Cyber Monitoring & Detection Specialist

  • Job Category
    Public / Civil Service
  • Contract type

Job Description

The Government Technology Agency (GovTech) aims to transform the delivery of Government digital services by taking an outside-in" view, putting citizens and businesses at the heart of everything we do. We also develop the Smart Nation infrastructure and applications, and facilitate collaboration with citizens and businesses to co-develop technologies.

Join us as we support Singapore’s vision of building a Smart Nation - a nation of possibilities empowered through info-communications technology and related engineering.

Join us and you will play a key role in the Government Cyber Defence (GCD) of Cyber Security Group (CSG) as Cyber Monitoring & Detection Specialist.

Successful candidate plays a significant role in the monitoring and detection of cyber threats and will be managing a team of 24/7 Security Operations Centre (SOC) Level One (L1) analysts. Candidate is also responsible for the detection and prevention of threats, while protecting the digital assets and proprietary information of the Government.



What to expect:

  • Manage a team of SOC L1 analysts
  • Ensure SOC L1’s capability to perform daily operational real-time monitoring and analyse log data, network traffic and/or alerts generated by various security technologies 
  • Ensure SOC L1’s quality and timeliness in security incident detection, classification, escalation and reporting 
  • Ensure SOC L1’s standards and procedures are adhered to within defined SLAs
  • Perform timely incident escalation and work closely with stakeholder to ensure swift response to all reported incidents
  • Manage and track incident tickets and requests
  • Familiar with SOC processes and environment and is able to identify opportunities for continuous process improvements


How to succeed:

  • Bachelor’s Degree in Computer Science/Information Security or equivalent
  • Professional certifications, including GMON, CISSP or other relevant certifications
  • Preferably 3 years or more in Information Security experience
  • Experience with SIEM and SOAR technologies
  • Understanding of operating systems and platform (e.g. Windows, Linux)
  • Knowledge of networking concepts (LAN/WAN routing, TCP/IP
  • Understanding of current vulnerabilities, attacks and countermeasures
  • Knowledge of incident response is preferred
  • Ability to perform basic analysis on network and application logs
  • Knowledge of cyber kill-chain, MITRE Att&ck framework, threat intelligence and malware analysis is a plus
  • Good working knowledge of Cloud and Container technologies is a plus
  • Experience with vendor management is a plus
  • Familiarity with good security practices


Other Requirements:

  • Ability to multitask, prioritise and solid attention to details
  • Demonstrate a high degree of integrity, initiative, energy and endurance
  • Ability to learn
  • Possess good communication and interpersonal skills
  • Singapore Citizen only




Closing on 11 Mar 2022