Cyber Security Engineer

CYBER SECURITY ENGINEER - SIEM

Important Information

Location: Singapore

REQUIREMENT

• Strong hands-on SIEM implementation (Elastic / ELK Stack / Elastic Security preferred, Splunk / QRadar / Microsoft Sentinel acceptable) including architecture design, log onboarding, parsing, index management, correlation rule creation, dashboards, tuning, scaling, HA setup and production rollout.
• SIEM engineering beyond SOC monitoring, including detection rule development, custom queries (KQL / SPL / Elastic DSL), performance tuning and log pipeline optimization
• Log source integration across firewalls, endpoints, servers, Active Directory, cloud platforms and security tools
• Threat detection engineering aligned to frameworks (e.g., MITRE ATT&CK), false positive reduction and rule optimization
• Security solution rollout from POC to full deployment, including UAT execution and vendor coordination
• Managing security incidents i...