ICT Security Engineer (SIEM)

Summary:

We are seeking an ICT Security Engineer to join our team in Singapore. You will focus on the deployment, maintenance, and improvement of our SIEM infrastructure, working closely with Production Infrastructure & Observability teams.

Key Responsibilities:

SIEM Infrastructure Management:

• Install and administer SIEM infrastructure servers.
• Develop automation and self-service tools.
• Integrate new technology logs and support log parsing (custom parser/GROK development).

Project & Incident Management:

• Participate in project management and contribute to the Production CSIRT/SIEM team activities.
• Ensure compliance with regulatory requirements and internal guidelines.
• Technical Skills:
• Elastic Stack (Elasticsearch, Logstash, Kibana, Beats) for data ingestion, management, monitoring, and analytics.
• In-depth experience with Kafka.
• Proficiency in Linux (RedHat/Ubuntu).
• Scripting skills (Python or Bash).
• Production support experience and platform integration skills (installation, configuration, documentation).
• Automation tools (Ansible) and DevOps pipelines experience is a plus.
• Personal Attributes:
• Rigorous with strong problem-solving skills.
• Positive attitude, willingness to upskill, and ability to perform in-depth troubleshooting.
• Ability to work autonomously and as part of a team.
• High energy level and desire to take on responsibility.
• Strong interpersonal skills and ability to multitask.
• Qualifications:
• 5 years of experience, with SIEM/ELK stack management.