will serve both as a...

  • Cyber Incident Responder

    2 weeks ago

    Singapore BNP PARIBAS Full time

    Roles & ResponsibilitiesPosition PurposeAPAC Production Security teams are responsible for multiple IT Security activities for BNP Paribas in Asia Pacific region, such as: IT Production Security Governance, PMO & Risks Network Security and Security Design & Architecture Vulnerability & Compliance Management IAM Production Production CSIRT, Detection &...

  • Cybersecurity Incident Responder

    5 days ago

    Singapore Citibank N.A. Full time

    Citibank N.A. is looking for a Cybersecurity Incident Responder to join our team.About the RoleThis position will involve collaborating with global multidisciplinary groups for triaging and defining the scope of large scale incidents.Key ResponsibilitiesParticipate in incident response efforts using forensic and other custom tools to identify any sources of...

  • SOC Engineer

    1 week ago

    Singapore TALENTSIS PTE. LTD. Full time

    Roles & ResponsibilitiesWe are seeking a skilled and detail-oriented SOC Engineer to join our client's Security Operations Center (SOC) team. In this role, you will monitor, analyze, and respond to security incidents during office hours. You will work closely with the SOC team to ensure the organization's network and systems are secure, and assist in...

  • Cyber Incident Responder

    5 days ago

    Singapore UBS AG Full time

    Your role: Are you keen on working in world class Cyber Security Operations Center for one of the best Swiss private banks?Do you have related experience and are willing to take it further by learning how to defend an enterprise against cyber-attacks?We are looking for an incident response expert who will: Respond to cyber security incidents covering all...

  • Incident Response Lead

    5 days ago

    Singapore Secur Solutions Group Pte Ltd Full time

    About the RoleWe are seeking a talented Cybersecurity expert/SME in Detection Engineering & Security Investigation areas to join our team at Secur Solutions Group Pte Ltd. As a key member of our Production SOC & Security Investigation & Incident Response team, you will be responsible for leading technical activities, overseeing detection capabilities, and...

  • Cyber incident responder

    6 days ago

    Singapore UBS Full time

    Your role Are you keen on working in a world-class Cyber Security Operations Center for one of the best Swiss private banks?Do you have related experience and are willing to take it further by learning how to defend an enterprise against cyber-attacks?We are looking for an incident response expert who will: respond to cyber security incidents covering all...

  • Cyber Incident Responder

    7 days ago

    Singapore UBS Full time

    Your role Are you keen on working in a world-class Cyber Security Operations Center for one of the best Swiss private banks?Do you have related experience and are willing to take it further by learning how to defend an enterprise against cyber-attacks?We are looking for an incident response expert who will: respond to cyber security incidents covering all...

  • Security SOC Operator

    2 weeks ago

    Singapore SECURITY & RISK SOLUTIONS PTE. LTD. Full time

    Roles & ResponsibilitiesJob DescriptionSafeguarding the clients' local and remote sites, staff, assets and sensitive information. To lead the security operations, monitoring, detecting and responding to incidents promptly and effectively. proactive security and dedication to service to protect the clients' interests.Roles and ResponsibilitiesOperate all...

  • Security Operations Manager for 24/7 SOC

    4 days ago

    Singapore Secur Solutions Group Pte Ltd Full time

    Security Operations Manager for 24/7 SOCWe are seeking a highly experienced Security Operations Manager to lead our 24/7 SOC team at Secur Solutions Group Pte Ltd. This role will focus on overseeing the detection capabilities of the 24/7 regional IT Production SOC.Key Responsibilities:Oversee the detection capabilities of the 24/7 regional IT Production...

  • SOC Officer

    6 days ago

    Singapore CRIMSONLOGIC PTE LTD Full time

    Roles & ResponsibilitiesOur Employee Value PropositionAdvancing our People.Advancing our World.At CrimsonLogic, we put your Career and Well-being first.We are committed to advancing your career through a full spectrum of professional Development programs with the support of a strong Total Rewards philosophy that focus on your well-being.We believe that by...

  • SOC L2 Analyst/Consultant

    2 weeks ago

    Singapore T-SYSTEMS SINGAPORE PTE. LTD. Full time

    Roles & ResponsibilitiesAbout T-Systems:With around 28,000 employees worldwide and annual revenues of EUR 4.0 billion (2021), T-Systems is one of the leading providers of digital services. The Deutsche Telekom subsidiary is headquartered in Germany and has a presence in Europe as well as in selected core markets and strategic production locations. T-Systems...

  • SOC L2 Analyst/Consultant

    2 weeks ago

    Singapore T-SYSTEMS SINGAPORE PTE. LTD. Full time

    Roles & ResponsibilitiesAbout T-Systems:With around 28,000 employees worldwide and annual revenues of EUR 4.0 billion (2021), T-Systems is one of the leading providers of digital services. The Deutsche Telekom subsidiary is headquartered in Germany and has a presence in Europe as well as in selected core markets and strategic production locations. T-Systems...

  • Incident Responder in Cyber Security Operations

    5 days ago

    Singapore UBS AG Full time

    Your Role:We are seeking an experienced incident response expert to join our Cyber Incident Response team, which is responsible for responding to cyber security incidents across all phases, including identification, containment, eradication, and post-incident activities.Key Responsibilities:Conduct forensic-level analysis of system, accounts, and networksAct...

  • SOC Analyst/Manager

    3 days ago

    Singapore Quinnox Solutions Full time

    Lead the overall day-to-day work of the SOC ensuring events and/or incidents are detected and responded to in adherence to established processes and procedures. Provide an overview of SOC challenges, risks, and opportunities to the leadership team. Manage and escalate roadblocks that may jeopardize security monitoring operations, infrastructure, and SLAs....

  • Cyber Security SOC Engineer

    2 days ago

    Singapore SINGAPORE TELECOMMUNICATIONS LIMITED Full time

    Roles & ResponsibilitiesMake an Impact byLead the overall software development and tools management for SOC Enhance SOC operations with development of new features, automation, and improved effectiveness of the logging, SIEM, and SOAR tools. Software Development & Feature EnhancementDesign, develop, and implement new features and integrations for SIEM and...

  • Senior SOC Analyst

    3 days ago

    Singapore Sumitomo Mitsui Banking Corporation Full time

    Job Responsibilities Lead proactive hunting and analysis against the dataset (e.g., alerts, logs, etc.) and reverse engineering as needed to support Security Operation Centre (SOC) investigations and proactive threat detection and prevention. Coordinate and facilitates in-depth analysis, trending, and root cause analysis of security events/incidents while...

  • IT Security Specialist

    4 days ago

    Singapore Secur Solutions Group Pte Ltd Full time

    Job Title: IT Security Specialist - Incident Response and DetectionWe are seeking an experienced IT Security Specialist to join our team at Secur Solutions Group Pte Ltd. This role will focus on incident response and detection activities in a fast-paced environment.Key Responsibilities:Lead technical activities in security investigation and incident response...

SOC Incident Responder

1 week ago

Singapore Secur Full time

SOC Incident Responder (AVP)
Citi's Security Operations Center (SOC) Incident Response Team seeks a highly skilled and experienced incident response practitioner to support critical efforts aimed at protecting Citi infrastructure, assets, clients, and stakeholders. This is a demanding role with global exposure and responsibility. You will serve both as a technical subject matter expert and as an ambassador for the incident response team. You will be assigned to Citi's SOC and will collaborate closely with a talented cadre of security specialists and incident responders to react urgently to security events. Your observations and recommendations will impact security decisions across the organization and play an important part in maturing Citi's security posture.
As an individual contributor, you will be a hands-on first responder who triages and investigates cybersecurity incidents in cloud, traditional (i.e. on-premises), and hybrid environments. This position will be technically challenging and rewarding but will also provide ample opportunity to establish partnerships, mentor colleagues, and shape team culture. One guarantee is that no two days will be the same.
Responsibilities
Lead and/or support in-depth triage and investigations of urgent cyber incidents in cloud, traditional, and hybrid environments.
Perform incident response functions including but not limited to host-based analytical functions (e.g. digital forensics, metadata, malware analysis, etc.) through investigating Windows, Unix-based, appliances, and Mac OS X systems to uncover Indicators of Compromise (IOCs) and/or Tactics, Techniques, and Procedures (TTPs).
Create and track metrics based on the MITRE ATT&CK Framework and other standard security-focused models.
Work with application and infrastructure stakeholders to identify key components and information sources such as environments (on-premises versus cloud), servers, workstations, middleware, applications, databases, logs, etc.
Participate in incident response efforts using forensic and other custom tools to identify any sources of compromise and/or malicious activities taking place.
Collaborate with global multidisciplinary groups for triaging and defining the scope of large scale incidents.
Document and present investigative findings for high profile events and other incidents of interest.
Participate in readiness exercises such as purple team, table tops, etc.
Train junior colleagues on relevant best practices.
Qualifications
You should be all of the following: A skilled and creative incident responder. Success will depend on your ability to:
Stay current with the evolving landscape of threat activities and cybersecurity best practices.
Quickly synthesize information from disparate sources.
Scrutinize evidence thoroughly to identify relationships and develop leads.
Establish defensible working theories to explain observations and findings.
Perform investigations in a forensically sound manner.
A goal-oriented individual contributor. Success will depend on your ability to:
Stay motivated and work independently with minimal oversight.
Adapt to changing requirements in a fast-paced environment.
Multitask and meet deadlines despite competing priorities.
Navigate operational impediments in order to complete time-sensitive tasks.
Identify and document any opportunities for process improvement.
A reliable team player. Success will depend on your ability to:
Practice mutual respect at all times.
Establish trust and build strong partnerships.
Resolve conflict in a constructive manner and use as an opportunity to develop team unity.
Prioritize collective success ahead of individual ambition.
A great communicator. Success will depend on your ability to:
Establish clear narratives to describe investigative findings and working theories.
Clearly and concisely articulate any recommendations that arise from investigative activities.
Motivate colleagues and partners to cooperate and support as needed.
Exert influence both verbally and in writing.
A passionate leader. Success will depend on your ability to:
Lead by example.
Enable team success by being approachable and available.
Innovate and inspire others.
Embrace challenges and approach any failures as opportunities for learning and improvement.
Requirements and Critical Competencies
Education, knowledge, and Experience:
Bachelor's degree in a technically rigorous domain such as Computer Science, Information Security, Engineering, Digital Forensics, etc.
3+ years of professional experience in cybersecurity and/or information security, or demonstrated equivalent capability.
1+ years hands-on working in cyber incident response and investigations in medium to large organizations with cloud and forensics components.
Experience in Cloud Forensics/IR
Hands-on Dev/Sec/Ops experience with cloud environments and underlying storage, compute, and monitoring services.
Prior experience with cloud common services.
Hands-on experience with forensic investigations or large scale incident response in cloud environments.
Hands-on experience with containerization methods and tools (e.g. Docker, Kubernetes) including incident response and digital forensics.
Certifications (e.g. GIAC, AWS, etc.) in cloud or demonstrated equivalent capability.
Experience in Incident Response
Hands-on experience with analyzing and pivoting through large data sets.
Current hands-on experience in digital forensics (e.g. computer, network, mobile device forensics, and forensic data analysis, etc.).
Activities include but are not limited to:
Memory collection and analysis from various platforms.
Evidence preservation, following industry best practices.
Familiarity with malware analysis and Reverse Engineering of samples (e.g. static, dynamic, de-obfuscation, unpacking).
In-depth File system knowledge and analysis.
In-depth experience with timeline analysis.
In-depth experience with Registry, event, and other log file and artifact analysis.
Hands-on experience with a DFIR toolset and related scripting.
Current expertise with an EDR system.
One or more GIAC (e.g. GCFE, GCFA, GREM, GCIH, GASF, GNFA, etc.) or other digital forensic and/or incident response certifications.
Experience in the following operating systems:
Windows Operating Systems / UNIX / Mac OS X, specifically in system administration, command line use, and file system knowledge.
Experience in Basic Scripting and Automation
Proficient in basic scripting and automation of tasks (e.g. C/C++, Powershell, JavaScript, Python, bash, etc.).
Network Concepts and Understanding
Working knowledge of networking protocols and infrastructure designs; including routing, firewall functionality, host and network intrusion detection/prevention systems, encryption, load balancing, and other network protocols.
Other
Working knowledge of relational database systems and concepts (SQL Server, PostgreSQL, etc.).
Working knowledge of virtualization products (e.g. VMware Workstation).
Must have flexibility to work outside of normal business hours when necessary.
Exceptional candidates from non-traditional backgrounds or who otherwise do not meet all of these criteria may be considered for the role provided they demonstrate sufficient skill and experience.
About Citi
Citi, the leading global bank, has approximately 200 million customer accounts and does business in more than 160 countries and jurisdictions. Citi provides consumers, corporations, governments, and institutions with a broad range of financial products and services, including consumer banking and credit, corporate and investment banking, securities brokerage, transaction services, and wealth management.
Job Family Group:
Technology
Job Family:
Information Security
Time Type:
Full time
Citi is an equal opportunity and affirmative action employer.
Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review
Accessibility at Citi .
#J-18808-Ljbffr