IT Security Specialist (Information Security Department) [NIE]

ABOUT THE NATIONAL INSTITUTE OF EDUCATION (NIE)

The National Institute of Education (NIE), Singapore, is Singapore’s national teacher education institute and we are proud to be an integral part of the nation’s education service. We play a key role in the preparation of teachers and in the provision of teacher professional and school leadership development programmes. We are committed to our vision of being An Institute of Distinction: Leading the Future of Education and our mission to Inspire Learning, Transform Teaching and Advance Research.

NIE invites suitable candidates to apply for the position of IT Security Specialist within the Division of Academic Computing & Information Services (ACIS).

Key Responsibilities

Incident Response:

• Monitor and analyze security events and alerts from SIEM and other security platforms.

• Perform triage and detailed investigations of potential incidents across endpoints, networks, applications, and cloud environments.

• Escalate confirmed incidents and collaborate with senior analysts, MSSP, and internal technical teams for deeper investigation and remediation.

• Document investigation steps, findings, and incident reports in case management systems.

• Contribute to the improvement of detection rules, incident response playbooks, and SOC workflows.

• Participate in containment and response actions where required.

• Correlate vulnerability findings and threat intelligence with active monitoring for proactive risk reduction.

• Support Exposure Management activities by leveraging vulnerability, asset, and exposure data to enrich investigations, improve risk prioritization, and support threat detection and response.

Innovation and Continuous Improvement

• Evaluate and integrate new technologies to enhance security operations.

• Foster a culture of continuous improvement within the team.

• Encourage continuous learning and professional development.

Security Project Management

• Support the delivery of cybersecurity projects and initiatives across the Institute.

• Assist in project activities including requirements gathering, testing, implementation, and documentation of security solutions.

• Coordinate with internal teams and vendors to follow up on project tasks, action items, and implementation schedules.

• Participate in the deployment, configuration, and operationalization of security technologies and tools.

• Assist in tracking project progress, risks, issues, and dependencies, escalating concerns where necessary.

• Support user acceptance testing (UAT), validation activities, and post-implementation reviews for security projects.

• Contribute to process improvement, workflow optimization, and automation initiatives within the Security Operations function.

Requirements

• A University degree in Information Systems, Computer Science, Cybersecurity, or a related field.

• Professional Certification(s) in incident handling and security analysis preferred.

• GCIH or its equivalent is preferred.

• 2–3 years of experience in a SOC environment.

• Demonstrated experience in incident monitoring, triage, analysis, and escalation within an operational environment.

• Familiarity with structured incident response processes and documentation.

• Intermediate knowledge of security operations, incident analysis, incident handling, log analysis, intrusion detection, and/or firewall administration.

• Proven experience in handling incident response and performing threat hunting.

• Proficiency with Security Information and Event Management (SIEM) tools and Endpoint Detection and Response (EDR) platforms.

• Good understanding of network protocols, log analysis, and common attack techniques (MITRE ATT&CK knowledge preferred).

• Familiarity with IPS, WAF, and cloud security monitoring tools.

• Basic knowledge of Linux, Windows, and database systems for log analysis and investigation.

• Strong analytical skills with the ability to identify anomalies, correlate alerts, and detect potential threats.

• Enthusiasm for automation and scripting to improve SOC workflows and efficiency (basic scripting knowledge a plus).

• Willingness to continuously learn, adapt, and contribute to the improvement of detection use cases and incident playbooks.

• Passionate about cybersecurity, continuous learning, and emerging technologies.

• Open-minded and adaptable towards adopting new technologies, including Artificial Intelligence (AI), Agentic AI, and security automation.

• Demonstrates curiosity, innovation, and a forward-thinking mindset in enhancing security operations capabilities.

• Strong interest in contributing towards the development of an AI-enabled and automation-driven SOC environment.

Other Information:

NIE staff can take chartered buses at their own expense from or near their homes to the NIE campus. This is subject to the availability of seats.