- Configure and administer the SIEM to support the needs of SOC.
- Responsible for maintaining the health of the SIEM tool and ensuring agreed uptime of the respective platform.
- Perform regular patching and version upgrades on the SIEM platform.
- Configure respective parsers, forwarders (engage principal vendors if needed) to integrate various log sources with SIEM platform for log monitoring.
- Research, build, and maintain detection capabilities for the latest threats across SIEM, log analytic, and security tool platforms.
- Ensure real time data and Configuration replication between Primary and DR sites.
- Integrate data feeds (logs) into SIEM/Splunk from on-premises and cloud deployed devices and applications.
- Explore leading cybersecurity products. Work with 3rd party security consultants and service providers to ensure all security aspects are covered. Operate security solutions such as SIEM, PAM, EDR, IDS/IPS and Web Application Firewall while ensuring compliance to regulatory standards and procedures.
- Security Automation: Automating processes using well-known frameworks such as PowerShell, Python, Bash, etc. As well as SOAR build out. (look like using AWS lambda to integration (CloudFront/WAF/ALB) and automating your work.)
- Continuous Monitoring: Management AWS Guard duty and intrusion detection, User Behavior, and other security monitoring.
- Support the SOC Analysts in the use of the toolset and with investigations to establish the facts surrounding potential suspicious activities and to understand the impact and possible risks associated.
- Creation, amendment, tuning and supporting the engineering of advanced or complex protective monitoring use cases.
- Provide security consultancy to other internal teams for matters relating to the SIEM.
- Troubleshooting complex issues that may occur within the SIEM and resolving them with the help of vendor support
- Advise clients of security standards, best practice and solutions relating to SIEM and SOC solutions.
- Advanced knowledge and experience of Cyber Security and evidence of working as a SIEM Engineer with previous experience of the software, including architectural design, configuring, operating and problem-solving activities.
- A good understanding of implementing use cases and operational models or specific security solutions to meet the customer's requirement and understand how SIEM solution
- Hands-on experience in a two or more of the key security domains such as: security operations (SIEM, EDR, vulnerability management), Cloud security, Data security, Identity and access management, and secure software development lifecycle
- Knowledge of networking and AWS/Azure Cloud Security practices and tools.
- SIEM related certifications for Administration, implementation, deployment, architecture.
-
Siem Engineer
1 week ago
ENSIGN INFOSECURITY (CYBERSECURITY) PTE. LTD. SingaporeThe SIEM engineer will architect, implement, and maintain various SIEM solutions for our customers to support our security analysts. This role will primarily setup, maintain, and enhance various SIEMs. · - Configure and administer the SIEM to support the needs of SOC. · - Respons ...
-
Siem Engineer
1 week ago
INFINITY CYBERSEC PTE. LTD. Singapore**SIEM Engineer** · Job roles: · - Implementation of SIEM solutions including design, testing, deployment and documentation · - Administration and troubleshooting of SIEM solutions across variety of platforms both on-premises and on cloud · - Onboarding of data sources along with ...
-
Siem & Automation Engineer
1 day ago
TechBridge Market SingaporeIf you are passionate about playing a key role in the success of the region's largest pure-play cybersecurity expertise and innovation, we want to hear from you · Our client is a well-established brand in the Cybersecurity industry and they are looking for a passionate and driven ...
-
Siem & Automation Engineer
1 week ago
ENSIGN INFOSECURITY (CYBERSECURITY) PTE. LTD. SingaporeOur SIEM & Automation team works closely with other security analysts to deliver security content to monitor security threats, and automate the escalation / response for our customers. You will play a part in the team to research, design, architect and implement security use case ...
-
SIEM Engineer
1 day ago
INFINITY CYBERSEC PTE. LTD. SingaporeRoles & Responsibilities · SIEM Engineer · Job roles: · Implementation of SIEM solutions including design, testing, deployment and documentation · Administration and troubleshooting of SIEM solutions across variety of platforms both on-premises and on cloud · Onboarding of data s ...
-
SIEM Engineer
1 week ago
PERCEPT SOLUTIONS PTE. LTD. SingaporeRoles & Responsibilities · Description: · Primarily accountable for overseeing the engineering, development and maintenance / continuous improvement of threat detection use-cases scenarios within the SIEM (Splunk ES). Additionally, involved in the engineering and development of c ...
-
SIEM Engineer
4 days ago
Infinity Cybersec Pte. Ltd. Singapore Full timeSIEM Engineer · Job roles: · Implementation of SIEM solutions including design, testing, deployment and documentation · Administration and troubleshooting of SIEM solutions across variety of platforms both on-premises and on cloud · Onboarding of data sources along with necessary ...
-
SIEM & Automation Engineer
2 days ago
ENSIGN INFOSECURITY (CYBERSECURITY) PTE. LTD. SingaporeRoles & Responsibilities · Our SIEM & Automation team works closely with other security analysts to deliver security content to monitor security threats, and automate the escalation / response for our customers. You will play a part in the team to research, design, architect and ...
-
SIEM Use-Case Engineer
4 days ago
GECO Asia Singapur, SingaporeJob Description: · Primarily accountable for overseeing the engineering, development and maintenance / continuous improvement of threat detection use-cases scenarios within the SIEM (Splunk ES). Additionally, involved in the engineering and development of custom rules in the EDR ...
-
Sentinel Services Engineer
1 week ago
PROFICIO PTE. LTD. Singapore**Description** · We are seeking a talented and driven Sentinel Services Engineer and infrastructure expertise. This position will be customer facing role, responsible for delivering engineering services and support to our customers for Proficio Managed SIEM/Log Management platfo ...
-
Security Solutions Engineer
3 days ago
ENSIGN INFOSECURITY (CYBERSECURITY) PTE. LTD. Singapore**Job Description Summary** · Our Security Solutions team works closely with other security engineers to deliver security solutions to the project for our customers. You will play a part in the team to research, design, architect and implement security solutions such as Endpoint ...
-
Assistant Manager
2 days ago
RGF Singapore**Location**: Singapore · **Salary**: Open · **Industry**: Manufacturing, Engineering & Industrial · **Sub-industry**: Automotive/Transport Parts · **Function**: Technology · **Job Description**: · **Our Client**: · Our client is one of the world's leading automotive companies wh ...
-
Security Solutions Engineer
6 days ago
NodeFlair Singapore**Job Summary**: · **Salary** · S$4,000 - S$8,000 / Monthly · **Job Type** · **Seniority** · Mid · **Years of Experience** · At least 3 years · **Tech Stacks** · Powershell play Flow Splunk Python · **Job Description Summary** · Our Security Solutions team works closely with othe ...
-
Junior Security Information Event Management
15 hours ago
CYBERNATICS PTE. LTD. Singapore**About the Role**: · As a Junior SIEM Engineer, you will play a crucial role in the development and tuning of our SIEM-based product. You will work closely with our team of experienced engineers, cybersecurity experts, and data scientists to enhance the efficiency, accuracy, and ...
-
Senior Security Engineer
1 week ago
NCS Singapore**Senior Security Engineer**: · **Date**:15-Mar-2023 · **Location**: Singapore, Singapore · **Company**:Singtel Group · **Responsibilities** · - Ensuring the operational availability and efficiency of the SIEM and SOAR systems by providing 24x7 standby support. · - Identify and d ...
-
Manager, Sales Engineering Logscale
1 week ago
CrowdStrike Singapore#WeAreCrowdStrike and our mission is to stop breaches. As a global leader in cybersecurity, our team changed the game. Since our inception, our market leading cloud-native platform has offered unparalleled protection against the most sophisticated cyberattacks. We're looking for ...
-
Security Engineer
3 days ago
ENSIGN INFOSECURITY (CYBERSECURITY) PTE. LTD. Singapore**Key Responsibilities** · - Perform implementation, maintenance, support and operation of the project's security monitoring use cases · - Maintain understanding of the architecture and work with security team to understand the use cases to be created. · - Identity, evaluate and ...
-
Cybersecurity Analyst
4 days ago
PROFICIO PTE. LTD. Singapore**Description** · Proficio is one of the fastest growing Managed Detection and Response (MDR) providers (formerly MSSP) in America, providing 24×7 security analysis and monitoring services to mid to large-sized enterprises. Our growth is being fueled by the rapid rise in cloud-ba ...
-
DevOps Engineer
1 week ago
Ensign InfoSecurity SingaporeEnsign is hiring · Job Description Summary · Our Security Solutions team works closely with other security engineers to deliver security solutions to the project for our customers. You will play a part in the team to research, design, architect and implement security solutions s ...
-
Engineer
1 week ago
Singapore Technologies Engineering Ltd Singapore**Date**:5 Jul 2023 · **Location**: Singapore, SG · **Company**:ST Engineering Group · This role is focused on the detection, prevention & response to cyber security threats and alerts. This person will have the opportunity to work on technology and processes with a global reach ...
SIEM Engineer - Singapore - ENSIGN INFOSECURITY (CYBERSECURITY) PTE. LTD.
Description
Roles & ResponsibilitiesThe SIEM engineer will architect, implement, and maintain various SIEM solutions for our customers to support our security analysts. This role will primarily setup, maintain, and enhance various SIEMs.
Requirements
SIEM
Troubleshooting
Azure
Cyber Security
AWS
Architect
Powershell
Data Security
Tuning
Python
Automation