Security Operations Engineer

Our client is seeking a Security Operations Engineer to join their fast-paced startup environment. This role requires hands-on experience managing and optimizing modern security tools. The ideal candidate is proactive, independent, and capable of driving security initiatives with minimal oversight.

Key Responsibilities:

• Configure, manage, and optimize SIEM and security monitoring solutions to enhance threat detection and response.
• Develop and fine-tune security analytics, automation workflows, and detection rules to improve visibility and reduce risk.
• Investigate security incidents, analyze root causes, and implement proactive mitigation strategies.
• Work with a range of security tools, including:
• SIEM solutions (Microsoft Sentinel, Splunk, QRadar, etc.)
• Endpoint Detection & Response (EDR/XDR) platforms (CrowdStrike, SentinelOne, Microsoft Defender, etc.)
• Vulnerability Management tools (Tenable, Qualys, Rapid7)
• Threat Intelligence platforms and frameworks (MITRE ATT&CK, STIX/TAXII, MISP)
• Network Security & Firewalls (Palo Alto, Fortinet, Cisco)
• Collaborate with internal teams to integrate security best practices across infrastructure, cloud, and applications.
• Stay ahead of emerging threats and continuously improve security operations through automation and threat intelligence.

Qualifications & Experience:

• Min 5 years of experience in Security Operations, SOC, or SIEM management.
• Strong expertise in configuring, managing, and tuning security monitoring tools.
• In-depth knowledge of security frameworks (NIST, CIS, MITRE ATT&CK, ISO 27001).
• Hands-on experience with incident detection, response, and threat hunting.
• Proficiency in scripting and query languages (e.g., PowerShell, Python, KQL, SQL) is a plus.
• Ability to work independently in a startup environment, adapting to evolving security challenges.

MORGAN MCKINLEY

EA Licence No: 11C5502

Registration No: R1767204

License Name: Toh Wen Hui