Lead Engineer - Digital Forensics & Incident Response (Cyber Security Office)

Company description:

Synapxe is the national HealthTech agency inspiring tomorrow's health. The nexus of HealthTech, we connect people and systems to power a healthier Singapore.

Together with partners, we create intelligent technological solutions to improve the health of millions of people every day, everywhere. Reimagine the future of health together with us at www.synapxe.sg

Job description:

• Investigate cyber incidents across Cloud, on-premise, and hybrid environments using Cloud-native and industry-standard forensic tools.
• Analyse and correlate log data to detect anomalies, trace unauthorised activities, determine root causes, and mitigate breaches.
• Facilitate Incident Response calls and collaborate with internal and external stakeholders to ensure a coordinated approach.
• Generate investigation reports and clearly communicate findings through detailed documentation and presentations.
• Assist in conducting post-incident reviews to extract lessons learned and enhance workflows and controls.
• Develop and maintain Incident Response plans and playbooks for various cybersecurity scenarios.
• Document best practices and compliance measures to ensure consistency and efficiency in response actions.
• Serve as rotational duty officer and support emergency responses, including being on standby outside regular working hours as needed.

• Diploma or Degree in Computer Science, Cybersecurity, or a related field.
• Minimum 8 years of experience in Cloud Security Technologies and Digital Forensics & Incident Response (DFIR).
• Proficiency with Endpoint Detection and Response (EDR) tools, Network Detection and Response (NDR) tool, and Security Information and Event Management (SIEM) platforms.
• Experience in using Digital Forensic tools for evidence acquisition and analysis.
• Strong knowledge of network protocols, infrastructure setup and device communication for incident response.
• Self-motivated, with the ability to work independently and collaboratively.
• Strong problem-solving and organizational skills to manage multiple tasks efficiently.
• Excellent analytical, communication and interpersonal skills; a reliable team player.
• Relevant certifications such as Certified Cloud Security Professional (CCSP), GCIH, GCFE, GCFA, GCFR, GEIR, MCFE, EnCE (preferred but not mandatory)

Profile description:

Position Overview

Strong Incident Response experience in Cloud environment is highly desirable. This role is vital in protecting Singapore's Public Health systems by proactively identifying, analysing, and addressing security threats.