MSD Associate Director Cyber Detection Response 

Singapore, Singapore 

624129402

Job Description

Responsibilities:

• Run the company's SOC and Incident Response functions during Asia Pacific business hours.

• Lead, coach, mentor, and develop a team of outstanding technical security professionals.

• Own and lead investigations into complex cyber incidents and advanced threats.

• Provide expert technical advice to SOC and IR analysts, enhancing their effectiveness in managing cybersecurity incidents.

• Develop and engineer threat detection logics to detect complex threat actor behaviors.

• Identify opportunities for workflow automation within incident analysis procedures.

• Ensure comprehensive technical incident documentation is accurately followed for each incident.

• Suggest improvements to SOC and Incident Response processes.

• Act as Deputy Cyber Fusion Center Regional Lead.

Qualifications:

• Ability to effectively lead technical teams, fostering collaboration and innovation within incident response functions.

• Robust background in incident response and cybersecurity, with hands-on experience in real-world scenarios.

• Ability to lead effectively during high-pressure situations, managing crises and coordinating response efforts.

• Aptitude for providing expert technical advice and constructive feedback to SOC and IR analysts.

• Solid knowledge of frameworks such as NIST, SANS, and MITRE ATT&CK to guide incident response best practices.

• Experience presenting incident response findings and conducting training sessions for SOC and IR teams to enhance their capabilities.

• Proficient with threat intelligence consumption to drive operational improvements.

• Strong grasp of common operating systems, security technologies, and networking components.

• Exceptional documentation skills for maintaining compre hensive records of incidents, including actions taken and outcomes.

• Familiarity with AWS, Azure cloud environments, MDR services, and SIEM solutions.

Nice to have:

• Possession of advanced technical certifications (e.g., GIAC, OSCP).

• Knowledge of programming languages such as Python, PowerShell, or Bash.

Current Contingent Workers apply

Ability to Work Under Pressure, Computer Science, Crisis Management, Crisis Response, Cybersecurity, Cybersecurity Risk Management, Cyber Threat Intelligence, Cyber Threat Prevention, Digital Forensics, Incident Management, Operating Systems (OS), Penetration Testing, Power Shell Scripting, Programming Languages, Python (Programming Language), Security Operations, Security Technologies, SLA Management, Threat Detection, Vulnerability Scanning, Workflow Automation

*A job posting is effective until 11:59:59PM on the dayBEFOREthe listed job posting end date. Please ensure you apply to a job posting no later than the dayBEFOREthe job posting end date.