The Company:
Our client is a multi-national information technology company with its headquarters in Singapore.
It is also the largest Systems Integrator domestically.
The Project:
This project consists of multiple teams deployed within Cybersecurity Operations Command Centre delivering mission critical 24x7 threat monitoring, prevention, analysis, intelligence to high-valued clients.
The Role :
As a Security Analyst you will be responsible for the following:
- Provide 24x7 Level 1 network monitoring support based on the standard operating procedure (SOP) as well as training by the IT Service Operations /IT Service Manager.
- 12hr-shift rotational basis
- 8am to 8pm, 8pm to 8am (including public holidays where necessary)
- Conduct daily, weekly, scheduled checks using automated tools/solutions to initiate vulnerability scans of servers and determine the status of network routers/switches with reference to the SOP.
- Upon failure, troubleshoot, re-activate and re-schedule scanning.
- Escalate issues beyond level 1, to the Security Engineer for follow-ups, upon detection of security vulnerabilities.
- Track patch management activities on a daily basis
- initial reporting of vulnerabilities / availabilities of patches to successful remediation for servers and network routers / switches.
- Leverage on provided tools and solutions to monitor, track and escalate to the relevant stakeholders for all outstanding vulnerabilities detected in the scans as well to the internal security team for remediation.
- Ensure ongoing maintenance of asset inventory for onboarding of new systems and offboarding of existing systems to be scanned by the relevant tools.
- Conduct monthly / ad-hoc compliance audit scan for servers and routers / switches.
- Escalate identified issues to the Security Engineer that are follow-ups and security compliance related.
- Conduct ad-hoc scan of servers upon detection and identification of emerging threats.
Basic Requirements:
- Certification in Diploma or Higher Nitec with a focus or relevance to Information Technology
- Has a keen interest in the field of Cybersecurity (blue team)
- Independent as well as being as a fast learner in the process of being initiated to the SOC environment
- Exposure to SOC environment as well as its operational scope during the course of your education would be beneficial
Skillsets attained:
In the course of your tenure as a L1 Cybersecurity Analyst, you will be exposed to, learn and acquire some of the following knowledge:
- Understand how to conduct vulnerability assessments, penetrating testing & risk assessments by using various scanning and penetration testing tools
- E.g. Nessus
- Familiarity with Security Incident & Event Management (SIEM) tools
- E.g. Splunk
- Familiar with operating system environments
- Unix
- Windows 2000
- Windows NT & web server security such as OS tightening, SSO and virus scanning
- Basic knowledge of Information Security concepts and principles
- OSI 7 Layers