Jj Consulting Services logo

Lead Cybersecurity Specialist (Security Operations)

Jj Consulting Services

IslandwideFull TimeS$10,000 – S$14,000/mo

Posted 7 Jul 2026

About this role

​ Our Client is an established company in Singapore, who is seeking to recruit a Lead Cybersecurity Specialist (Security Operations). Lead Cybersecurity Specialist (Security Operations) You will be the primary architect of the security governance and risk management framework., with the mission to transform GRC from a compliance-heavy exercise into a strategic enabler. You will ensure that risk management is deeply integrated into the lifecycle of every digital system, from web applications to critical Operational Technology (OT) environments. 1. Incident Management & Response Standardisation · Unified Playbooks: Establish and maintain Incident Response (IR) playbooks for diverse threat scenarios (e.g., Ransomware, Data Exfiltration, Cloud breaches). · Crisis Leadership: Provide direct guidance and technical oversight to agencies during High and Critical severity incidents, ensuring timely reporting and effective containment. · Incident Governance: Work with CIOs and CISOs to establish clear command structures and roles, empowering leaders to make difficult, high-stakes decisions during a crisis. 2. Operational Readiness & Resiliency Testing · Advanced Exercises: Design and oversee high-quality Tabletop Exercises (TTX) for various stakeholders (system owners, SIROs, CISOs, CIOs). You will evaluate external vendors to ensure these exercises are realistic, comprehensive, and push the limits. · Chaos Testing: Drive the adoption of chaos testing across agencies to validate the adequacy of resiliency plans and identify hidden failure points in critical systems. · Capability Building: Continuously assess the operational readiness of the Family and lead initiatives to bridge identified gaps in incident management. 3. Continuous Monitoring & Asset Governance · Centralised Monitoring: Ensure all systems are effectively onboarded to central monitoring services. Work with system owners on overcoming challenges encountered during onboarding. · Asset Visibility: Partner with CIOs to maintain a robust and updated IT asset inventory, ensuring that "you cannot protect what you do not know." · Custom Threat Scenarios: Provide expert guidance for agencies with unique threat use cases or specialised systems (e.g., OT/ICS) that fall outside standard monitoring coverage, helping them build bespoke detection capabilities. 4. Vulnerability & Attack Surface Management · Full-Spectrum SOPs: Establish Standard Operating Procedures for vulnerability management across on-premises, cloud (GCC), and OT environments. Ensure that there are proper procedures for managing unpatched vulnerabilities. · Attack Surface Scanning: Ensure agencies deploy adequate internal and external scanning tools. You will oversee the workflow for finding prioritisation and validate that patches are applied and effective. 5. Advocacy & Education · Resilience Culture: Educate stakeholders on the critical importance of Response and Business Continuity Planning (BCP). · Stakeholder Inculcation: Foster a mindset of "assumed breach," ensuring project owners and leaders understand their roles in threat monitoring and incident management. Requirements Experience · Years of Experience: 8 to 10 years of deep experience in Cybersecurity Operations, SOC Management, or Incident Response. · Crisis Management: Proven track record of leading or providing technical oversight in high-pressure, high-severity security incidents. · Domain Expertise: Experience managing security operations across complex hybrid environments (On-premise, Cloud, and OT). Technical Skills · Incident Response & Forensics: Mastery of IR methodologies and a strong understanding of digital forensics and malware analysis. · Threat Intelligence & TTPs: Deep knowledge of the threat landscape and the ability to map monitoring use cases to the MITRE ATT&CK framework. · Vulnerability & Exploitation Research: Deep understanding of the CVE (Common Vulnerabilities and Exposures) system and CVSS scoring. Knowledge of exploitation techniques and the mechanics of how vulnerabilities are weaponised by threat actors. Ability to assess the "exploitability" of a vulnerability within the specific context of the environment to prioritise remediation. · Detection Technologies: Proficiency in SIEM, SOAR, XDR, and EDR technologies. Ability to evaluate the relevancy of existing monitoring tools against evolving threats. · Cloud Operations: Strong understanding of monitoring and responding to incidents within Government Commercial Clo…

What they're looking for

Digital ForensicsSecurity OperationsSecurity GovernanceArchitect

About Jj Consulting Services

Industry: Professional & technical services

Frequently asked questions

What does a Lead Cybersecurity Specialist (Security Operations) at Jj Consulting Services do?

​ Our Client is an established company in Singapore, who is seeking to recruit a Lead Cybersecurity Specialist (Security Operations). Lead Cybersecurity Specialist (Security Operations) You will be the primary architect of the security governance and risk management framework., with the mission to t…

What skills does this Lead Cybersecurity Specialist (Security Operations) role need?

Key skills for this role include Digital Forensics, Security Operations, Security Governance, Architect.

How much does a Lead Cybersecurity Specialist (Security Operations) at Jj Consulting Services pay?

This role lists a salary of S$10,000 – S$14,000 per month.

Is this Lead Cybersecurity Specialist (Security Operations) role remote, hybrid, or on-site?

The listing is based in Islandwide. Check the posting for remote or hybrid options.

How do I apply for this Lead Cybersecurity Specialist (Security Operations) role?

You can apply directly on Jj Consulting Services's careers page. ApplyLah can tailor your résumé and cover letter to this exact role in seconds first.