DFIR (Intrusion Analyst)

  • Job Category
    Public / Civil Service
  • Contract type

Job Description

The Government Technology Agency (GovTech) aims to transform the delivery of Government digital services by taking an "outside-in" view, putting citizens and businesses at the heart of everything we do. We also develop the Smart Nation infrastructure and applications and facilitate collaboration with citizens and businesses to co-develop technologies. Join us as we support Singapore�s vision of building a Smart Nation - a nation of possibilities empowered through info-communications technology and related engineering.You will play a key role in the Government Cyber Defence (GCD) of Cyber Security Group (CSG) as Digital Forensic and Incident Response (DFIR) Analyst to manage and investigate cybersecurity incidents. Successful candidate will be responsible for delivering three core domains, incident response, digital forensics and malware analysis, specialising in either one of the domains. Candidate needs to have the passion for DFIR and have the desire to learn and improve. Critical thinking and great communication skills are necessary for this role to convey technical concepts and advise decision makers on the best course of action. This is a key position in the Cyber Incident Response Team (CIRT).What to Expect:Ensure timely response to security incidents, root cause analysis and closure of incidentInvestigate cybersecurity incidents that may involve digital forensic analysis, malware analysis and log analysisAssess cybersecurity threats and vulnerabilitiesDevelop and test incident response playbooks and processesMaintain situational awareness and keep current with cyber security news and threat actor Tactics, Techniques and Procedures (TTPs)Prepare and review incident reports to update stakeholdersHow to succeed:Bachelor�s Degree in Computer Science/Information Security or equivalentProfessional certifications, including EnCE, GCFA, GREM, GNFA, GCTI, CISSP or other relevant certificationsPreferably 2 years or more of experience as a full time incident responder/digital forensic/malware analysis or related disciplineUnderstanding of operating systems and platform (e.g. Windows, Linux)Knowledge of computer networking, LAN, and serverProficient in Forensic Tools such as Encase, FTK or AutopsyAbility to perform basic static and dynamic malware analysisAbility to analyse network and application logsGood working knowledge of Cloud and Container technologies are a plusFamiliarity with good security practicesOther Requirements:Ability to multitask, prioritise and solid attention to detailsDemonstrate a high degree of integrity, initiative, energy and enduranceWillingness to learnPossess good communication and interpersonal skillsSingapore Citizen only

Closing on 16 Oct 2021