SOC Manager

SingaporePermanentS$100-149k

2 hours ago

JN -102025-1989825

New

Singapore Permanent S$100-149k

Lead and manage the Security Operations Centre (SOC), ensuring 24/7 monitoring, detection, and response to security threats.
Oversee the use, tuning, and enhancement of security monitoring tools, ensuring full visibility across on-premises, cloud, and hybrid environments.
Develop and maintain incident handling workflows, playbooks, and escalation processes to improve detection and response efficiency.
Provide technical leadership and guidance to SOC analysts in incident triage, containment, and remediation activities.
Manage and optimize SIEM and SOAR platforms to ensure high-quality alerting, automation, and threat response-experience with Palo Alto Cortex XSOAR and XSIAM would be a strong advantage.
Conduct threat hunting and leverage threat intelligence to proactively identify emerging risks and potential attack vectors.
Collaborate closely with Cyber Threat Intelligence, Vulnerability Management, and Incident Response teams to enhance detection and response capabilities.
Drive continuous improvement in SOC processes, technologies, and automation to increase operational maturity.
Lead post-incident reviews, root cause analysis, and develop recommendations to prevent recurrence.
Develop training and mentorship programs to upskill SOC analysts and ensure knowledge sharing across the team.

Bachelor's degree in Computer Science, Information Security, or a related field.
Minimum 8-10 years of experience in cybersecurity operations, with at least 3 years in a leadership or SOC management role.
Proven experience managing or operating SIEM and SOAR platforms (Splunk, QRadar, ArcSight, Palo Alto Cortex, or equivalent).
Strong understanding of incident response methodologies, MITRE ATT&CK framework, and security monitoring architectures.
Hands-on experience with network security, endpoint protection, threat intelligence, and log management tools.
Strong communication skills and ability to interact effectively with both technical teams and senior stakeholders.
Relevant certifications (e.g., CISSP, CISM, GIAC GCIA, GCIH, or similar) are preferred.