Jobfoundry
Jobfoundry
Deloitte

T&T Analyst - L1 Security Operations Center (SOC) Analyst - SG

Deloitte
ConsultingSingapore, Singapore, SGOnsitePosted 2 weeks ago
Apply on company site

About the role

The L1 Security Operations Center (SOC) Analyst monitors and protects against cyber threats by vigilantly reviewing security events using SIEM, EDR, and WAF systems. The role involves investigating security incidents, performing threat hunting, and correlating alerts with the Mitre ATT&CK framework to ensure a rapid and accurate response.

ConsultingOnsiteCyber

Key Responsibilities

  • Vigilantly monitor security events using Security Information and Event Management (SIEM) systems and various security devices such as firewalls, Intrusion Prevention Systems (IPS), Endpoint Detection and Response (EDR), Web Application Firewalls (WAF), Anti-DDoS, and Anti-Spam solutions
  • Conduct initial investigation and analysis of security incidents, determine the scope and impact, and escalate as needed
  • Proactively search for potential threats and vulnerabilities within the network and systems
  • Assist with containment, eradication, and recovery efforts during security incidents
  • Analyze security alerts by correlating information from Threat Intelligence sources and providing detailed analysis using the Mitre ATT&CK framework
  • Create and manage tickets for each analyzed and escalated alert, ensuring timely and accurate incident response
  • Stay current on the latest threats, vulnerabilities, and attack techniques through research, training, and threat intelligence feeds
  • Document security incidents, investigations, and findings in clear and concise reports
  • Collaborate with other SOC analysts, security teams, and internal stakeholders to share information and coordinate actions
  • Participate in team meetings, training sessions, and improvement initiatives

Requirements

  • Bachelor Degree in Computer Science or other relevant fields
  • Ideally 1-2 year of experience as a L1 SOC Analyst
  • Strong understanding of cybersecurity principles and practices
  • Proficiency in using SIEM tools and security devices
  • Ability to analyse and correlate security alerts with threat intelligence
  • Familiarity with the Mitre ATT&CK framework
  • Excellent problem-solving and analytical skills
  • Effective communication skills and ability to work in a team environment
  • Relevant certifications (e.g., CEH, ECIH, CSA or L1 SOC Analyst) are a plus