Sign in or register for a JobTech account.

Jobs that require siem platforms skill

Marina Bay Sands Pte Ltd
18Mar
Senior Manager, Enterprise Architect
Marina Bay Sands Pte Ltd   via JobsCentral



JOB SCOPE

Based upon an understanding of business needs, contribute vision into the strategic technology roadmap.

Balance need for lasting, strategic solution vs. rapid payback opportunities of a more tactical nature.

Take into consideration of the investment requirements, business strategy, technology trends, vendor lifecycle, regulatory conditions and local market capabilities, all contribute to the analysis of best course of action for the enterprise solution.

Responsible for the development of contributions    Read more

to Enterprise Architecture standards, patterns, position papers and engagement reporting.

Work with peers and stakeholders across the LVS properties to support intake of business requests, vetting them against defined standards, best practices and operational capabilities.

Identify opportunities to leverage reusable global solutions and seeks technology opportunities that can lead to business advantage.

Monitor and coordinate the work of other IT specialist working on projects to ensure compliance to enterprise plan.

Perform all duties are to be performed in accordance with departmental and Las Vegas Sands’ policies, practices, and procedures.

JOB REQUIREMENTS

Bachelor’s Degree in Technology or equivalent.

Minimum 7 years of relevant work experience.

Knowledge of security framework standards: NIST, COBIT, ISO

Familiarity with solutions that comply with compliance regulations such as: PCI, GLBA, SOX, Basel III

Experience implementing controls for privacy legislation such as: HIPAA, COPPA, FCRA, GLB and GDPR

Experience with Information Security technologies, markets, and vendors (firewall, intrusion detection, advanced threat prevention, data loss prevention, assessment tools, SIEM, NAC, encryption, PKI)

Experience architecting networks and implementing changes which avoid disruption of ongoing operations or increase risk of compromise.

Extensive experience with enterprise technologies including, but not limited to: Campus and Core network infrastructure, multicast networks, fabric overlay designs, routers, switches, wireless controllers, proxy, firewalls, load balancers, packet brokers and relative security appliances.

Experience in networking and routing protocols (i.e. OSPF, BGP,EIGRP)

Experience with UNIX/LINUX Systems, Wintel Platforms, Converged and Hyperconverged technology stacks, Web services, Containers, and Application development platforms as it relates to network requirements and implementation

Experience with highly resilient solution designs and technologies

Familiar with Enterprise Architecture concepts, design principles, best practices, standards, and processes.

Experience with software interaction with databases such as DB2, Oracle, MS SQL, Hadoop, NOSQL, and others

Familiar with cloud offerings including, but not limited to, Alibaba, Amazon Web Services, Azure, and Google Cloud Platform.

Knowledge of big data and machine learning a plus.

Familiar with container platforms and orchestration such as Docker and Kubernetes

Knowledge of software vulnerabilities and remediation (OWASP/SANS CWE)

Experience implementing identity strategies and application integrations including LDAP, Kerberos, SAML, OAuth, OpenID Connect

Excellent interpersonal skills to effectively communicate with both technical and non-technical peers and business stakeholders, as well as executive level management.

Ability to communicate clearly in a multicultural, multinational environment and in cross-functional matrixed teams

Ability to represent information in graphical forms that augment textual representations in natural language, including using modelling languages, developing process flows, creating data and topology diagrams, etc.

Understanding of business processes and basic corporate finance, management and accounting principles and strong problem solving ability

Ability to analyze qualitative data and demonstrates pragmatic judgment

Demonstrates a strong attention to detail

Demonstrates the capacity to manage changing priorities, ambiguity and maintain direction through proactive planning and organized approaches to work

Skills
United Overseas Bank Ltd (UOB)
18Mar
Avp, Senior Security Operations Centre Analyst, Ciso
United Overseas Bank Ltd (UOB)   via JobsCentral



The Security Operation Center (SOC) is seeking enthusiastic, passionate and technically strong Cyber Security Analyst. Senior Analyst will act as subject matter expert for SOC.

Responsibilities:

Perform deeper analysis, trending and root cause analysis of the events/incidents handled by SOC Analyst.

Work on escalated security incidents (malware infections, unauthorized access, malicious emails, Phishing, Distributed Denial of Service (DDoS) attacks, etc.)

Analysis of cyber threats by deep packet inspection.

Detection    Read more

of threat by analyzing large set logs from different security & Network devices, differentOperating system, Databases, Web servers/Applications etc.

Enhance and Build Cyber threat detection use cases and assist in analyzing & reducing false positive

Identify infection/compromise in the company utilizing threat intelligence and indicators of compromise (IOCs) from different threat Intel sources and regulators.

Interface with Cyber Intel, Engineering and security teams.

Assist in Incident Response for Detected/Reported Cyber security Incidents.

Generate security reporting and metrics as required

Process improvement and coaching to SOC Analyst.

Stay current on the latest Cyber threats, Attacks and vulnerabilities etc.

Job Requirements

ITC/Diploma/Degree in Computer Science / IT Security from a recognized education institution

Professional security related qualification (e.g. SANS GCIA, GSEC, GCIH) will be favorable although not mandatory

Min 5 to 7 years of relevant experience in similar in SOC, Cyber Security Analysis, Investigation and Incident response.

Strong understanding of Networking, Operating System and Cyber Security concepts.

Strong practical experience in Cyber security: Cyber kill chain, TTP, threat intelligence, malware triage.

Strong understanding of Different Attacks on System, Network, Applications.

Strong knowledge in Internet infrastructure, networking technology and network security (i.e. DNS, DHCP, Firewall, WAF, IDS, IPS, VPN, APT and TCP/IP protocols)

Malware triage and analysis capability will be an advantage

Working experience with major SIEM will be an advantage

Expert in analyzing different logs to detect cyber threats (i.e. Security Devices, Operating Systems, Network Devices, Databases, and Application/Web Servers etc.)

Good written and verbal communication skills

Skills
United Overseas Bank Ltd (UOB)
18Mar
Manager/Senior Officer, Security Operations Centre Analyst, Information Security
United Overseas Bank Ltd (UOB)   via JobsCentral



The Security Operation Center (SOC) is seeking enthusiastic, passionate and technically strong Cyber Security Analyst. The successful candidate will have experience in incident triage, security threat monitoring, security compliance monitoring and familiar with SOC processes and environment. The analyst will be working in a 24x7x365 shift environment and will respond to security incidents in Intelligence driven SOC.

Responsibilities:

The analyst will be responsible for performing daily operational real-time monitoring and    Read more

analysis of security events from multiple sources.

Triage security incidents (malware infections, unauthorized access, malicious emails, Phishing, Distributed Denial of Service (DDoS) attacks, etc.)

Analysis of cyber threats by deep packet inspection.

Detection of threat by analyzing large set logs from different security & Network devices, differentOperating system, Databases, Web servers/Applications etc.

Enhance and Build Cyber threat detection use cases and assist in analyzing & reducing false positive

Identify infection/compromise in the company utilizing threat intelligence and indicators of compromise (IOCs) from different threat Intel sources and regulators.

Analyst will be responsible for identification, classification and prioritization of Incident.

Assist in Incident Response for Detected/Reported Cyber security Incidents.

Generate security reporting and metrics as required

Perform daily health check on the system health status

Stay current on the latest Cyber threats, Attacks and vulnerabilities

Job Requirements

ITC/Diploma/Degree in Computer Science / IT Security from a recognized education institution

Professional security related qualification (e.g. SANS GCIA, GSEC, GCIH) will be favorable although not mandatory

Min 3 to 5 years of relevant experience in similar capacity but candidates without relevant industry experience but have strong passion and proven track of learning/exploring cyber security can apply.

Strong understanding of Networking, Operating System and Cyber Security concepts.

Good understanding of Cyber security: Cyber kill chain, TTP, threat intelligence, malware triage.

Good understanding of Different Attacks on System, Network, Applications.

A good knowledge in Internet infrastructure, networking technology and network security (i.e. DNS, DHCP, Firewall, WAF, IDS, IPS, VPN, APT and TCP/IP protocols)

Malware triage and analysis capability will be an advantage

Working experience with major SIEM will be an advantage

Experience in analyzing different logs to detect cyber threats (i.e. Security Devices, Operating Systems, Network Devices, Databases, and Application/Web Servers etc.)

Good written and verbal communication skills

Process and procedure adherence

Strong analytical and problem solving skill

Work in a rotational 24/7 SOC environment

Skills
M1 Limited
17Mar
Senior/Network Security Engineer, Cloud Solutions
M1 Limited   via JobsCentral



Roles & Responsibilities

Plan, design, implement, configure, maintain and troubleshoot network security devices and applications

Deploy Next Generation firewall including IPS / IDS / UTM. Identify appropriate firewall solution to customers

Streamline security policies, conduct vulnerability assessment and updates

Provide analysis of firewall / IDS / IPS logs and deliver monthly Service Report and Incident Report

Provide technical expertise, guidance on IT security design, understanding of SIEM requirements

Engage IT Security Consultant in Risk    Read more

Assessment discussions

Participate in network security design assessment and respond to / investigate security advisories

Requirements

Degree or Diploma in IT / Computer Science or it related discipline

Minimum 5 years’ experience in managing and implementing security infrastructure such as firewall / IDS / IPS / etc.

Working experience with Cisco, Palo Alto, Check Point, Fortinet, Juniper or any other Firewall devices

Certification in CISSP (Certified Information Systems Security Professional), CISM (Critical incident stress management), CISA (Certified Information Systems Auditor), or equivalent

Good understanding in the area of IP networking, WAN routing and LAN switching, with CCNA (Cisco Certified Network Associate), JNCP (Juniper Networks Certification Program) or equivalent.

Good communication skills and ability to convey complex security concepts to all levels of management

Technical knowledge or experience integration with other products would have added advantage

Skills
M1 Limited
17Mar
Senior/Network Security Engineer
M1 Limited   via JobsCentral



Roles & Responsibilities

Plan, design, implement, configure, maintain and troubleshoot network security devices and applications

Deploy Next Generation firewall including IPS / IDS / UTM. Identify appropriate firewall solution to customers

Streamline security policies, conduct vulnerability assessment and updates

Provide analysis of firewall / IDS / IPS logs and deliver monthly Service Report and Incident Report

Provide technical expertise, guidance on IT security design, understanding of SIEM requirements

Engage IT Security Consultant in Risk    Read more

Assessment discussions

Participate in network security design assessment and respond / investigate security advisories

Requirements

Degree or Diploma in IT/Computer Science or it related discipline

Minimum 3 years’ experience in managing and implementing security infrastructure such as firewall/IDS/IPS, etc

Working experience with Cisco, Palo Alto, Check Point, Fortinet, Juniper or any other Firewall devices

Certification in CISSP (Certified Information Systems Security Professional), CISM (Critical incident stress management), CISA (Certified Information Systems Auditor), or equivalent

Good understanding in the area of IP networking, WAN routing and LAN switching, with CCNA (Cisco Certified Network Associate), JNCP (Juniper Networks Certification Program) or equivalent.

Good communication skills and ability to convey complex security concepts to all levels of management

Technical knowledge or experience in integration with other products would have added advantage

Skills
Ernst & Young Advisory Pte. Ltd.
17Mar
Senior Associate , Cyber Security, Risk (Financial Services), Advisory, Singapore
Ernst & Young Advisory Pte. Ltd.   via JobsCentral



Roles & Responsibilities

Cyber threats, social media, massive data storage, privacy requirements and continuity of the business as usual require heavy information security measures. As an information security specialist, you will lead the implementation of security solutions for our clients and support the clients in their desire to protect the business.

The opportunity

As a cyber security specialist, you will lead the implementation of security solutions for our clients and support    Read more

the clients in their desire to protect their business. You will belong to an international connected team of specialists helping our clients with their most complex information security needs and contributing toward their business resilience. You will be working with our Advanced Security Centers to access the most sophisticated tools available to fight against cyber-crime.

We will support you with career-long training and coaching to develop your skills. As EY is a global leading service provider in this space, you will be working with the best of the best in a collaborative environment. So whenever you join, however long you stay, the exceptional EY experience lasts a lifetime.

Requirements

Your key responsibilities

This is a role where no two days are the same – so you’ll find yourself taking on plenty of new responsibilities as you go. You’ll work alongside clients and colleagues, balancing your time between developing security strategies, advising stakeholders, providing workshops and supporting business development. If you’re flexible and ready to adapt to a constantly changing environment, there’s no better place to develop your skills. Since you’ll be working directly with clients, some travel will be required.

Skills and attributes for success

Experience in delivering multiple security projects and solutions across one or more of the following domains: (Information Security domains: Cyber Program Management, Cyber Threat Management, Identity & Access Management, Data Protection, Privacy, Security Operations and Cyber Analytics.) This experience should include both advisory, implementation and operation experience

Understand security concepts and how they apply to business and technology solutions

Be able to articulate threats and risk to business and technology leaders

Understand project management concepts and how they can be applied to security related projects

To qualify for the role you must have

A recognized university degree in Computer Science, Computer/Electrical Engineering, Information Technology or equivalent, together with at least 5 years of relevant experience

Preferably with 2 years’ experience in business consulting role in a leading consultancy firm

Strong interest in the field of information security

Creative, independent with good problem solving skills

Excellent communicator with strong analytical, interpersonal and writing skills

Ideally, you’ll also have

Industry related certification preferred (e.g. CISSP, CISA, CISM, SABSA, PRINCE2, TOGAF, ITIL).

Solution Level Certifications, OSCP, CREST, GIAC would be advantageous, as well as penetration testing experience.

Solution design of Threat & Vulnerability Management solutions such as implementation of SIEM (e.g. ArcSight), Incident Response (e.g. Resilient) & Security Analytics (e.g.RSA Security Analytics) within the context of a Security Operating Centre framework

Familiar with at least one of the following IAMtechnologies such as SailPoint, RSA Aveksa / VIA & Oracle (OIM, OIA)

What we look for

Highly motivated individuals with excellent problem-solving skills and the ability to prioritize shifting workloads in a rapidly changing industry. An effective communicator, you’ll be a confident team player that collaborates with people from various teams while looking to develop your career in a dynamic organization.

What working at EY offers

We offer a competitive compensation package where you’ll be rewarded based on your performance and recognized for the value you bring to our business. We also offer you:

Support, coaching and feedback from some of the most engaging colleagues around

Opportunities to develop new skills and progress your career

The freedom and flexibility to handle your role in a way that’s right for you

About EY

As a global leader in assurance, tax, transaction and advisory services, we’re using the finance products, expertise and systems we’ve developed to build a better working world. That starts with a culture that believes in giving you the training, opportunities and creative freedom to make things better. Whenever you join, however long you stay, the exceptional EY experience lasts a lifetime. And with a commitment to hiring and developing the most passionate people, we’ll make our ambition to be the best employer by 2020 a reality.

If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible.

Join us in building a better working world. Apply now.

Skills
Goldtech Resources Pte Ltd
16Mar
Senior Network Engineer/Manager
Goldtech Resources Pte Ltd   via JobsCentral



Roles & Responsibilities

Senior Network Engineer

Job Description

Establishes networking environment by designing network configuration; directing network installation; defining, documenting, and enforcing network standards.

Experienced in implementing and administrating network devices such as Switches, Routers, Firewalls, Wireless Controllers, and Wireless Access Points.

Exposure with technologies such as SNMP, TRAPS, syslog, automation, UNIX/LINUX scripting and SIEM.

Experienced in Administration and troubleshooting in network environment.

Strong understanding on internetworking technologies likes VLAN, STP, and Routing Protocol like    Read more

RIP, ISIS, BGP, and OSP as well as MPLS-based technologies in Internetworking protocols like HTTP, FTP, SMTP, DNS etc.

Working knowledge in implementing and administrating common TCP/IP-based services, including DNS, DHCP, HTTP, FTP, TFTP, SSH, SMTP, etc.

Secures network system by establishing and enforcing policies; defining and monitoring access.

Maximizes network performance by monitoring performance; troubleshooting network problems and outages; scheduling upgrades; collaborating with network architects on network optimization.

Respond swiftly within committed SLA time to onsite network troubleshooting requests issued.

Perform maintenance activities related to Infrastructure or Software Upgrade Rollouts

Review and recommend processes and procedures to manage operations efficiently.

Ensure that service quality are met and maintain SLA

Requirements

Degree or Diploma in Engineering or Computer Science or similar.

3 years working experience in a network engineering role or equivalent network architectural capacity.

Understanding of Network protocols and data communications in business environment.

Strong Security knowledge with hand-on installation of firewalls and IDS. Firewalls hand-on skill sets should include PIX, ASA, FWSM, Checkpoint and NetScreen.

Experience in network architecture, management, capacity planning & monitoring.

Experience with Network Switches, Routers, and Load Balancers is required.

Certification in CCNA, CCNP, CCIE.

Strong troubleshooting and problem analytical skill.

Must have excellent team building and communication skills.

Possess a pro-active attitude and customers oriented

Skills
Encora Technologies Pte Ltd
16Mar
Information Security
Encora Technologies Pte Ltd   via Monster

Should have a minimum experience of 8 to 10 years in managing Information security operations with minimum of 5 years of experience in Information security projects and BAU implementation. Candidate should be well versed with management and operations of devices such as Firewalls, SIEM, PIM/PAMVPN, Configuration Compliance- Qualsys CCS, Nessus, IDS/IPS, Web filtering solutions, Email gateway solution.

He should have basic understanding of project life-cycle and should have    Read more

handled/Implemented at least 4 information security projects in his tenure. Experience in managing data center activities is added advantage.

Knowledge of Operating system (Windows/Linux) working is desirable. Basic understanding of Web servers and DB (Oracle/MS SQL) is a plus.

Should have experience on client management and have clear communication. He should be having strong understanding on the different ITSM process in an organization (Change Management/Incident Management/Release Management etc.)

Certification requirement – CISSP, CISM, CCNA Security.

Product Expertise: -

1. Compliance tools - Qualsys Symantec CCS, Nessus. – 3-4 Years

2. SIEM:- McAfee – 5 Years

3. IDS/IPS:- McAfee Intrushield NS series. – 5 years

4. Advance persistent threat

5. Antivirus Soultions.

6. PIM/PAM – ERPM

7. Web Filtering solution:- Zscaler

8. Email Gateway solution:- Symantec Messaging Gateway (Brightmail)

9. Data Base security.

10. Firewall Management: - Algosec

11. Security Analytics.

12. Strong documentation skills

Skills
United Overseas Bank Ltd (UOB)
15Mar
Manager, Security Operations Centre Analyst, Ciso
United Overseas Bank Ltd (UOB)   via JobsCentral



The Security Operation Center (SOC) is seeking enthusiastic, passionate and technically strong Cyber Security Analyst. The successful candidate will have experience in incident triage, security threat monitoring, security compliance monitoring and familiar with SOC processes and environment. The analyst will be working in a 24x7x365 shift environment and will respond to security incidents in Intelligence driven SOC.

Responsibilities:

The analyst will be responsible for performing daily operational real-time monitoring and    Read more

analysis of security events from multiple sources.

Triage security incidents (malware infections, unauthorized access, malicious emails, Phishing, Distributed Denial of Service (DDoS) attacks, etc.)

Analysis of cyber threats by deep packet inspection.

Detection of threat by analyzing large set logs from different security & Network devices, differentOperating system, Databases, Web servers/Applications etc.

Enhance and Build Cyber threat detection use cases and assist in analyzing & reducing false positive

Identify infection/compromise in the company utilizing threat intelligence and indicators of compromise (IOCs) from different threat Intel sources and regulators.

Analyst will be responsible for identification, classification and prioritization of Incident.

Assist in Incident Response for Detected/Reported Cyber security Incidents.

Generate security reporting and metrics as required

Perform daily health check on the system health status

Stay current on the latest Cyber threats, Attacks and vulnerabilities

Job Requirements

ITC/Diploma/Degree in Computer Science / IT Security from a recognized education institution

Professional security related qualification (e.g. SANS GCIA, GSEC, GCIH) will be favorable although not mandatory

Min 3 to 5 years of relevant experience in similar capacity but candidates without relevant industry experience but have strong passion and proven track of learning/exploring cyber security can apply.

Strong understanding of Networking, Operating System and Cyber Security concepts.

Good understanding of Cyber security: Cyber kill chain, TTP, threat intelligence, malware triage.

Good understanding of Different Attacks on System, Network, Applications.

A good knowledge in Internet infrastructure, networking technology and network security (i.e. DNS, DHCP, Firewall, WAF, IDS, IPS, VPN, APT and TCP/IP protocols)

Malware triage and analysis capability will be an advantage

Working experience with major SIEM will be an advantage

Experience in analyzing different logs to detect cyber threats (i.e. Security Devices, Operating Systems, Network Devices, Databases, and Application/Web Servers etc.)

Good written and verbal communication skills

Process and procedure adherence

Strong analytical and problem solving skill

Work in a rotational 24/7 SOC environment

Skills
IBM
13Mar
Senior Consultant_Security Intelligence and Operations (SIOC)
IBM   via IBM

The Consultants SIOC should have in-depth of knowledge and experience in the core security domain Security Intelligence and Operations and should be able to speak across the entire security landscape as well. The consultants in the BeNeLux security services practice are advisors and management consultants who provide subject matter expertise in the form of briefings, workshops, and/or consulting engagements within their domain that assess a client’s security capabilities    Read more

as well as recommending solutions to enhance a client’s overall security capabilities.  Such client security capabilities may involve policy, process, technology, or organizational areas.  Consultants will identify gaps in the current environment and recommend best practices or solutions to reduce client risk and increase their ability to deal with emerging threats and risks to the organization. Consultants should be able to implement their recommendations within the client's situation and guide transformation processes. They can express strategic and operational directions to the client’s senior management, executive team and operational teams. They are ready to share their knowledge and experience with clients and other team members.



Tasks & accountabilities







Design, build and implement security incident and event management  and monitoring systems for a client environment (SIEM – SOC)






Advise and design Incident Use Cases for different market industries and implement them






Align to widely accepted security standards and frameworks and security with overall business and technology strategy






Identify and communicate current and emerging security threats






Adapt security architecture elements to mitigate threats as they emerge






Create solutions that balance business requirements with information and cyber security requirements






Identify security design gaps in existing and proposed architectures and recommend changes or enhancements








Core consulting skills







Strong communication and presentation skills and able to align the abstraction level with the audience (from customer representative to technical people)






Ability to guide groups and be a primary facilitator






Strong writing skills






Comfortable working in a project based / client serving model






Ability to shape client expectations






Drive client pursuits and engage in complex deals






Ability to work with global and diverse teams in a dynamic environment






Ability to work in a matrix management model







Security Domain Skills:







In-depth knowledge in core security domain SIOC (SIEM & SOC)






Experience in the design and deployment of technology and solutions in core domain SIOC






Knowledge of SIEM products on the market






Basic understanding of compliance issues (ISO 27001, SSAE 16, COBIT)






You are familiar with the IAM concepts and are ready to enlarge your knowledge on the subject.






You are familiar with the Security aspects of a multi-platforms environment (work in collaboration with Technical, Security, and Compliance teams)






You have a customer oriented spirit and are service minded with a sense for new business






You have a good transversal technical knowledge to be able to speak with all other IBM teams






Autonomous, you can integrate easily in the current team






Proactive, analytic and meticulous






Fluent in English







The successful consultant will be an internal advisor to other IBM consultants and to clients.  The consultant will assist in pre-sales, sales, deal closure, and especially the delivery of security consulting and transformation services.

Skills