Cyber Security Lead Engineer

Job Description

You will be a member of the Group Information Security Team responsible for responding to threats and incidents to the corporate networks, systems (on-prem and cloud), and digital assets.

Key Responsibilities:

1. Act as the subject matter expert (SME) for the security systems owned by the security team.
2. Recommend and drive cyber security solutions and initiatives to improve the organization's cyber security posture.
3. Lead and drive major incidents towards mitigation and resolution in collaboration with multiple internal counterparts.
4. Ensure excellent communication to stakeholders, providing timely and accurate updates during incidents.
5. Respond to, assess, and investigate security events in collaboration with vendors.
6. Coordinate with internal stakeholders such as applications, network, and infrastructure teams for investigations.
7. Perform in-depth analysis and assess vulnerabilities, IOCs, cyber security intelligence, and open-source information to validate security risks and impacts, recommending appropriate countermeasures.
8. Develop and maintain cyber incident response and handling playbooks for various threat scenarios.
9. Recommend and implement tools to enhance detection, response, and recovery functions and overall security posture.
10. Develop methodologies to identify threat adversary tactics, techniques, and procedures.
11. Stay abreast of new and emerging cyber threats, attack vectors, etc., and assess their impact.
12. Provide strategic guidance and oversight to vendors, ensuring adherence to agreed-upon SLAs and KPIs.
13. Guide and mentor junior staff within the security operations team, providing support as needed.
14. Perform any relevant ad-hoc duties as required.

Requirements

1. Degree in IT or related fields, with at least 6 years of relevant information security working experience.
2. Professional security certifications (CISSP, CISA, CEH, GCIH, etc.) preferred.
3. Hands-on experience with SIEM, EDR, XDR, UEBA, and SOAR tools preferred.
4. Strong in-depth working knowledge in Networking, Cloud, Active Directory, Windows, and UNIX platforms, and Mitre framework.
5. Knowledge of cyber security threats, vulnerabilities, hacking, and exploit methods, etc.
6. Strong oral, written, presentation, and interpersonal skills.
7. Possess a positive attitude with drive, initiative, enthusiasm, and a keen sense of urgency in resolving high-priority issues.
8. Able to work independently and in a team-oriented, collaborative environment.
9. Experience in guiding and mentoring junior staff within a security operations team.
10. Candidates will be considered for a senior role commensurate with their experience.

We thank all candidates for your interest in Singapore Airlines, and regret that only shortlisted candidates will be notified.