Cyber Incident Response (Fintech)

TL;DR

Cyber Incident Response (Cybersecurity): Strengthening cybersecurity resilience for a major international banking client with an accent on SOC detection and incident management across the APAC region. Focus on designing security use cases based on MITRE ATT&CK, conducting threat hunting, and managing the full incident lifecycle.

Location: Hybrid (Singapore)

Company

A listed European technology leader specializing in Consulting, Digital Services, and Software with over 51,000 employees worldwide.

What you will do

• Design and implement security use cases based on real-world attack scenarios and MITRE ATT&CK frameworks.
• Identify emerging cyber threats and propose effective detection and mitigation strategies.
• Conduct threat hunting activities to enhance the detection capabilities of a 24/7 SOC.
• Investigate security incidents, coordinate remediation actions, and ensure follow-up until closure.
• Optimize SOC processes and playbooks to address recurring security issues.
• Collaborate with global, regional, and local stakeholders to ensure operational readiness.

Requirements

• At least 5 years of experience in cybersecurity incident response.
• Strong expertise in detection engineering or security use case development.
• Proficiency with SIEM solutions and ELK stack (Elastic, Logstash, Kibana).
• Experience working in Linux environments such as RedHat or Ubuntu.
• Ability to use scripting languages including Python, PowerShell, or Bash.
• English: Fluent (C1) required.

Nice to have

• Proficiency in French.
• Experience with SQL.

Culture & Benefits

• Hybrid working model and Work-from-Abroad benefits.
• Comprehensive health insurance covering GP, hospitalization, dental, and optical.
• Annual bonus based on individual performance.
• 18 days of annual leave.
• Dedicated training programs and certification incentives to support career growth.
• Regular team-building activities and social events.