threat investigation specialist

5 days ago

Singapore infinite Computer Solution Full time $90,000 - $120,000 per year

The Main Responsibilities

Threat Hunting and Analysis

  • Conduct proactive threat hunting activities across various environments (endpoints, networks, cloud).

  • Develop and maintain threat hunting hypotheses based on current threat intelligence and organizational risk assessments.

  • Apply structured threat hunting methodologies leveraging frameworks such as MITRE ATT&CK, PEAK, TAHITI, THMM and Diamond Model to guide hypothesis creation, evidence collection and iterative improvements.

  • Deep technical knowledge of adversary tactics, malware analysis, intrusion detection and cloud security.

Tooling and Automation

  • Familiar with EDR/XDR solutions, SIEM platform, data pipeline and threat hunting tooling to detect and disrupt adversary tactics.

  • Develop custom scripts and tools to automate threat hunting processes and improve efficiency.

  • Leverage various threat hunting techniques, including but not limited to, YARA rules, IOC analysis, and behavioral based analysis.

Incident Investigation

  • Analyze security logs, network traffic, and endpoint data to identify malicious activity and potential threats.

  • Investigate security incidents and provide detailed reports on findings, including root cause analysis and remediation recommendations.

  • Collaborate with other security teams (incident response, vulnerability management, etc.) to share threat intelligence and coordinate security efforts.

Cyber Threat Intelligence (CTI)

  • Develop and manage Cyber Threat Intelligence while staying up to date on the latest threat landscape, attack techniques, and emerging technologies.

  • Map advisory behaviors to ATT&CK techniques and translate findings into actionable intelligence.

  • Share actionable intelligence with internal teams and external stakeholders.

  • Present findings and recommendations to technical and executive audiences.

Continuous Improvement

  • Contributes to the development and improvement of threat hunting strategies, processes and playbooks aligning with PEAK and TAHITI cycles for structural threat hunting.

  • Develop and maintain a strong understanding of the organization's infrastructure and applications to strengthen awareness of evolving threats and adversary behavior.

  • Drive maturing of the overall security operations service.

Qualifications & Skills:

Required

  • Bachelor's degree in Computer Science, Cybersecurity, or a related field.

  • At least 3+ years of experience in cybersecurity, with a minimum of 1-2 years focused on threat hunting.

  • Strong understanding of various operating systems (Windows, Linux, macOS).

  • Experience with various security tools and technologies (SIEM, EDR, network monitoring tools).

  • Proficiency in scripting (Python, PowerShell).

  • Strong analytical and problem-solving skills.

  • Excellent communication and presentation skills to translate technical findings into business impact.

Preferred

  • Experience with threat intelligence platforms, feeds and CTI frameworks.

  • Relevant security certifications (e.g., SANS GIAC, GNFA, GCFA, Offensive Security, etc)

  • Experience with cloud platforms (AWS, Azure, GCP) and container security is a plus.

EA License # 14C6941

  • Senior Cyber Threat Investigator

    2 weeks ago

    Singapore Centre for Strategic Infocomm Technologies (CSIT) Full time

    Overview Senior Cyber Threat Investigator role at Centre for Strategic Infocomm Technologies (CSIT). Responsibilities Overcome techniques employed to mask anomalous behaviours. Improve and automate validation or detection techniques. Identify alternate fingerprinting techniques to extend visibility. Assess adversary's objectives, sophistication, resources...

  • Endpoint Security

    4 days ago

    Singapore Crypto.com Full time

    We are looking for an intermediate level security specialist to join our Global Cyber Fusion Center. The role will support our continuous threat monitoring, hunting & response capabilities; and be a key contributor to key endpoint security projects & initiatives. **Responsibilities**: - Threat Monitoring Investigations - deep dive into Tier 1 & Tier 2...

  • Cyber Threat Investigator

    2 weeks ago

    Singapore Centre for Strategic Infocomm Technologies Full time

    Job Scope Detect anomalous behaviours via IOCs Assess potential malicious nature Build and expand threat profile Describe adversary's tactics Respond to threats identified where needed Requirements Degree in Infocomm Security, Computer Science, Computer/Electrical Engineering, Information Technology Strong interest in cyber security, particularly in advanced...

  • Regional Threat Intelligence Specialist

    4 days ago

    Singapore Control Risks Full time

    The Regional Threat Intelligence Specialist will work within the Global Security Intelligence function, supporting the collection, analysis, and dissemination of threat intelligence to stakeholders across the organization. This position will focus on a specific region, providing in-depth analysis and assessments of regional threats and trends, as well as...

  • Cyber Threat Investigator

    1 day ago

    Singapore Centre for Strategic Infocomm Technologies Full time $60,000 - $120,000 per year

    Job ScopeDetect anomalous behaviours via IOCs Assess potential malicious natureBuild and expand threat profileDescribe adversary's tacticsRespond to threats identified where needed RequirementsDegree in Infocomm Security, Computer Science, Computer/Electrical Engineering, Information TechnologyStrong interest in cyber security, particularly in advanced...

  • Regional Investigator

    2 weeks ago

    Central Singapore Emprego SG Full time

    **Location** - Singapore, Central Singapore**Job Type** - Permanent**Salary** - $8,100 - $16,200 Per Month**Date Posted** - 2 hours agoAdditional Details **Job ID** - 58564**Job Views** - 3Roles & Responsibilities Our Global Security organization is comprised of multiple teams that work together to support our operations around the globe. Our mission is to...

  • Insider Threat Analyst

    2 weeks ago

    Singapore INCOME INSURANCE LIMITED Full time

    The insider threat analyst is responsible for researching, triaging, and investigating anomalous events of concern using Behavior Analytical tools, Splunk, and other tools to determine potential malicious or risky insider activity. This analyst role will come under the IT Risk and Security department reporting to the Security Operations Manager. **Key...

  • Insider Threat Analyst

    1 week ago

    Singapore UBS Full time

    Singapore - Information Technology (IT) - Group Functions **Job Reference #** - 268182BR **City** - Singapore **Job Type** - Full Time **Your role** - Are you a cybersecurity professional with hands on experience identifying Insider threats? Do you routinely work closely with business, legal, compliance, and technology stakeholders to investigate...

  • Senior Cyber Threat Investigator

    1 day ago

    Singapore Centre for Strategic Infocomm Technologies Full time $80,000 - $120,000 per year

    Job ScopeOvercome techniques employed to mask anomalous behaviours.Improve and automate validation or detection techniques.Identify alternate fingerprinting techniques to extend visibility.Assess adversary's objectives, sophistication, resources and ops-security. RequirementsDegree in Infocomm Security, Computer Science, Computer/Electrical Engineering,...

  • Cyber Threat Intelligence Specialist

    1 week ago

    Singapore MSD Full time

    **Job Title: Cyber Threat Intelligence Specialist** **Primary responsibilities**: - Creates operational and strategic reports with technical analysis on threats, actors and Advanced Persistent Threat groups relevant to our company. - Publishes tactical reporting on open-source reports relevant to the healthcare, pharmaceutical, manufacturing services...