Responsibilities:
- Incident Response Leadership: Lead incident response efforts with the team, contribute to the development and maintenance of incident response plans, and coordinate effectively with relevant stakeholders. Act as the backup for the SOC Manager during their absence, ensuring continuity of operations, decision-making, and team leadership.
- AI-Driven Cybersecurity Incident Response: Evaluate current cybersecurity incident response processes to identify & implement opportunities for AI integration and automation.
- Incident Management: Efficiently assess, investigate, and manage security incidents throughout their lifecycle, determining root cause and impact.
- Log Analysis: Conduct comprehensive analysis of security logs and data to identify and correlate malicious activity.
- Technology Evaluation: Conduct thorough Proof of Concept (PoC) and Proof of Value (PoV) assessments of prospective security tools to determine their efficacy and suitability.
- Project Management: Apply project management principles to plan, execute, and monitor the implementation of security tools and strategic initiatives.
- Technical Communication: Articulate complex technical information clearly and concisely to both technical and non-technical audiences.
- Cross-functional Collaboration: Collaborate effectively with diverse teams to facilitate incident resolution and the implementation of security solutions.
- Continuous Improvement: Conduct post-incident reviews to identify lessons learned and recommend enhancements to prevent future occurrences.
- Security Tool Proficiency: Utilize security tools such as EDR and SIEM for in-depth investigations and analysis.
- Availability: Respond to security incidents on a 24x7 basis during escalations and participate in a rotational on-call schedule, including weekends and public holidays.
- Additional Responsibilities: Undertake other cybersecurity-related tasks as directed by team leadership.
Qualifications:
- Bachelor's degree in Computer Science, Information Security, or a related discipline, or equivalent professional experience.
- 8 years of demonstrable experience in cybersecurity incident response.
- Comprehensive understanding of network protocols, operating systems, and fundamental security principles.
- Proven ability to analyze security logs and network traffic effectively.
- Exceptional problem-solving, analytical, and communication skills (both written and verbal).
- Experience in conducting Proof of Concept (PoC) or Proof of Value (PoV) evaluations of security technologies.
- Demonstrated knowledge and application of project management principles.
- Familiarity with security tools and technologies, including CrowdStrike EDR and Splunk.
- Relevant professional certifications, such as CISSP, GCIH, or CEH, are highly desirable.
Interested applicants please send your resume to [Confidential Information]
Venessa Goh Wee Ni
R24124686
Recruit Express Pte Ltd
EA License No: 99C4599
We regret that only shortlisted candidates will be contacted.
