Cybersecurity Engineer

Company description:

Singapore Technologies Engineering Ltd

Job description:

Scope

• Perform log parsing and event mapping, as well as create custom parsers, to allow logs to be recognised by Security Information and Event Management (SIEM)
• Performing analysis of network traffic and create correlation rules in SIEM.
• Continuously monitor and analyze the performance of existing use cases and perform fine-tuning detection rules to reduce false positives.

• Configure detection rules and monitoring use cases for the customer and achieve signed off.

• Create comprehensive documentation for all developed use cases, ensuring clear guidelines for use and maintenance.

• Collaborate with Security Analysts on investigation of detected threats and anomalies.
• Collaborate with Security Orchestration, Automation and Response (SOAR) team to escalation alerts to customers for further investigation.