Consumer Networks - Engineer, CyberSecurity (115682)

Job Description

•  Managing the Networks Security Operation Centre to ensure Singtel meets its regulatory compliance to the IMDA Telecommunications CyberSercurity Code of Practice (TCS-CoP) and Broadcast CyberSecurity Code of Practice (BCS-CoP).  The NSOC is responsible for ensuring that potential security incidents are correctly identified, analyzed, defended, investigated, and reported.
• Monitoring, Detecting, Analysing, Investigating, Responding and Mitigating potential Cyber Security Threats/alerts and Incidents.  The NSOC leverages on proactive OSS/tools to monitor and analyze activity on networks, servers, endpoints, databases, applications, websites, and other systems, looking for anomalous activity that could be indicative of a security incident or compromise. 
• Working Singtel ASOC (Advanced Security Operation Centre), vendor’s of network security product, IT Security, and 3^rd party Managed Service Providers to monitor, detect and investigate threats.
• Onboarding IT and Network systems/platforms to the Security Incident Event Management (SIEM) Service, including developing use-cases, tuning and optimizing, to improve effectiveness and accuracy of SIEM threat alerts. 
• Complementing the Integrated Network Operation Centre (7 x 24) to provide the round the clock cybersecurity surveillance to ensure the uptime and meeting of Service Availability performance targets for Voice, Data, Internet, Mobile, TV and VAS services.
• Adhering CyberSecurity Incident Management framework as directed by the Singtel Networks Security Committee (NSC), including working closely with Network Incident/Crisis Management Team, IT Risk Committee and Group Risk to ensure resolution of Cyber Security issues.
• Performing the Continuous Service Improvement (CSI) function and participate in Operation Excellence forum to drive Continuous Improvement (CI) activities.

Required Knowledge, Skills, Abilities, Experience and Education:

• Bachelor’s degree with specialization in Computer Sciences, Engineering, Information Technology, Cyber security-related field or equivalent discipline.
• Experience in addressing security policy, compliance, privacy and regulatory issues.
• Experience and extensive knowledge of Security Information Event Management (SIEM).
• Knowledge and experience in managing cybersecurity / information security teams and technologies.
• Knowledge of Operational Security principles for cyber operations, information sharing, and information protection.
• Knowledge of CSI Controls prioritized set of actions that collectively form a defense-in-depth set of best practices that mitigate the most common attacks against systems and networks.
• Knowledge with the following technical SOC skills: Incident Response, Log Analysis, TCP/IP, Network Traffic Analysis, Antivirus/Malware, Intrusion Detection/Prevention, Packet Analysis Techniques, Event Correlation, and Incident Triage.
• Strong interpersonal skills and ability to collaborate effectively with all levels of personnel and stakeholders.
• Excellent attention to detail, verbal/written communication skills, and strong organization and time management skills, as well as the ability to effectively manage multiple tasks simultaneously under general supervision.
• Independent thinker with strong analytical and problem-solving skills.
• Minimum of three (3) years of relevant Security Operation Centre management experience.