CTI-CTH Lead Engineer
Important Information
Location: Singapore
JOB REQUIREMENT
Threat Hunting - Hands-on experience conducting proactive threat hunts across endpoints, networks, and cloud; able to apply structured methodologies (MITRE ATT&CK, Diamond Model, PEAK, TAHITI, THMM).
Cyber Threat Intelligence (CTI) - Ability to develop/manage threat intel, map adversary behaviors, and translate findings into actionable intelligence for technical and executive stakeholders.
Incident Investigation & Analysis - Skilled in analyzing logs, network traffic, and endpoint data; conducting root cause analysis; documenting reports; and collaborating with IR and SOC teams.
Security Tools Proficiency - not specific but Experience with SIEM (e.g., Splunk, Sentinel), EDR/XDR platforms, network monitoring, data pipelines, and threat hunting tools.
Scripting & Automation - Proficiency in Python and/or PowerShell for developing custom scripts, automating hunts, and improving efficiency.
OS & Cloud Knowledge - Strong understanding of Windows, Linux, macOS; exposure to cloud environments (AWS, Azure, GCP) and container security.
Adversary Tactics & Malware Analysis - Knowledge of malware behaviors, intrusion techniques, and detection strategies to disrupt adversary activities
Communication , Stakeholder Management & Reporting - Strong written and verbal skills to present findings, reports, and recommendations clearly to both technical teams and executives.
About Encora
Encora is a global company that offers Software and Digital Engineering solutions. Our practices include Cloud Services, Product Engineering & Application Modernization, Data & Analytics, Digital Experience & Design Services, DevSecOps, Cybersecurity, Quality Engineering, AI & LLM Engineering, among others.
At Encora, we hire professionals based solely on their skills and do not discriminate based on age, disability, religion, gender, sexual orientation, socioeconomic status, or nationality