Senior VP, Advanced Threat Research, Group Information Security
United Overseas Bank Limited (UOB) is a leading bank in Asia with a global network of more than 500 branches and offices in 19 countries and territories in Asia Pacific, Europe and North America. In Asia, we operate through our head office in Singapore and banking subsidiaries in China, Indonesia, Malaysia and Thailand, as well as branches and offices.
Our history spans more than 80 years. Over this time, we have been guided by our values — Honorable, Enterprising, United and Committed. This means we always strive to do what is right, build for the future, work as one team and pursue long-term success. It is how we work, consistently, be it towards the company, our colleagues or our customers.
About the Department
The Technology and Operations function is comprised of five teams of specialists with distinct capabilities: business partnership, technology, operations, risk governance and planning support and services. We work closely together to harness the power of technology to support our physical and digital banking services and operations. This includes developing, centralising and standardising technology systems as well as banking operations in Singapore and overseas branches.
- Provide direct leadership, management, and operational oversight for our Level 3 engineers as well as execution of enhanced cyber security capabilities build-up programs.
- Responsible for engineering design and development of cyber security technology along with integration of new architectural features into existing infrastructures while maintaining the integrity and security of enterprise-wide cyber security systems and networks.
- Provide technical and security expertise to IT and business leadership and technical teams to identify cost-effective and appropriate security technology solutions and develop security reference architectures and strategies to achieve business results.
- Develop/integrate cyber security solutions with multi-level security requirements for enhanced monitoring and detection capability
- Maintain awareness of trends and issues in area of security expertise, evaluate new security technologies opportunities, and provide analysis of their potential advantage to the business.
- Perform as a member of the Cyber security capability enhancement team to drive or participate in product evaluation, project discussion and deployments
- Work within established practices and handling guidelines to develop and deploy preventive maintenance processes for GSOC infrastructure
- Work with internal technical teams and engineers in technical troubleshooting, exercises and forums
- Available to respond to client requests and assist with troubleshooting activities
- Able to resolve customer related issues with minimal guidance
- Communicate effectively with a variety of internal teams and external contacts including technical and executive contacts
- Capable of juggling variety of priorities and deliverables in an interrupt driven environment with minimal guidance or supervision
- Preferred Degree in engineering/Computer Science / IT/Cyber Security from a recognized education institution
- Professional security related qualification (e.g. SANS GCIA, GCIH etc.) is favorable
Technical Skills and experience
- Min 10-15 years of relevant Cyber security experience
- Expert knowledge in networking technology and network security (i.e. Firewalls, WAF, IDS, IPS, VPN, HIPS, ADS, SIEM, UBA and TCP/IP protocols)
- Minimum 5 years of relevant working experience in a SOC environment and leading a team of highly skilled Cyber Engineers
- Familiar with SOC processes
- Understanding of threat response and incident response
- Understanding in Unix/Linux and Windows administration
- Understanding in Security Information Event Management System (SIEMS) example: HP ArcSight / Splunk
- Strong foundation in security threat TTPs and attack counter measure
- Analytical problem solver and good at troubleshooting technical issues
- Effective time management and organizational skills
- Operational knowledge of SIEMS, Breach Detection System, Network Forensic System, Big Data analytics, User Behavior Analytics and endpoint security technology
- Understanding of malware analysis platforms and tools
- Understanding of threat intelligence platforms and tools
- Technical/logical understanding of FW/IDS/IPS/WAF rule and SIEM rule construction
- Programming, concepts and scripting languages – Python, Ruby, Power-shell, Java, C/C++, Regex, STIX
- Good understanding of network forensics and packet analysis
- Good understanding of SQL/Database, SOAP-XML, Restful API
- Good understanding of internet concepts and technologies – internet services, search engines, open source tools, android/iOS - mobile technology, LAMP, iOT, TOR etc.
- Good written and verbal communication skills
- Process and procedure adherence
- Strong analytical and problem solving skill
Be a part of UOB Family
Apply now and make a difference.
United Overseas Bank Ltd (UOB)