Location: Singapore (Remote/Hybrid options available)

Job Summary:
We are looking for a Cybersecurity Data Engineer to support security operations by transforming raw data into actionable insights. You will work closely with platform architects and the Cyber Security Response team to improve threat detection and data handling within our security infrastructure.

Key Responsibilities:

• Analyze log data for anomalies and security threats
• Develop and optimize data parsers, transformation pipelines, and mappings for log sources
• Design and implement security data models for SIEM platforms (on-prem and cloud)
• Enhance data ingestion, routing, and performance to reduce SIEM costs
• Act as the main point of contact for log parsing issues
• Support onboarding of new log sources and maintain parsing guidelines
• Define data retention and replication strategies across cloud and on-prem environments
• Collaborate with platform and security teams for continuous improvements

Key Skills:

• Strong knowledge of log data structures, parsing, and transformation
• Scripting expertise (e.g., Python, Regex)
• Experience with REST APIs and Syslog
• Familiarity with SIEM platforms (e.g., Splunk, ArcSight)
• Understanding of cloud platforms (Azure, AWS, or GCP)
• Hands-on experience with Git, CI/CD, and containers (Docker/Kubernetes)

Preferred Certifications (a plus):

• Splunk, ArcSight, Microsoft Security, SANS, ISC2, etc.

#DataEngineer #CyberSecurity #SIEM #Regex #Parser #Python #Splunk