Principal Incident Responder

1 week ago


Singapore LSEG Full time $100,000 - $150,000 per year

Principal Incident Responder (GSOC)

LSEG Security Operations is a central function employing people, process and technology to continuously monitor and respond to cyber security incidents. Security Operations spans multiple domains including cyber threat intelligence, cyber threat detection, data loss prevention and cyber incident response.

This role will act help to protect the Group from cyber threats that seek to impact business operations.

LSEG (London Stock Exchange Group) is more than a diversified global financial markets infrastructure and data business. We are dedicated, open-access partners with a dedication to excellence in delivering the services our customers expect from us. With extensive experience, deep knowledge and worldwide presence across financial markets, we enable businesses and economies around the world to fund innovation, manage risk and create jobs.

It's how we've contributed to supporting the financial stability and growth of communities and economies globally for more than 300 years. Through a comprehensive suite of trusted financial market infrastructure services – and our open-access model – we provide the flexibility, stability and trust that enable our customers to pursue their ambitions with confidence and clarity.

Responsibilities
  • Lead and be the people leader for the Incident Response team in the APAC region.
  • Act as a focal technical lead on incident events and incidents.
  • Provide technical, hands-on incident investigation and support and serve as a main point of contact with management.
  • Conduct complex digital forensics and advanced malware analysis investigations.
  • Preserve, harvest and analyse data from computer systems including desktops, servers (virtual/physical) and mobiles.
  • Handle the chain of custody for all evidence collected during incidents, security, and forensic investigations.
  • Build and enhance defensive capabilities using monitoring technologies including SIEM and EDR.
  • Perform proactive threat hunting to identify cyber threats.
  • Train Attack Monitoring analysts in the steps to take to investigate and resolve computer security incidents.
  • Serve as an escalation point for security incidents.
  • Facilitate, document and manage root cause analysis and post-mortem process including tracking all action items and lessons learned through to implementation.
  • Enhance the defensive capabilities of the GSOC through detection use case engineering and threat modelling.
Experience
  • Must have significant experience of working in incident response such as within SOCs, digital forensics, or equivalent roles.
  • Experience performing complex digital forensic and incident response investigations.
  • Must have proven experience of leading teams.
  • Deep knowledge of common operating systems (e.g. macOS, Windows, Unix, Linux) and their associated file systems.
  • Proficient with industry-standard incident response toolsets such as EnCase, X-Ways, FTK and Volatility.
  • Knowledge of cloud technologies and cloud infrastructures such as AWS, GCP, Azure, O365.
  • Experience with conducting log analysis across different components of a typical organisation estate (e.g. OS, network, cloud).
  • Deep understanding of advanced cyber adversary tools, techniques and procedures.
  • Strong understand of Security Operations Centre (SOC) practices, processes and procedures.
  • Incident response process and procedures including common frameworks (e.g. NIST, SANS).
  • Automating and refining incident response procedures/playbooks to maximise SOC efficiencies.
  • Policies, standards and security frameworks, NIST, CIS.
Preferred
  • Preferred experience and knowledge of cyber security in global financial services and/or regulated environments.
  • Experience in driving cyber incident response capabilities using domain-expertise and through constant innovation.
  • Digital forensics/incident response certification(s) such as SANS, CREST or equivalent.
  • Competent with one or more programming languages (e.g. Python, PowerShell, Java, C#).
  • Ability to work with a sense of urgency while remaining calm under pressure.
  • Strong verbal and written communication and collaboration skills.
  • Delivers feedback in a way useful for an individual and a team for growth.
  • Adapts messaging and presentation styles to the needs of a different audiences.
  • Ability to understand and weigh business risks and communicate appropriate information and security measures.

Join us and be part of a team that values innovation, quality, and continuous improvement. If you're ready to take your career to the next level and make a significant impact, we'd love to hear from you.

LSEG is a leading global financial markets infrastructure and data provider. Our purpose is driving financial stability, empowering economies and enabling customers to create sustainable growth.

Our purpose is the foundation on which our culture is built. Our values of Integrity, Partnership, Excellence and Change underpin our purpose and set the standard for everything we do, every day. They go to the heart of who we are and guide our decision making and everyday actions.

Working with us means that you will be part of a dynamic organisation of 25,000 people across 65 countries. However, we will value your individuality and enable you to bring your true self to work so you can help enrich our diverse workforce.

We are proud to be an equal opportunities employer. This means that we do not discriminate on the basis of anyone's race, religion, colour, national origin, gender, sexual orientation, gender identity, gender expression, age, marital status, veteran status, pregnancy or disability, or any other basis protected under applicable law. Conforming with applicable law, we can reasonably accommodate applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs.

You will be part of a collaborative and creative culture where we encourage new ideas. We are committed to sustainability across our global business and we are proud to partner with our customers to help them meet their sustainability objectives. Our charity, the LSEG Foundation provides charitable grants to community groups that help people access economic opportunities and build a secure future with financial independence. Colleagues can get involved through fundraising and volunteering.

LSEG offers a range of tailored benefits and support, including healthcare, retirement planning, paid volunteering days and wellbeing initiatives.

Please take a moment to read this privacy notice carefully, as it describes what personal information London Stock Exchange Group (LSEG) (we) may hold about you, what it's used for, and how it's obtained, your rights and how to contact us as a data subject.

If you are submitting as a Recruitment Agency Partner, it is essential and your responsibility to ensure that candidates applying to LSEG are aware of this privacy notice.


  • Incident Responder

    2 weeks ago


    Singapore ITCAN Pte Ltd Full time

    To execute the incident response process according to the incident response standard operating procedure, and to work closely with the IHiS Threat Hunting team to effectively scope and contain incidents; - Conducting research and continuously improving investigative methodologies and techniques, including hard disk drive, network, and memory forensics and...

  • Incident Responder

    2 weeks ago


    Singapore ITCAN Full time

    **Roles Descriptions** Job Descriptions - Being on standby for 24/7 to execute the incident response process according to the incident response standard operating procedure, and to work closely with the IHiS Threat Hunting team to effectively scope and contain incidents; - Conducting research and continuously improving investigative methodologies and...


  • Singapore LSEG (London Stock Exchange Group) Full time

    LSEG Security Operations is a central function employing people, process and technology to continuously monitor and respond to cyber security incidents. Security Operations spans multiple domains including cyber threat intelligence, cyber threat detection, data loss prevention and cyber incident response. This role will act help to protect the Group from...


  • Singapore beBeeResponse Full time $22,800 - $26,400

    Field Response Officer (Calling for Class 2B/2A/2 Rider)Our organization is seeking a Field Response Officer to join our team. The ideal candidate will be responsible for rapidly responding to reports of accidents or incidents, gathering detailed information from involved parties and witnesses, and assisting with lodging accident and incident reports.Key...


  • Singapore UBS Full time

    Singapore Risk Group Functions **Job Reference #** 247495BR **City** Singapore **Job Type** Full Time **Your role** Are you from the World of Cyber? Are you the one to defend the organization against advance threat? Do you have what it takes to coordinate and respond to cyber-attacks? - respond to cyber security incidents covering all phases...


  • Singapore UBS Full time

    Singapore - Information Technology (IT) - Group Functions **Job Reference #** - 263525BR **City** - Singapore **Job Type** - Full Time **Your role** - Are you from the World of Cyber? Are you the one to defend the organization against advance threat? Do you have what it takes to coordinate and respond to cyber-attacks? - respond to cyber security...


  • Singapore UBS Full time

    SingaporeInformation Technology (IT)Group Functions Job Reference #BR City Singapore Job Type Full Time Your role Are you keen on working in world class Cyber Security Operations Center for one of the best Swiss private banks?Do you have related experience and are willing to take it further by learning how to defend an enterprise against cyber-attacks?We...


  • Singapore UBS AG Full time

    Roles & ResponsibilitiesYour role :Are you keen on working in world class Cyber Security Operations Center for one of the best Swiss private banks? Do you have related experience and are willing to take it further by learning how to defend an enterprise against cyber-attacks? We are looking for an incident response expert who will:• respond to cyber...


  • Central Singapore BNP Paribas Full time

    **POSITION PURPOSE**: APAC Production Security teams are responsible for multiple IT Security activities for BNP Paribas in Asia Pacific region, such as: IT Production Security Governance, PMO & Risks Network Security and Security Design & Architecture Vulnerability & Compliance Management IAM Production Production CSIRT, Detection & SIEM...


  • Singapore beBeeSystemResponse Full time $90,000 - $120,000

    System Response SpecialistKey ResponsibilitiesRespond to critical system alarms and incidents across multiple infrastructure systems, including data center management, server automation, CCTV, access control systems, and other technologies.Provide in-depth analysis and intelligence on incident severity and impact to resolver groups to ensure prompt...