Title: SOC Analyst
Job ID: 21636
Location:
ST Engineering Hub, SG
Description
Job Summary: The
Cyber Security Analyst plays a critical role in the first line of defense against cybersecurity threats. The role involves proactive monitoring, initial triage, and documentation of security incidents. Analysts will utilize various security tools and systems to detect, analyze, and escalate threats as required while ensuring effective communication and collaboration across the SOC team.
Responsibilities
Incident Monitoring and Detection:
- Perform proactive monitoring of logs, data, link utilization, and system availability across multiple SIEMs or security tools.
- Detect and identify potential security incidents using pre-defined rules and correlation.
- Conduct blacklist scanning, keyword ingestion, and fine-tuning of SIEM rules for improved accuracy.
Incident Management
- Investigate and triage alerts to determine the severity and impact of security events.
- Document detailed assessments and actions taken into incident tickets.
- Escalate incidents that require further investigation or resolution to Senior Security Analyst.
- Use standardized templates as a base but proactively amend escalation emails based on current investigations and analysis without referring to past emails.
Customer Interaction
- Handle customer phone calls and respond to escalation emails.
- Prepare standardized escalation email templates for efficient communication. Collaboration and Process Improvement:
- Work closely with SOC Leads, and SOC Managers to ensure incidents are effectively mitigated and resolved.
- Participate in feedback sessions and process improvement reviews to enhance workflows.
Requirements
- Basic knowledge of security tools such as SIEMs, IDS/IPS, firewalls, and antivirus systems.
- Strong attention to detail and ability to handle multiple tasks efficiently.
- Effective communication and teamwork skills to interact with internal teams and external stakeholders.
- A collaborative mindset to work effectively with other SOC tiers and managers.
- Strong analytical and problem-solving skills to address complex security challenges.
- Commitment to continuous learning to stay updated with the latest security trends and technologies.
- Adherence to SOC playbooks, standard operating procedures, and compliance requirements.
- Willingness to work on a 24/7 rotating shift schedule.
- Entry-level candidates are welcome to apply.
Work Location: Ang Mo Kio.
