Ensign is hiring !
Key Responsibilities
- Carry out maintenance, support and operation of the project's security solution platforms.
- Maintain understanding of the architecture and work with security team to understand the use case and playbooks to be created.
- Identity, evaluate and recommend new areas of improvements for the implementation.
- Perform day to day operational task, scheduled change requests, troubleshooting and maintenance of the implementation.
- Develop and maintain automation for build and/or maintenance of security solutions
- Managing of security solutions, including patch management such security solutions.
- Support vulnerability assessments by reviewing and providing remediation to the security hardening of the security solutions.
- Involvement in improving and evolving workflow, processes and best practices to increase system maintenance efficiency and security standards.
- Sharing of knowledge through technical documentation, knowledge based articles and sharing sessions with fellow peers in the team.
- Collaborate with relevant parties and provide consultation as a Subject Matter Expert (SME) to deliver final project outcome
- Onboarding new log sources to SIEM solutions
- Creating and maintaining log parsers/data flow for onboarded logs
Requirements
- At least 3 years of experience in providing technical support and administration of the security solutions (SIEM, SOAR, Threat Intel Platform, log management platform etc)
- Working experience in powershell, regex, bash and/or scripting
- Strong troubleshooting and analytical skills for resolving issues
- Basic project management skills
- Positive working attitude and a team player
- Passionate in information security and keen attitude to learn
- Professional certificates such as SIEM Certified Administrator, SIEM Certified Architect, SOAR Certified Administrator, equivalent or more.
- Professional training or certificates in Splunk, McAfee, Carbon Black, Anomali, RSA SecurID will be an added advantage
- Disciplines in Computer Science, Computer or Electronics Engineering, Information Technology or related qualifications
Skills Required
- At least 3 years experience providing technical support and administration of security solutions (SIEM, SOAR, Threat Intel Platform, log management)
- Working experience in PowerShell, regex, Bash and/or scripting
- Strong troubleshooting and analytical skills
- Basic project management skills
- Positive working attitude and team player
- Passion for information security and a keen attitude to learn
- Professional certificates such as SIEM Certified Administrator, SIEM Certified Architect, SOAR Certified Administrator or equivalent
- Professional training or certificates in Splunk, McAfee, Carbon Black, Anomali, RSA SecurID
- Degree in Computer Science, Computer or Electronics Engineering, Information Technology or related qualification
What We Do
Ensign InfoSecurity is the largest pure-play end-to-end cybersecurity service provider in Asia. Headquartered in Singapore, Ensign offers bespoke solutions and services to address their clients’ cybersecurity needs. Their core competencies are in the provision of cybersecurity advisory and assurance services, architecture design and systems integration services, and managed security services for advanced threat detection, threat hunting, and incident response. Underpinning these competencies is in-house research and development in cybersecurity. Ensign has two decades of proven track record as a trusted and relevant service provider, serving clients from the public and private sectors in the Asia Pacific region








