About NETS
The NETS Group is a leading payments services group, enabling digital payments for merchants, consumers and banks across the entire payments value chain.
The Group operates Singapore’s national debit scheme enabling customers of DBS Bank/POSB, HSBC, Maybank, OCBC Bank, Standard Chartered Bank and UOB to make payments using their ATM cards or mobile devices at more than 120,000 acceptance points in the country as well as online payments.
Overall Function
The SOC Lead will primarily be responsible for leading NETS Security Operations Centre Team and also act as a single point of contact to the management team for further action.
He/she is the escalation point of the SOC Analyst for any identified potential anomalies and will perform in-depth investigation into the matters. In the event of security incident, he/she will also serve as the primary incident responder and ensure that communications as well as adequate resolutions are implemented on a timely basis.
Primary Responsibilities
- SOC Lead is responsible for the operation of the SOC team. The role will need to provide leadership, expertise and direction to the security operations team.
- To handle and perform resource planning and allocation related to the SOC operation.
- Lead and support security operations such as Cyber intelligence gathering, threat hunting, Privileged Access Management (PAM), Security Monitoring, Vulnerability management, Log Review (SIEM) and Incident Response
- Handle escalation from SOC analysts and Security Service Providers ensuring that escalations are handled within agreed SLAs
- Perform security incident response for all potential and actual incidents together with the Incident Response Team and/or Crisis Management Team
- Ensure proper communication as well as adequate actions are performed during incident management to all stakeholders
- Collaborate with other functions such as Security Engineering, Assurance& Audit and Risk & Compliance to ensure security tools implementation, security reporting as well as manage risk matters adequately.
- Provide regular reports to management on the status of the SOC’s operations, security incidents, and security posture as well as to highlight any potential trend based on SOC metrics.
- Develop and maintain the SOC’s standard operating procedures for monitoring, analyzing, and responding to security events and incidents
- Continuously monitor and assess the organization’s security posture, identify potential security risks, and recommend mitigating controls and solutions.
- Stay up-to-date with the latest cybersecurity trends, tools and technologies, and implement best practices to ensure the SOC is operating at the highest level of effectiveness.
Requirements
- Diploma or degree in Computer Science, Information Systems or equivalent related degree, Any IT Security related certifications (CISSP, CISA etc) is a plus.
- At least 5 years of relevant experience in Information Security & Cyber intelligence roles including minimum 2 years of Security Operations involvement.
- Broad knowledge in infrastructure, information and application security and related topics (i.e. DMZ, PKI, SSL, multi-factor authentication, cryptography and secure communications, Security tools such as SIEM, IPS, WAF, EDR/XDR).
- Familiarity with security frameworks, such as NIST Cybersecurity Framework, ISO27001, PCI DSS and CIS Critical Security Controls.
- Strong analytical and problem-solving skills, with the ability to identify and assess security risks and develop appropriate mitigation strategies.
- Experience with incident management and response, including conducting post-incident reviews and developing corrective action plans.
- Knowledge of current security events and a demonstrated passion to stay informed of best practices & trends within the industry.
- Excellent communication and leadership skills, with the ability to motivate and inspire a team to achieve its goals.