Senior Attack Monitoring Analyst (GSOC)

Senior Attack Monitoring Analyst (GSOC) Apply locations Singapore time type Full time posted on Posted 3 Days Ago job requisition id R0098382 ABOUT US: LSEG (London Stock Exchange Group) is more than a diversified global financial markets infrastructure and data business. We are dedicated, open-access partners with a dedication to excellence in delivering the services our customers expect from us. With extensive experience, deep knowledge and worldwide presence across financial markets, we enable businesses and economies around the world to fund innovation, manage risk and create jobs. Role Profile LSEG Security Operations is a central function employing people, process and technology to continuously monitor and respond to cyber security incidents. Security Operations spans multiple domains including cyber threat intelligence, cyber threat detection, data loss prevention and cyber incident response. Role Summary This role is a Senior Attack Monitoring Analyst for the Global Security Operations Centre (GSOC). The role is responsible for identifying and responding to cyber security incidents and improving the defensive capabilities of the GSOC. Shift Role operates on a shift rotation. Shifts are 07:00 – 19:00 SGT or 08:00 – 20:00 SGT (subject to UK BST) using a 4 days on, 4 days off rotation. Responsibilities Triage security events and employ a methodical and coherent response to security incidents. Serve as a point of escalation and point of reference for junior members of the level 2 team. Competently operate a chosen SIEM (e.g., Splunk/QRadar/LogRhythm) for incident investigations, or for the development of monitoring dashboards. Utilise playbooks, existing knowledge and accurate online resources for guidance when responding to incidents. Utilise online resources for researching and collecting threat intelligence to enhance the SOC’s abilities to detect cyber-attacks. Develop new, or improve existing run books and use cases based on investigations and knowledge of modern attacks. Stay up to date with current vulnerabilities, attacks, and countermeasures. Identify, respond and remediate cyber events generated through monitoring technologies. Serve as a point of escalation for cyber security incident triage and investigation. Experience Experience with operating or administrating a SIEM (e.g. Splunk/QRadar/LogRhythm). Strong working knowledge of networks including the TCP/IP stack, typical organisation architectures, and common protocols abused by malware. Experience in security event analysis & triage, incident handling and root-cause identification. Understanding of tools, techniques and procedures that attackers use to compromise organisations, ideally from direct experience. Experience and knowledge of cyber security in corporate environments. Likely will have experience working full time in incident response or offensive security roles. Ability to work with a sense of urgency while remaining calm under pressure. Strong verbal and written communication and collaboration skills. Security industry specific and core technical accreditations such as OSCP, GIAC, CCNA. Certification demonstrating SIEM operational competences. Competent with one or more programming languages (e.g. Python, PowerShell, Java, C#). LSEG offers a range of tailored benefits and support, including healthcare, retirement planning, paid volunteering days and wellbeing initiatives. We are proud to be an equal opportunities employer. This means that we do not discriminate on the basis of anyone’s race, religion, colour, national origin, gender, sexual orientation, gender identity, gender expression, age, marital status, veteran status, pregnancy or disability, or any other basis protected under applicable law. HOW TO APPLY? J-18808-Ljbffr

Location: North East, SG

Posted Date: 5/9/2025