具备 Splunk、IBM QRadar、Google SecOps 或 Microsoft Sentinel 使用经验。
熟悉 Python、Shell Script、自动化及 API 整合。
核心能力
Linux 系统管理
开源 SIEM 平台管理
安全监控与事件分析
检测工程(Detection Engineering)
SIEM 平台运维
生产环境故障排除
根本原因分析
独立营运管理能力
自动化与脚本开发
跨团队沟通能力
Job Summary
We are seeking a Security Detection & SIEM Engineer to support and enhance the organization's security monitoring, detection, and log management capabilities. This role is responsible for SIEM administration, security event analysis, detection engineering, and platform reliability across regional environments.
The ideal candidate will have hands-on experience in security monitoring operations, log analysis, behavioral detection, SIEM platform management, strong Linux administration skills, and technical troubleshooting capabilities.
This role primarily supports a production Open-Source SIEM environment. The successful candidate is expected to independently manage Linux systems, SIEM platform operations, production troubleshooting, and daily operational support with minimal supervision.
Key Responsibilities
Security Monitoring & Event Analysis
Perform daily security alert monitoring and analysis, including alert triage, classification, investigation, escalation, and case closure.
Support incident investigation and coordinate with infrastructure and application teams where required.
Investigate security events through log analysis and root cause identification.
Prepare weekly security monitoring and alert trend reports, including event summaries, detection metrics, and operational observations.
SIEM Administration & Detection Engineering
Lead SIEM configuration, log onboarding, rule tuning, and detection optimization across servers, applications, and network infrastructure.
Define and refine detection logic, including correlation rules, behavioral indicators, and monitoring use cases.
Maintain and improve AI-assisted detection and behavioral analysis workflows.
Support continuous improvement of detection content and operational effectiveness.
Log Management & Platform Operations
Deploy and manage log collection agents across Linux, Windows, and network devices to ensure stable and complete log coverage.
Support integration of OS and application logs for monitoring, correlation, and activity analysis.
Ensure platform health, log retention, monitoring coverage, and overall reliability of the SIEM environment.
Perform Linux system administration, troubleshooting, and production operational support.
Perform platform maintenance, upgrades, health checks, and operational improvements.
Conduct root cause analysis and resolve production-related platform issues.
Preferred Skills & Qualifications
Must Have
Minimum 5 years of experience in SIEM Administration, Security Monitoring, Detection Engineering or SOC Operations.
All Job Ads are subject to GrabJobs’s Terms of Service. We allow users to flag postings that may be in violation of those terms. Job Ads may also be flagged by GrabJobs moderation team. However, no moderation system is perfect, and flagging a posting does not ensure that it will be removed.
Be the first to receive the latest Back End Developer Full-Time Jobs in Singapore.
Setup your job alert:
By activating job alerts, I agree to GrabJobs Terms & Privacy Policy. I can unsubscribe to job alerts anytime.
Skip
GrabJobs is the no1 job portal in Singapore, connecting you to thousands of jobs fast!
Find the best jobs in Singapore, apply in 1 click and get a job today!