SOC Insider Threat Analyst
6 months ago
Description
We value our talented employees, and whenever possible strive to help one of our associates grow professionally before recruiting new talent to our open positions. If you think the open position you see is right for you, we encourage you to apply
Our people make all the difference in our success.
--------------------------------------------------------------
Key Responsibilities
The analyst will perform monitoring, research, assessment and analysis on alerts from various security tools, including firewalls, antivirus systems, user behavior analytics tools, proxy devices and SIEM tools, etc. which requires demonstrable security incident response and/or insider threat experience.Recommend and review new use cases for insider threat monitoringFollow pre-defined actions to investigate security incidents or perform incident response actions, including escalating to other support groups.Execute daily ad hoc tasks or lead projects as needed.Participate in or lead daily and ad-hoc conference calls; Create, update or provide process documentation, or provide requested evidence for compliance & controls requests.
Core Role Competencies
Technical Knowledge: Has a recognizable area of technical competence. Familiar with appropriate standards. Applies subject domain knowledge to meet organizational need/guide actions. Keeps up with current and possible future technological developments in the field. Processes/ Procedures: Ensures processes and procedures are in place for self and others to use. Seeks ways to improve existing processes, making adjustments or recommending reengineering improvements. Customer and Industry Knowledge: Consistently applies a business driver and marketplace focus when prioritizing actions. Risk Management: Examines and defines factors that could adversely affect task completion, delivery or achievement of customer satisfaction. Evaluates controls to help mitigate negative outcomes through prevention, detection and correction. Identifies the risks of negative outcomes, including inadvertent error or fraud. Ensures ongoing compliance with regulatory requirements. Stakeholder Management: Identifies key partners and their influence, implements techniques for communicating/engaging and managing expectations. Has frequent interactions. Finds the appropriate balance of completing claims by various groups of stakeholders, acting fairly and in consideration of cultural and ethical factors. Problem Solving and Decision Making: Makes sound decisions. Considers relevant factors and uses appropriate decision-making criteria and principles. When making decisions, uses a mix of analysis, wisdom, experience and discernment. Assesses business needs, anticipates problems. Works independently and is self-directed.
Skills / Experience Levels
You have 4+ years working in the security & operations fieldsYou have a Bachelor’s degree or higher (Computer Science or Cybersecurity preferred) or equivalent work experienceExcellent knowledge of network security, TCP/IP, various operating systems (Windows/UNIX), and web technologies (focusing on Internet security).Ability to read and understand packet level data; Experience with user behavior analytics, DLP, IDS/IPS, firewalls, and host security products (HIPS, AV, EDR, etc)Certifications from EC-Council, GIAC, or (ISC)² are preferred [CISSP, C|EH, GCIA, CCNA]. You have good communication skills with the ability to articulate clearly in high stress situationsYou enjoy learning and love sharing your knowledge with othersYou work independently and are self-directedYou are a detail oriented and perseverant individualYou have a positive attitude with the drive to get the work doneYou are a self-starter with good problem solving skills, and you continuously look for ways to improve understand the importance of prioritization of your have skills and proficiency with MS PowerPoint, Excel, Access or other analytical tools ------------------------------------------------------ Job Family Group: Technology------------------------------------------------------ Job Family: Information Security------------------------------------------------------ Time Type: Full time------------------------------------------------------Citi is an equal opportunity and affirmative action employer.Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review .-
Cyber Threat
2 months ago
Singapur, Singapore Steenbok Full timeOver the years, it has cultivated a niche in interconnecting applications from mobile and web frontends to the traditional ERP systems through middleware. Today, its best value to the customer is its experience and ability in cross-application connectivity.To date, its business has remained as that of an outsourced IT arm to the industries.The RolePosition...
-
Cyber Threat
2 months ago
Singapur, Singapore Snaphunt Full timeThe OfferWork within a company with a solid track record of successWork alongside & learn from best in class talentExcellent career development opportunitiesThe JobPosition Summary:As a Cyber Threat (SOC) Analyst, you will monitor and analyze security events using various cyber defense tools. You'll perform 24x7 surveillance, assess potential threats, and...
-
Manager, SOC Analyst
7 months ago
Singapur, Singapore United Overseas Bank Full timeManager, SOC Analyst Posting Date: 01-Jun-2023 Location: Singapore (City Area), Singapore, 048624 Company: United Overseas Bank Ltd The Security Operation Center (SOC) is seeking enthusiastic, passionate and technically strong Cyber Security Senior Analyst. Analyst will act as subject matter expert for SOC. Responsibilities: • Perform deeper...
-
SOC Analyst/Engineer
3 months ago
Singapur, Singapore Steenbok Full timeOver the years, it has cultivated a niche in interconnecting applications from mobile and web frontends to the traditional ERP systems through middleware. Today, its best value to the customer is its experience and ability in cross-application connectivity.To date, its business has remained as that of an outsourced IT arm to the industries.The...
-
Assistant VP, Senior SOC Analyst
7 months ago
Singapur, Singapore United Overseas Bank Full timeAssistant VP, Senior SOC Analyst Posting Date: 09-May-2023 Location: Singapore, Singapore, Singapore, 048624 Company: United Overseas Bank Ltd About UOB United Overseas Bank Limited (UOB) is a leading bank in Asia with a global network of more than 500 branches and offices in 19 countries and territories in Asia Pacific, Europe and North...
-
Junior SOC Analyst/Engineer
3 months ago
Singapur, Singapore Snaphunt Full timeThe OfferWork within a company with a solid track record of successWork alongside & learn from best in class talentExcellent career development opportunitiesThe JobResponsibilitiesMonitor and respond to security incidents within a SOC or CSIRT environmentAnalyze security events using frameworks like MITRE ATT&CK® and OWASP to identify threats and...
-
Intern, SOC Analyst
7 months ago
Singapur, Singapore Ensign InfoSecurity Full timeEnsign is hiring !Responsibilities:Assist in the delivery of Ensign projects and operations.Assist in the enhancement and/or development of standard operating procedures, processes and playbooks.Assist in the development of performance metrics to benchmark analyst and identify areas for improvement.Assist in the development of training content, such as...
-
SOC Manager
7 months ago
Singapur, Singapore NCS Group Full timeResponsibilities: Serves as team lead, driving goals and performance for SOC team (Level 1 and Level 2 SOC analysts and etc) managing time off requests, and other HR related requests. Lead the overall day-to-day work of the SOC ensuring events and/or incidents are detected and responded to in adherence to established process as well as...
-
Cyber Threat
2 months ago
Singapur, Singapore Snaphunt Full timeThe OfferWork within a company with a solid track record of successWork alongside & learn from best in class talentExcellent career development opportunitiesThe JobAs a Cyber Threat (SOC) Engineer, you will use various cyber defense tools (e.g., intrusion detection, firewalls, system logs) to monitor and analyze events within the company's environment....
-
Cyber Threat
2 months ago
Singapur, Singapore Steenbok Full timeOver the years, it has cultivated a niche in interconnecting applications from mobile and web frontends to the traditional ERP systems through middleware. Today, its best value to the customer is its experience and ability in cross-application connectivity.To date, its business has remained as that of an outsourced IT arm to the industries.The RoleAs a Cyber...
-
Sr Manager of APAC SOC Operations
2 months ago
Singapur, Singapore Proficio Full timeProficio is an award-winning managed detection and response (MDR) services provider. We provide 24/7 security monitoring, investigation, alerting and response services to organizations in healthcare, financial services, manufacturing, retail and other industries. Proficio has been highlighted in Gartner’s Market Guide for Managed Detection and Response...
-
AVP - Cyber Threat Senior Analyst - (Hybrid)
6 months ago
Singapur, Singapore 11112 Citibank, N.A. Singapore Full timeThe Security Operations Center (SOC) Cyber Threat Analyst will be part of the SOC Team. This center monitors analyses and responds to infrastructure threats and vulnerabilities on a 24x7 basis. SOC Analysts are responsible for performing the day-to-day monitoring of Citi's environment analyzing responding to events as necessary and providing technical...
-
Cyber Threat Analyst
7 months ago
Singapur, Singapore Marina Bay Sands Full timeSummary of the role The Cyber Threat Analyst is an experienced threat detection and response analyst within Marina Bay Sands’ (MBS) Cyber Security Operations Centre (CSOC). MBS CSOC operates a follow-the-sun model, partnering with Las Vegas Sands (LVS) Corp CSOC. The mission of MBS CSOC is to protect and defend MBS and LVS against cyber-attacks...
-
Singapur, Singapore SMBC Group Full timeResponsibilities Lead proactive hunting and analysis against the dataset (e.g., alerts, logs, etc.) and reverse engineering as needed to support Security Operation Centre (SOC) investigations and proactive threat detection and prevention. Coordinate and facilitates in-depth analysis, trending, and root cause analysis of security events/incidents...
-
Singapur, Singapore Amazon Asia-Pacific Holdings Private Limited Full timeAmazon’s Selling Partner Risk (SPR) team within the Selling Partner Services (SPS) space designs and implements policies, tools and technological innovations to protect customers by identifying and preventing abuse worldwide. Our growth requires highly skilled candidates who move fast, have an entrepreneurial spirit to create new solutions, a tenacity to...
-
Threat Analyst
7 months ago
Singapur, Singapore IHiS Full timePosition OverviewPosition Summary The Threat Analyst will play a critical role in defending Singapore’s public healthcare institutions from all cyber threats. The primary responsibility will be to assist the manager in ensuring smooth and effective conduct of threat hunting operations across the public healthcare to quickly detect, disrupt and eradicate...
-
Senior Manager
7 months ago
Singapur, Singapore Careers@Gov Full time[What the role is] Cybersecurity is a critical pillar of CAAS’ work. To ensure that the Singapore air hub remains safe and secure for air travel, every mission-critical system that supports air hub operations must be well-protected and resilient against rapidly evolving, and increasingly complex, cybersecurity threats. We are looking for strong and...
-
AVP - SOC Cyber Fraud Analyst (Hybrid)
6 months ago
Singapur, Singapore 11112 Citibank, N.A. Singapore Full timeThe Security Operations Center Cyber Fraud Analyst is an intermediate level position responsible for leading efforts to prevent, monitor and respond to information/data breaches and cyber-attacks on a 24x7 basis. The overall objective of this role is to ensure the execution of Information Security directives and activities in alignment with Citi's data...
-
Security Operations Analyst
3 months ago
Singapur, Singapore Steenbok Full timeOur client, a prominent player in the financial industry, is seeking skilled IT Operations Analysts to join their innovative team. This is a good opportunity to work in a fast-paced environment where your expertise will directly contribute to the efficiency and success of critical operations. If you have a strong background in IT security operations and a...
-
Security Operations Analyst
3 months ago
Singapur, Singapore Snaphunt Full timeThe OfferWork within a company with a solid track record of successJoin a well known brand within the Financial Services IndustryExcellent career development opportunitiesThe JobYou will be responsible for : Analyze security logs and events to detect cyber threatsInvestigate and prioritize security incidentsRespond to malware and phishing attemptsCollaborate...