Job Description

CTI-CTH Lead Engineer

Important Information

Location: Singapore

JOB REQUIREMENT

Threat Hunting - Hands-on experience conducting proactive threat hunts across endpoints, networks, and cloud; able to apply structured methodologies (MITRE ATT&CK, Diamond Model, PEAK, TAHITI, THMM).



Cyber Threat Intelligence (CTI) - Ability to develop/manage threat intel, map adversary behaviors, and translate findings into actionable intelligence for technical and executive stakeholders.



Incident Investigation & Analysis - Skilled in analyzing logs, network traffic, and endpoint data; conducting root cause analysis; documenting reports; and collaborating with IR and SOC teams.



Security Tools Proficiency - not specific but Experience with SIEM (e.g., Splunk, Sentinel), EDR/XDR platforms, network monitoring, data pipelines, and threat hunting tools.



Scripting & Automation - Proficiency in Python and/or PowerShell for developing custom scripts, automating hunts, and improving efficiency.



OS & Cloud Knowledge - Strong understanding of Windows, Linux, macOS; exposure to cloud environments (AWS, Azure, GCP) and container security.



Adversary Tactics & Malware Analysis - Knowledge of malware behaviors, intrusion techniques, and detection strategies to disrupt adversary activities



Communication , Stakeholder Management & Reporting - Strong written and verbal skills to present findings, reports, and recommendations clearly to both technical teams and executives.

About Encora

Encora is a global company that offers Software and Digital Engineering solutions. Our practices include Cloud Services, Product Engineering & Application Modernization, Data & Analytics, Digital Experience & Design Services, DevSecOps, Cybersecurity, Quality Engineering, AI & LLM Engineering, among others.



At Encora, we hire professionals based solely on their skills and do not discriminate based on age, disability, religion, gender, sexual orientation, socioeconomic status, or nationality