SIEM Application Security Engineer (Banking, 1-Year Contract)

A leading international banking group is seeking a SIEM Application Security Engineer for their Singapore team. This is an exceptional opportunity to join a highly respected financial institution with a significant presence across Asia Pacific, where you will play a pivotal role in enhancing the organisation’s cyber threat detection and response capabilities.

As a SIEM Application Security Engineer, your primary focus will be on strengthening the bank’s ability to detect and respond to cyber threats by deploying robust SIEM solutions. Your day-to-day activities will involve close collaboration with infrastructure and observability teams as you manage server installations, develop automation scripts, integrate new log sources, and support log parsing efforts. You will also take on project management duties for key security initiatives while playing an active role within the Production Engineering team.

What You'll Do

• Install and administrate servers supporting the SIEM infrastructure, ensuring optimal performance and reliability for critical security operations.
• Develop automation solutions for routine tasks and self-service tools to streamline processes and enhance operational efficiency within the security engineering function.
• Participate actively in integrating new technology logs into the SIEM platform, expanding monitoring coverage and improving threat visibility across diverse environments.
• Support log parsing activities by developing custom parsers or GROK patterns tailored to specific data sources, enabling accurate analysis and incident detection.
• Engage in project management responsibilities related to security engineering initiatives, coordinating timelines, resources, and deliverables for successful implementation.

What You Need

• Hands-on experience managing Elastic stack components (Elasticsearch, Logstash, Kibana, Beats) including data ingestion, management, monitoring, and analytics within large-scale environments
• Hands-on experience with Kafka for real-time data streaming applications relevant to security event processing.
• Proficient in Linux (RedHat/Ubuntu), ensuring secure configuration and maintenance of production systems supporting SIEM operations
• Proficient in Python or Bash for automation scripting; experience with Ansible or similar automation tools is highly valued.
• Experience in Ansible and DevOps will be an added advantage
• Strong problem-solving skills
• Ability to work autonomously and in a team environment

Do note that we will only be in touch if your application is shortlisted.
Robert Walters (Singapore) Pte Ltd
ROC No.: 199706961E | EA Licence No.: 03C5451
EA Registration No.: R1872446 Felicia Valerie Romli