• Senior Threat Research Analyst - Security Monitoring & Analytics Jobs in Singapore - 25697110

  • Standard Chartered Bank Ltd
  • Singapore
  • Save Job
  • 10 - 13 Years
  • Posted : 28 days ago

Job Description:

We are a leading international bank focused on helping people and companies prosper across Asia, Africa and the Middle East

To us, good performance is about much more than turning a profit Its about showing how you embody our valued behaviours - do the right thing, better together and never settle - as well as our brand promise, Here for good

Were committed to promoting equality in the workplace and creating an inclusive and flexible culture - one where everyone can realise their full potential and make a positive contribution to our organisation This in turn helps us to provide better support to our broad client base

Job Purpose

Cyber Security Services (CSS) is a critical function within Standard Chartered Bank operating under the overall purview of Chief Operating Office Chief Information Security Officer (CISO)

The CSS team is made up of cyber security thought leaders, who are accountable for the provision of a global set of cyber security services and products in order to maintain and continuously improve Banks cyber security posture in todays ever evolving cyber security landscape

The CSS team protect the Bank from cyber security threats by delivering effective information security technology services, managing and responding to security incidents to ensure, and support the continuity and growth of Banks business operations; and meet the both internal and external stakeholders expectations across 70 countries and territories, in which SCB operates

This role is within the Security Monitoring and Analytics Service line and supports the Cyber Defence Centre (CDC) to drive the threat detection strategy and roadmap for the bank The role will work closely with senior security personnel, product managers across service lines, architects, security officers, and development and support teams to ensure relevant logs/configurations are in place to ensure threat use cases are operating as intended The candidate will develop attack scenarios based on real world examples to ensure detection capabilities and gaps are identified and remediated The candidate will be also be responsible for working with teams to ensure behavioural based detection capabilities are continuously matured and tested This is a great opportunity for a former red/blue/forensics/SOC team member to provide security research and implement a proactive detection/prevention strategy across the bank

The Role Responsibilities

Work closely and collaborate with a broad range of stakeholders including senior business leaders, application owners, security operations (eg, CDC, Threat Intelligence, Threat Hunting), and Security Content Engineers to ensure that threat use cases are fit for purpose and meeting expectations based upon the Banks threat model
Manage aspects of the threat use case lifecycle framework (eg, governance, development, testing, implementation, tuning, metrics) to ensure the service is operating within KPIs
Lead a team of cyber threat use case security analysts to ensure required logs, audit configurations, reference data, and other dependencies are onboarded to achieve the desired outcome of threat use cases
Conduct research on latest threats and trends across Cloud, Containers, Infrastructure, and emerging technologies
Support the red team/adversary emulation and pentesting teams to ensure gaps in detection are remediated (when possible) and/or compensating controls are in place
Integrate and align existing threat use case library into MITRE ATT&CK framework to define and measure maturity level(s) for detection capabilities
Proactively identify gaps in detection capabilities and develop/drive remediation strategy to address current gaps
Develop and implement a testing/exercise strategy to ensure existing threat use cases are operating as intended
Identify opportunities to implement automated response/triage through SOAR platform where feasible
Ensure all regulatory requirements for security logging and monitoring and required threat use cases are being met
Work closely with other service lines and product managers to ensure new security technologies are integrated into the threat use case library
Conduct business use case modelling sessions with senior business and application stakeholders to identify threat scenarios specific to their business and implement respective detect/prevent capabilities

Our Ideal Candidate

At least 10 years experience in technology, with 6 years in cyber security operations (eg, SOC, Threat Intelligence, Hunt, Forensic) with a good understanding of incident response
Understanding of technology business risk(s) inherent to the financial industry and the ability to translate/communicate risk into threat use cases/scenarios
Experience developing custom security content/rules in SIEM Platforms
Experience working with senior business and application stakeholders to identify threat scenarios and implement relevant protect/detect capabilities
Extensive experience with security tool stack (eg, endpoint, web, proxy, SIEM, network) and how they fit into detection capabilities
Familiarity of relevant logs sources and required configurations across multiple operating systems, network devices, cloud required to achieve threat use cases
Experience coordinating, leading, and conducting threat scenario based exercises across red/blue teams to ensure threat use cases and detection maturity is continuously tested and refined
Strong understanding of Mitre Att&ck and how it can be leveraged
Experience with Yara, Snort, and parsers
Strong understanding of cloud facing services (eg, AWS, Azure, Google)
Understanding of how threat intelligence fits into the threat detection strategy
Experience integrating user behavioural analytics into detection strategy and integrating SOAR capabilities in the SIEM platform(s)
Experience working in a heavily regulated environment, preferably in the finance sector
Excellent communicator with strong interpersonal skills tailored to the relevant audience
Able to manage senior stakeholder expectations with a keen sense of what is realistic and achievable in a large complex environment
Ability to work across functional teams to incorporate security products into SIEM
Proactive self-starter, takes ownership for issues and drives remediation with excellent problem analysis skills and solution synthesis
Stays abreast of latest happenings in technology and relation to cyber security

Apply now to join the Bank for those with big career ambitions

To view information on our benefits including our flexible working please visit our career pages

Profile Summary:

Employment Type : Full Time
Eligibility : Any Graduate
Industry : Banking
Functional Area : IT Software : Software Products & Services
Role : System Security
Salary : As per Industry Standards
Deadline : 19th Jul 2020

Key Skills:

Taking these free online tutorials can help you get your next job

People who search this job also searched for the following Keywords

Salary trends based on over 1 crore profiles

View Salaries

All rights reserved © 2020 Wisdom IT Services India Pvt. Ltd DMCA.com Protection Status