Insider Threat Analyst

2 days ago

Singapore INNOVATIVE CONSULTING PTE. LTD. Full time

Description:
The insider threat analyst is responsible for researching, triaging, and investigating anomalous events of concern using Behavior Analytical tools, Splunk SIEM, and other tools to determine potential malicious or risky insider activity. This analyst role will come under the IT Risk and Security department reporting to the Security Operations Manager.

Key Responsibilities:

- Conduct investigations by analyzing and verifying information through various investigative techniques, internal resources, forensics, and Insider threat tools such as Data Loss Prevention, End Point Detection and Response, Network Traffic Analysis & Deceptive Technology to detect malicious lateral movement & privilege escalation in On-prem and Cloud environment.
- Provide actionable Insider threat analysis for remediation on all escalations.
- Triage all Insider Threat alerts within SLA guidelines.
- Collaborate with internal teams to drive insider threat program continuous improvement.
- Assess and make recommendations for improvement and refinement of Use Cases, software tools, and other risk reduction methods used to improve the insider threat program.
- Proven experience using analytical and data visualization tools to automate the analysis and provide insights of large dataset and correlate with Splunk SIEM and other sources of information and conduct investigative works into all traffic anomalies against established, historical baselines to identify the root cause to an incident, reported suspicious events or red teaming activities.
- Stay current with the latest Cyber threats, Attacks and vulnerabilities, and updated with the evolving and emerging attack techniques and methods.
- Maintain and update related insider threat documentations such as IT Standards and Standard Operation Procedures, and carry out activities specified in these documentations.
- Participate in various Cybersecurity exercises such as Cyber Ranges and BCP.
- Work on other project and tasks duties.

Qualifications:

- Minimum of (3) three years direct Information Security experience as an insider threat analyst, or security engineer, or a similar role, preferably with insider threat management experience in a Financial Institution environment.
- Hands on experience with investigative and/or insider threat tools, such as UEBA, DLP, EDR, Computer Forensics, Monitoring, Splunk SIEM, Incident Response, Databases, or data visualization tools in On-prem and Cloud environment.
- Understanding and/or working knowledge of insider threats in the Dark and Deep Web underground forums.
- Strong practical experience in Cyber security: MITRE ATT&CK Framework, Cyber kill chain, TTP, threat intelligence, malware triage.
- Strong understanding of Different Attacks on System, Network, Applications.
- Relevant industry certifications such as Splunk SIEM certification, CERT, CFE, CFCE, CISSP, GCIH, SANS, GIAC.
- Possess strong analytical skills, self-motivated, detail oriented and team player.
- Willing to learn and work in a collaborative manner with peers and team.
- Good interpersonal and communication skill.
- Able to work under pressure during critical situations.
- A passion for information security and data security.

  • Insider Threat Analyst

    2 days ago

    Singapore IT CONSULTANCY & SERVICES PTE LTD Full time

    Analyzing and verifying information through various investigative techniques, internal resources, forensics, and Insider threat tools such as Data Loss Prevention, End Point Detection and Response, Network Traffic Analysis & Deceptive Technology to detect malicious lateral movement & Privilege escalation in On-prem and Cloud environment.Experience using...

  • Senior Insider Threat Detection Analyst

    5 days ago

    Singapore Chevron Full time

    Chevron’s strategy is straightforward: be a leader in efficient and lower carbon production of traditional energy, in high demand today and for decades to come, while growing lower carbon businesses that will be a bigger part of the future. To achieve these goals, we’ll build on the assets, experience, capabilities, and relationships we’ve developed...

  • Insider Threat Analyst

    9 hours ago

    Singapore Quess Corp Limited Full time

    **Job Information**: Industry **Insurance*** Salary **5000 - 7000*** Work Experience **1 - 4 years*** State/Province **singapore*** City **singapore*** Zip/Postal Code **189557*** Country **Singapore*** - Conduct investigations by analyzing and verifying information through various investigative techniques, internal resources, forensics, and...

  • Risk Detection

    2 days ago

    Singapore ByteDance Full time

    Responsibilities About the Company Founded in 2012, ByteDance's mission is to inspire creativity and enrich life. With a suite of more than a dozen products, including TikTok as well as platforms specific to the China market, including Toutiao, Douyin, and Xigua, ByteDance has made it easier and more fun for people to connect with, consume, and create...

  • Risk Governance

    2 days ago

    Singapore ByteDance Full time

    Responsibilities About the Company Founded in 2012, ByteDance's mission is to inspire creativity and enrich life. With a suite of more than a dozen products, including TikTok as well as platforms specific to the China market, including Toutiao, Douyin, and Xigua, ByteDance has made it easier and more fun for people to connect with, consume, and create...

  • SOC Insider Threat Lead Analyst

    7 days ago

    Singapore Citi Full time

    Excited to grow your career? We value our talented employees, and whenever possible strive to help one of our associates grow professionally before recruiting new talent to our open positions. If you think the open position you see is right for you, we encourage you to apply! Our people make all the difference in our success.Key Responsibilities - The...

  • Insider Threat Lead, Security Governance and Compliance

    7 days ago

    Singapore ByteDance Full time

    Insider Threat Lead, Security Governance and Compliance 1 week ago Be among the first 25 applicants Responsibilities About the TeamThe Internal Threat Management team is responsible for managing and mitigating information security risks posed within the organisation. To ensure that the company's risk management and governance strategies are up to date...

  • Insider Threat Lead, Security Governance and Compliance

    5 days ago

    Singapore ByteDance Full time

    Insider Threat Lead, Security Governance and Compliance 1 week ago Be among the first 25 applicants Responsibilities About the Team The Internal Threat Management team is responsible for managing and mitigating information security risks posed within the organisation. To ensure that the company's risk management and governance strategies are up to date...

  • Threat Intelligence Analyst

    2 weeks ago

    Singapore Ethos BeathChapman Full time

    **Job Details**: **Location** Singapore **Salary** Competitive Salary **Job Type** Permanent **Ref** BH-17922 **Contact** Van Cao- **Posted** about 1 hour ago As a Threat Intelligence Analyst, your primary responsibility is monitoring, analyzing, and assessing potential and current cyber threats that could pose risks to an organization's...

  • Threat and Intel Analyst

    7 days ago

    Singapore NCS Full time

    **Threat and Intel Analyst**: The responsibilities shall include, but not limited to the following tasks: - Performing detailed system analysis and correlation to identify pattern of intrusion - Creating use cases for detecting similar intrusion - Identifying new or useful Indicator of Compromise - Conducting researches and evaluating trends in remediation...