Liquid Group is a FinTech payments services group based in Singapore. Liquid empowers and connects businesses and individuals to make transactions in a smart, secure and cost-effective way, anywhere in the world.
We operate a regional payment network to enable cross-border QR payment services for e-wallet operators, banks, and merchants. We also provide white-label solutions to accelerate the development and adoption of mobile payments for our business partners.
We work in a collaborative and adaptive way, exploring innovative ideas and solving challenging problems to develop our products. Together, we ensure efficiency, security, and convenience for our partners and customers.
Website: www.liquidgroup.sg
Role Overview
We are seeking a Security & SOC Analyst (SecOps) to support security monitoring, incident response, cloud security operations, vulnerability management, and compliance activities across our AWS-based platforms.
This role plays a critical part in threat detection, investigation, regulatory compliance, and coordination with Cloud Operations, Engineering teams, and external security vendors. The ideal candidate is hands‑on, detail‑oriented, and comfortable working in a fast‑paced production environment.
Key Responsibilities
SOC Operations & Incident Response
* Monitor security alerts and events using SIEM, EDR, and security monitoring tools
* Perform alert triage, investigation, containment, and incident response
* Escalate confirmed incidents to Security Engineering / Infrastructure Leadership with clear evidence and impact analysis
* Participate in incident bridges, post-incident reviews, and security reporting
* Maintain incident timelines, evidence collection, and response documentation
* Support continuous improvement of SOC workflows, alert tuning, and response playbooks
AWS Security Operations
* Monitor and support security controls across AWS environments
* Review and respond to findings from AWS Security Hub, Amazon GuardDuty, AWS CloudTrail, and IAM Access Analyzer
* Assist with IAM access reviews, privilege management, and policy enforcement (least privilege)
* Support encryption and key management using AWS KMS, key rotation, and secure configurations
* Work with Cloud Ops / DevOps teams to remediate AWS security findings and reduce risk exposure
* Support logging and audit readiness across AWS accounts and services
Vulnerability Management
* Support vulnerability scanning, tracking, prioritization, and remediation validation
* Coordinate with infrastructure, application, and vendor teams on vulnerability fixes
* Track risk acceptance, exceptions, remediation SLAs, and closure reporting
* Assist with patch management tracking and verification across systems and cloud services
Compliance & VPAT Support
* Support VPAT (Voluntary Product Accessibility Template) assessments and evidence collection
* Assist with security and compliance questionnaires, audits, and customer due diligence requests
* Support regulatory and certification requirements such as PCI DSS, SOC 2, ISO 27001, MAS
* Maintain compliance documentation, evidence repositories, audit trails, and control mapping
Security Operations & Governance
* Support implementation and enforcement of security policies, standards, and procedures
* Assist with third-party risk assessments and vendor security reviews
* Maintain security dashboards, operational metrics, and reporting (weekly/monthly)
* Promote security awareness and operational best practices across teams
Key Requirements
* 3–6 years of experience in SOC, Security Operations, or Cloud Security roles
* Hands-on experience with AWS security services and cloud security operations
* Experience working in a SOC or 24/7 monitoring environment
* Strong understanding of incident response lifecycle and security fundamentals (network security, IAM, logging, threat detection)
* Familiarity with compliance frameworks such as PCI DSS, SOC 2, ISO 27001, MAS
* Experience supporting VPAT or accessibility/security assessments and evidence collection
* Strong analytical skills with good documentation and communication abilities
* Ability to coordinate across multiple teams during incidents and investigations
Nice to Have / Certifications (Added Advantage)
* AWS Certified Security – Specialty
* AWS Certified Solutions Architect / AWS SysOps Administrator
* Security certifications: CompTIA Security+, GCIH / GCED, or equivalent
* Experience with SIEM tools such as Splunk, OpenSearch, Microsoft Sentinel, QRadar
* Exposure to fintech, payments, or regulated environments
#J-18808-Ljbffr