Threat Detection Manager
6 days ago
Overall direction and control of Singapore Content operations and Global Threat Intelligence
- Hire, develop, train and mentor our Singapore Content team and our Threat Intelligence Analysts
- Sets standards and KPIs that align with corporate goals for service delivery and report on agreed metrics
- Drive continuous improvement in productivity and output of our team
- Be a source of innovative ideas and improvements to our technology platform and processes
- Create and maintain a cohesive approach to our global execution of Use Case Development
- Assist when needed on development projects, including but not limited to developing and creating new use cases for our base library including documentation, maintain existing base library, and modify alerts in library as required by the current threat landscape
- Act as Product Owner of our Use Case Libraries following an Agile methodology
- Manage projects in Jira, ServiceNow, and GitLab and ensure timely delivery of results
- Delegate work, and monitor completion timelines
- Continuously evaluate and improve upon our Use Case Development processes
- Support junior members on content development and operational tasks such as SIEM health, SIEM onboarding tasks, use case modifications, report modifications, and dashboard modifications
- Assume high level projects at the request of our Product Management team in areas such as migration of new technology and/or automation and scripting tasks
- Build dashboards and other tools for metrics and organizational purposes
- Identify technical issues and provide immediate and effective resolutions
- Act as technical coach for questions regarding content development (best practices, approaches, tools, languages, other technologies)
- Operate both independently and as part of a geographically dispersed team, while maintaining situational awareness and keeping the team informed.
- Keep abreast of the latest developments in the cybersecurity threat landscape
- Support regular and ad-hoc threat landscape reporting on relevant threat events and trends
- Actively participate in coordinated structured threat hunting campaigns
- Actively participate in team-based distributed deep-dive investigations of intrusion sets and campaigns
- Investigate, classify and track threat groups
- Participate in continual training and education for advanced in-depth investigations
- Support threat intelligence projects and initiatives to improve data collection, data processing, and structured analysis and interpretation. Ensure security, availability, and confidentiality of all sensitive data collected, processed, or stored by this position
- Any other ad hoc duties assigned
**Requirements**:
- At least 2 years of supervisory experience working in Security Operations Centers
- At least 5 years experience with a SIEM product (Splunk, Sentinel, and Elastic are most valuable)
- Certifications to support knowledge base in Splunk, Sentinel, and/or Elastic
- Strong understanding of security operations, threat hunting methodologies, incident response and architectural dependencies of security technologies
- Experience in developing frameworks for knowledge transfer, training and education
- Successful track record as a leader, people manager, communicator and motivator
- Ability to excel in a fast-paced environment and work under pressure
- Experience in data ingestion and knowledge of SIGMA and MITRE framework
- Basic understanding of the current threat landscape including knowledge of different threat actor profiles and attack methods
- Demonstrated knowledge of general networking principles including full knowledge of TCP/IP communication, the OSI model, common network ports, and basic network defense
- Basic Unix or Linux system administration and command line experience
- Solid understanding of the threats reported by various data sources such as IDS/IPS, AV, HIDS/HIPS, WAFs, firewalls, and web proxies
- Experience with Regular Expressions
- Ability to manage and assign a large daily task flow; experience mentoring and training staff; ability to create a cohesive global team environment
- Ability to effectively provide updates to stakeholders
- Confidence in independently delivering technical solutions
- Good problem-solving skills and the ability to visualize a problem/situation and think abstractly to solve it
- Solid knowledge of standard change management practices and procedures and ability to adhere to these even when there are critical production environment issues
- Highly organized in work product, research, and processes
- Able to balance multiple daily tasks of varying complexities and timelines
Lim Shen Chee (Reg No. R1660557)
EA License No. 07C5771
Schedule:
- Monday to Friday
-
Threat Detection Expert
1 week ago
Singapore beBeeCybersecurity Full timeJob Title: Threat Detection ExpertAbout the RoleWe are seeking a highly skilled Threat Detection Expert to join our team. As a key member of our Global Security Organization, you will be responsible for improving our detection capabilities to identify malicious threats.ResponsibilitiesResearch emerging cyber threats, vulnerabilities, and exploits relevant to...
-
Cyber Threat Detection Specialist
2 weeks ago
Singapore beBee Careers Full timeSenior Specialist - Cyber Threat DetectionThis role is responsible for proactively identifying and mitigating cyber threats by developing and optimizing detection mechanisms.
-
Advanced Threat Detection Expert
1 week ago
Singapore beBeeThreat Full timeCyber Security Software Engineer - Threat Detection SpecialistAt Centre for Strategic Infocomm Technologies (CSIT), we are seeking a highly skilled Cyber Security Software Engineer to join our team of experts in threat detection and mitigation. In this role, you will be responsible for conducting exploratory research and analysis into emerging threats on...
-
Senior Specialist
5 days ago
Singapore beBee Careers Full timeProtect Our Digital FutureWe are seeking a Senior Specialist to join our team, responsible for proactively identifying and mitigating cyber threats by developing and optimizing detection mechanisms.Key Responsibilities:Lead the design and development of defensive tools and procedures to optimize threat mitigation and improve security posture.Analyse...
-
Cybersecurity Threat Detection Specialist
2 weeks ago
Singapore beBeeSecurity Full timeJob Description:We are seeking a skilled Security Monitoring Specialist to join our team. In this role, you will be responsible for designing and implementing security controls and detection logic across various platforms, including Google Workspace (GWS), Azure, and others.Key Responsibilities:- Design and implement security controls and detection logic...
-
Senior Threat Detection Engineer
7 days ago
Singapore Hays Full time**Your new company** My client is a Global Technology/Electronics company with presence across the world. With their growing stature and expanding business, they are looking for a a Senior Threat Detection Engineer to join their growing team. **Your new role** - Investigate and review threats/intrusions on initial infection vector determination,...
-
Global Threat Detection Specialist
7 days ago
Singapore beBeeRisk Full timeJob Description:The role of the Physical Risk Detection Specialist is to identify and mitigate potential threats to the company's executives, employees, facilities, assets, events, and interests globally.Key responsibilities include developing scripts to gather and analyze intelligence from various sources, partnering with stakeholders to provide awareness...
-
Cybersecurity Professional
7 days ago
Singapore beBeeThreat Full timeJob Title: Cybersecurity Professional - Threat Detection and Incident ResponseThis is a unique opportunity to contribute to the protection of critical data and systems by leveraging your expertise in threat analysis and incident response.
-
Threat Hunter Manager
1 week ago
Singapore beBeeCybersecurity Full timeCyber Threat Hunting LeadWe are seeking a self-motivated Cyber Threat Hunting Lead with relevant experience to join our organization. The person will be responsible for formulating relevant threat hunt scenarios and executing them to conduct effective threat hunting operations in accordance with approved policy and processes. The candidate should be capable...
-
High-Fidelity Detection Engineer
5 days ago
Singapore beBeeDetection Full timeJob Description">We are seeking a seasoned Detection Engineer to join our team. As a key member of our Security Operations Center (SOC), you will be responsible for designing, developing, and deploying high-fidelity detection rules in SIEM systems such as Splunk, Microsoft Sentinel, Devo, and QRadar.">You will work closely with our red/purple teams to...