• Day to day security monitoring on the security alerts, NG AV/EDR alerts and any other custom alerts related to security.
• Follow up with alerts detected in (a), which includes investigation and checking with users on the suspicious activities detected
• Day to day operation of administration and support on NextGen AV /EDR solution like Crowdstrike.
• Incident management and resolution, raising tickets to Microsoft, AWS, and crowdstrike to support and rectify any problems.
• Analyze logs from cloud native DDOS protection solution(eg.AWS shield).
• Configure Azure Monitoring Agent configuration and deployment
• Software upgrade of cloud workload protection/NG AV/EDR to remediate any vulnerabilities and to get the most out of security administration enhancement.
• Support on the vulnerability management in GCC and GCC+ to recommend the mitigation actions to the system OIC and GCC/GCC+ infra.
• Monitor GovTech’s governance compliance tool – Cloudscape, cloud native CSPM and follow up with actions to rectify the violations.
• Conduct queries on the log analytic to support cyber proactive investigation as per Cyber needs.

• 3-5+ years of experience in cybersecurity, with at least 3 years focused on Azure cloud security.
• Proven experience securing enterprise-scale Azure environments.
• Technical Skills:
• Deep expertise in Azure security services: Microsoft Defender for Cloud, Azure Sentinel (SIEM), Azure Firewall, DDoS Protection, Key Vault, and Entra ID.
• Strong knowledge of Zero Trust architecture, IAM, and PAM solutions.
• Experience with DevSecOps practices and securing CI/CD pipelines.
• Proficiency in scripting and automation (PowerShell, Python, or Bash).
• Familiarity with infrastructure-as-code tools (Terraform, ARM, Bicep).
• Understanding of network security concepts: VNet, NSG, Private Endpoints, ExpressRoute.
• Certifications (Preferred):
• Microsoft Certified: Azure Security Engineer Associate (AZ-500) — strongly preferred
• Microsoft Certified: Security Operations Analyst Associate (SC-200)
• CISSP, CISM, or equivalent
• CompTIA Security+
• Soft Skills:
• Strong analytical and problem-solving abilities.
• Excellent communication skills — able to present security risks to both technical and non-technical stakeholders.
• Self-driven with the ability to work independently and lead initiatives.
• Team player with a collaborative mindset.

We are driven by our AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity—and we seek individuals who embody these values in both their professional and personal lives. We are committed to our Impact: Valuing our clients, Growing our people, and Creating our future.

Together, we make the extraordinary happen.

Learn more about us at ncs.co and visit our LinkedIn career site.

Scam Alert

We are aware of fraudulent job offers and impersonations of NCS recruiters. Phishing emails using convincing-looking but fake addresses are also commonly used to trick you into thinking that they come from official NCS sources.

Please note that all official communications from NCS Group will only be sent from verified corporate email addresses. Always check that the sender’s email address ends with the genuine NCS domain, @ncs.com.sg and beware of extra letters, symbols or misspellings. When in doubt, verify the sender’s identity by contacting us at [email protected].