Share this Job

Senior Consultant, IT Security

Date: 13-Jan-2023

Location: Singapore, Singapore

Company: Singtel Group

At Singtel, we believe in the strength of a vibrant, diverse and inclusive workforce where backgrounds, perspectives and life experiences of our people help us innovate and create strong connections with our customers. We strive to ensure all our people practices are non-discriminatory and provide a fair, performance-based work culture that is diverse, inclusive and collaborative. 

Join us and experience what it’s like to be with an Employer of Choice*. Together, let’s create a brighter digital future for all. *Awarded at the HR Fest Awards 2020.

 

This role is to provide support to Singtel ASOC Engineering team and assist the Cyber Delivery Managers with customer deliverables.

Responsibilities:

SIEM

  • Build, configure, and deploy SIEM solution and ensure devices are onboarded correctly
  • Build, configure, and generate monthly security report on specifically designated customer projects
  • Build and develop custom parsers, use cases, rule sets
  • Work with Cyber Delivery Manager on specifically designated customer projects
  • Maintain and upkeep existing SIEM infrastructure 
  • Support SOC operations and requests
  • Support change requests, change management, break/fix issues pertaining to SIEM 
  • Decommissioning of log sources as required
  • Oversee and manage upgrades to ensure minimum impact to operations (24/7)

 

SOAR

  • Assess, design, and improve SOC processes and workflows with a focus on integrating automation through Security Orchestration, Automation and Response (SOAR) tools and technologies
  • Implement new SOC automation and ensure continued compatibility with existing detection and response tools
  • Design custom use cases, perform onboarding to SOAR platform and UAT
  • Support and maintenance, troubleshoot, optimization of the SOAR platform

 

Requirements:

  • Experience in Implementation and support of any major SOAR platform
  • Experience in Implementation and support of any major SOAR platform and developing playbooks for automation
  • Experience with Python scripting language for automation
  • Use TCP/IP networking skills and technical knowledge in one or more security products
  • Excellent analytical thinking and problem solving skills
  • Strong oral (phone) and written (email) communication skills
  • Self managed and team oriented
  • Deadline and detail oriented   
  • Work under pressure with tight schedules and aggressive rollout plans

 

  • Must have basic knowledge in some of the following:
    • Cloud Solutions like AWS, MS Azure
    • Network Security Architecture Design
    • TCP/IP Networking Configuration & Troubleshooting
    • Windows / Unix / Linux Operating System Configuration & Troubleshooting
    • Firewall Policy Design & Management
    • Understanding of other security solutions like EDR, DLP, PIM
    • Experience writing/decoding exploit, vulnerability, and attack detection signatures.
    • Experience in IT solutioning consultancy
    • Working knowledge of the full software development lifecycle.