Share this Job

Senior Cyber Incident Responder

Date: 12-Sep-2022

Location: Singapore, Singapore

Company: Singtel Group

NCS is a leading technology services firm with presence in Asia Pacific and partners with governments and enterprises to advance communities through technology. Combining the experience and expertise of its 10,000-strong team across 61 specialisations, NCS provides differentiated and end-to-end technology services to clients with its NEXT capabilities of digital, cloud, platforms as well as core offerings in application, infrastructure, engineering and cyber security. NCS also believes in building a strong partner eco-system with leading technology players, research institutions and start-ups to support open innovation and co-creation. For more information, visit ncs.co. 

 

We are committed to a safe and healthy environment for our employees & customers and will require all prospective employees to be fully vaccinated.


Job Summary:

The NCS Cyber Risk Management & Security team is looking for a Senior Incident Response Analyst to be part of Cyber Operations function. As part of a new function, the incumbent will have the opportunity to work closely with multiple teams on the development of Cyber Operations and the ability to shape and influence the security monitoring process and other cyber operations activities. The incumbent will report to the Cyber Security Operations Lead and be responsible for responding to high-critical severity incidents, SIEM monitoring & investigation and has a part to play on formulating incident response runbooks.

 

Responsibilities:

  • Monitor and respond to security events and incidents using established incident response plan/runbook and creating process and procedures where none are already established.
  • Creation of SIEM custom detection rules to identify suspicious cyber threats or anomaly activities.
  • Experience responding to security events, including front-line analysis and escalation, on hacktivist, cybercrime, and APT activity.
  • Support cyber incident response plan/lifecycle to ensure proper assessment, containment, mitigation and documentation.
  • Reviews incident data and provide root cause analysis and recommendations on how to prevent future occurrences
  • Identify coverage and efficiency gaps in IR runbook, security data and response tooling.
  • Produce detailed incident reports and technical briefs for management and business leaders.
  • Be on standby rotation, responding to high severity incidents escalated by cyber security operations analysts.


The ideal candidate should possess:

  • Degree/Diploma or higher in Computer Science, Information Systems or equivalent
  • At least 5 years of experience in cyber security operations or cyber security engineering.
  • Strong knowledge of various automated security control systems, encryption, message authentication, vulnerability assessment, threat intelligence intrusion detection, penetration testing and incident response.
  • Experience responding to security events, including front-line analysis and escalation, on hacktivist, cybercrime, and APT activity.
  • Good knowledge in Incident response lifecycle, different Operating Systems, TCP/IP networking and application layers.