Cybersecurity Analyst
MTS GLOBAL PTE. LTD.
Cybersecurity Analyst
Reporting to: Senior Manager, Cyber Security & IT Governance
About the Role
We are seeking a hands-on Cybersecurity Analyst to strengthen and continuously improve our organisation’s cybersecurity posture.
In this role, you will monitor and respond to security threats, coordinate incident response, manage vulnerabilities, and support the operation of security technologies across on-premises and multi-cloud environments. You will work closely with our MSSP, internal IT teams, technology vendors, and business stakeholders to protect critical systems and information assets.
Key Responsibilities
- Monitor, investigate, and respond to cybersecurity alerts and incidents using CrowdStrike Falcon, CrowdStrike Next-Gen SIEM, Microsoft Defender, and other security platforms.
- Perform threat analysis and coordinate incident containment, remediation, root-cause analysis, and recovery with the MSSP, vendors, and internal teams.
- Manage vulnerability, exposure, and attack-surface remediation activities using Tenable One and Cymulate.
- Administer and support security technologies, including CrowdStrike Falcon, Palo Alto Networks firewalls, Zscaler, Vectra NDR, Forescout NAC, and Imperva WAF.
- Support identity and access security using CyberArk, Microsoft Entra ID, multifactor authentication, and related IAM controls.
- Contribute to endpoint security, network security, cloud security, and Zero Trust initiatives.
- Support security controls across AWS, Microsoft Azure, and Oracle Cloud Infrastructure environments.
- Coordinate vulnerability assessments, penetration testing, remediation activities, and follow-up validation.
- Support data security controls involving Proofpoint, Microsoft Purview, DLP, CASB, and related technologies.
- Assist with cybersecurity governance, risk management, audits, and compliance initiatives.
- Support the implementation and maintenance of ISO 27001, Cyber Trust Mark, and IMDA TCS Code requirements.
- Review cybersecurity trends and recommend improvements to security processes, technologies, and controls.
- Evaluate emerging cybersecurity and AI security technologies where relevant.
- Coordinate security vendors and ensure services, investigations, and remediation activities are delivered within agreed timelines.
- Prepare security reports, incident documentation, remediation updates, and management-level summaries.
Requirements
- Degree or diploma in Cybersecurity, Information Technology, Computer Science, or a related discipline.
- At least 3–5 years of relevant experience in cybersecurity operations, security engineering, incident response, or a Security Operations Centre.
- Hands-on experience investigating security alerts and coordinating cybersecurity incidents.
- Good knowledge of vulnerability management, endpoint security, network security, identity security, and cloud security.
- Understanding of cybersecurity frameworks, security risk management, and incident-response processes.
- Experience working with an MSSP, security vendors, and cross-functional IT teams.
- Ability to analyse technical findings and communicate risks and recommendations clearly to technical and non-technical stakeholders.
Relevant Technical Experience
Candidates should have practical experience with several of the following:
- CrowdStrike Falcon, CrowdStrike Next-Gen SIEM, or Microsoft Defender
- Tenable One or other enterprise vulnerability-management platforms
- Cymulate or other breach-and-attack simulation platforms
- CyberArk, Microsoft Entra ID, IAM, PAM, and MFA
- Palo Alto Networks firewalls and Zscaler
- Vectra NDR and Forescout NAC
- Imperva WAF
- AWS, Microsoft Azure, or Oracle Cloud Infrastructure security
- Proofpoint, Microsoft Purview, DLP, and CASB technologies
Experience with every listed product is not mandatory, but strong hands-on exposure across security operations, vulnerability management, and security engineering is important.
Preferred Qualifications
- Relevant professional certifications such as Security+, CEH, GCIH, CISSP, CISM, CCSP, or equivalent.
- Experience supporting ISO 27001, Cyber Trust Mark, IMDA TCS Code, or similar regulatory and security standards.
- Experience working in a regulated, critical-infrastructure, telecommunications, or enterprise environment.
Core Competencies
- Strong analytical and problem-solving ability
- Incident response and threat-investigation skills
- Clear communication and stakeholder management
- Effective teamwork and vendor coordination
- Sound judgement, integrity, and attention to detail
- Commitment to continuous learning and improvement