Threat Hunter/mdr Lead
2 days ago
Ensign is hiring
- Setup and operating Managed Endpoint and Detection Response (MDR) program and proposing enhancement to achieve better efficiency/ effectiveness
- Operating Network Traffic Analytics (NTA) program, identification of abnormalities in client’s environment
- Performs threat hunting within the clients’ technology environments to uncover indicators of threat activities
- Performs digital forensic preservation, legal documentation and electronic discovery for incidents and investigations
- Supports the development of tactics, techniques, and procedures in providing proactive threat hunting and analysis against the available information sources (e.g. Netflow, DNS and Firewall logs, etc.)
- Supports the identification and documentation of Indicators of Compromise (IoCs)
- Leverages internal and external resources to research threats, vulnerabilities and intelligence on various threat actors and exploitation tools and platforms
- Use an analytics platform to identify threats in the available information repositories
- Perform threat research to identify potential threat vectors and work with multi-disciplines to improve prevention and detection methods
- Identify gaps in an organisation’s measurement metrics, telemetry and logging capabilities and propose enhancement strategies to achieve the intended outcomes
- Work with client’s appointed Incident Response Management team for cyber security incidents such as data security breach, Advanced Persistent Threat (APT)
- Leading a team of threat hunting analyst and take on the role of a mentor to security analyst
**Requirements**:
Basic Requirements
- 3 to 5 years of experience with threat hunting
- 3 to 5 years of experience in incident response handling
- 3 to 5 years of experience with digital forensics investigations
- Experience in consulting, including both internal and client facing experiences
- Ability to obtain a security clearance
- Bachelor Degree in Computer Engineering, Computer Science, Cyber Security, Information Security or other equivalents
Preferred Skills /Qualities
- 3 to 5 years of experience supporting or providing expert witness testimonials
- 3 to 5 years of experience in data analysis
- 3 to 5 years of experience in log analysis
- 3 to 5 years of experience in reverse malware analysis
- Experience with research, technical and business documentation and analysis.
- Knowledge of the Singapore Law, Singapore Government regulations and policies.
- Ability to demonstrate flexibility, initiative and innovation in dealing with ambiguous, fast-paced situations.
- Ability to show proficiency in one or more regional languages and dialects.
- Ability to show proficiency in Microsoft Office, Power BI and Tableau.
- Ability to show proficiency in Forensic Toolkits, e.g. EnCase Forensics, FTK Forensics, Magnet Forensics and Write Blockers.
- Ability to show proficiency in reverse malware engineering tools, e.g. IDA Pro
- Ability to show proficiency in programming and scripting, e.g. Java,.NET Programming, Python & PERL scripting, etc.
- Possession of excellent presentation and briefing skills.
- Possession of excellent oral and written communication skills.
- Strong interpersonal skills, ability to mentor/train staff.
- Professional certifications, including EnCE, GCIH, GCFE, GCFA, GREM, GNFA, GASF, GCTI, CISSP, or other SANS certifications.
-
Mdr Analyst
2 weeks ago
Kallang, Singapore Ensign InfoSecurity Full timeEnsign is hiring ! - Baseline for normal operations and detect abnormalities - Perform hunt for anomalous events and investigate compromised systems. - Manage research related to threat hunting adversaries in our environments. - Participate effectively in investigations related to threat hunting adversaries in our environments - Perform Real-Time monitoring...
-
Cyber Threat Intelligence Analyst
6 days ago
Kallang, Singapore Ensign InfoSecurity Full timeEnsign is hiring ! **Responsibilities**: - Plan and lead CTI operations for Threat-Informed Defence across federated SOCs - Proficient in exploiting all sources of Cyber Threat Intelligence - Monitor third-party security feeds, forums, and mailing lists to gather information related to the client through automated means - Analyze attack trends using best...
-
Senior Security Analyst L3
4 days ago
Kallang, Singapore Ensign InfoSecurity Full timeEnsign is hiring ! **Responsibilities**: - Baseline for normal operations and detect abnormalities - Perform hunt for anomalous events and investigate compromised systems. - Manage research related to threat hunting adversaries in our environments. - Participate effectively in investigations related to threat hunting adversaries in our environments -...
-
Security Analyst L3
1 week ago
Kallang, Singapore Ensign InfoSecurity Full timeEnsign is hiring ! **Responsibilities**: - Setup and operating Managed Endpoint and Detection Response (MDR) program and proposing enhancement to achieve better efficiency/ effectiveness - Operating Network Traffic Analytics (NTA) program, identification of abnormalities in client’s environment - Performs threat hunting within the clients’ technology...
-
Kallang, Singapore NTT DATA Full time**Make an impact with NTT DATA** Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion - it’s a place where you can grow, belong and thrive. We are seeking an experienced...
-
Lead Consultant, Security Testing and Red Team
2 weeks ago
Kallang, Singapore Ensign Infosecurity Full timeEnsign is hiring Requirements: Familiar with cyber security principles, policies and industry best practicesExperienced in consulting, including internal and client facing experiencesPossess relevant cybersecurity certifications or accredited experience from CTFAbility to travel overseas when requiredFamiliar with system administration on various operating...
-
Consultant, Cyber Hunt
6 days ago
Kallang, Singapore Ensign InfoSecurity Full timeEnsign is hiring ! **Responsibilities**: - Collaborate with the team and be responsible for the delivery of client engagements, providing updates to the engagement and/or team lead - Contribute to the project delivery of the Ensign Consulting - Threat Hunting & Response business; aligns with the project schedule for deliverables and milestones; adaptable...
-
DevSecOps Lead
1 week ago
Kallang, Singapore NTT Full timeMake an impact with NTT DATAJoin a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it's a place where you can grow, belong and thrive. Your day at NTT DATA The DevSecOps...
-
Sales Executive
2 days ago
Kallang, Singapore Cartrack Full time**WHO WE ARE** Cartrack is a leading global provider of fleet management solutions with a focus on technology development to increase productivity and safety. Cartrack already has an extensive footprint in South Africa, Europe, Asia, and the Middle East. With an active subscriber’s base of close to 1.8 million, Cartrack ranks among the 10 largest...
-
Senior Dfir Consultant
4 days ago
Kallang, Singapore NTT DATA Full time**Make an impact with NTT DATA** Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion - it’s a place where you can grow, belong and thrive. **Your day at NTT DATA** This...
