Senior Security Operations Center (SOC) Engineer

At Aspire, we’re more than just a FinTech company—we’re the leading all-in-one financial operating system built to empower the world’s innovators and entrepreneurs. We are on a mission to reinvent business finance, empowering startups and businesses to realise their full potential.

Founded in 2018, Aspire has raised over USD 300M+ across equity and debt from world-class investors. In 2023, we successfully closed an oversubscribed USD 100 million Series C equity round led by Sequoia Capital and Lightspeed Ventures with participation of Tencent, Paypal Ventures, LGT Capital Partners, Picus Capital and MassMutual Ventures. To power our solutions, we have partnered with some of the best companies in the world such as Visa and Wise and empowered more than 50,000 businesses using our suite of products.

Aspire has consistently been recognized for excellence, earning Best Employer and Startup of the Year by the Asia FinTech Awards in 2022 and 2023, ranked as LinkedIn’s Top Startup in Singapore, and listed on CB Insights’ Top 100 Global Fintech in 2023 and 2024.

You will be amazed by the energy and experience of our team! Aspire serves as an environment for you to innovate and drive change with our team of ex-entrepreneurs, ex-founders, and high-achievers with international and diverse backgrounds.

Are you a top talent who is passionate about entrepreneurship? Join our rapidly growing team to make an impact in the fintech space! 

About the team:
At Aspire, we recognize that data and infrastructure security are paramount to the success and trust of our customers. Our Security Team is at the forefront of protecting and securing our systems, ensuring compliance with industry best practices, and continuously learning and evolving to stay ahead of emerging threats. Our emphasis extends to data privacy, seamlessly integrating it into our security initiatives.

About the role: 
As a Senior SOC Engineer at Aspire, you'll play a pivotal role in the administration of our IT systems, SOC development, and swift response to security alerts. Join a dynamic and rapidly growing security team, with minimal requirements for on-premise administration. Your expertise in cloud environments and Software as a Service (SaaS) will be indispensable.

Key Responsibilities:

• Keep building our SIEM/SOC with Azure Sentinel, Grafana and everything you think we should use.
• Ability to handle critical security incidents following proper IR processes and procedures.
• Act as the technical subject-matter-expert for SOC related topics or during incidents.
• Monitor and analyze security logs and alerts to detect potential security threats.
• Develop and optimize automations to scale detection and response capabilities.
• Research emerging cyber threats, vulnerabilities, and exploits relevant to our infrastructure and products.
• Implementing threat intelligence from different sources.
• Utilize threat modeling and log analysis to build behavioral based detections.
• Work with stakeholders to discover new detection capabilities and logging sources.
• Design, develop, and review security policies, procedures, and standards aligned with industry best practices.
• Assist in preparing security reports for compliance and audit purposes.
• Collaborate with IT and cross-functional teams to reinforce security measures and controls.
• Engage in incident response, root cause analysis, disaster recovery planning, and related exercises.
• Support IT integration, encompassing hardware, software maintenance, backups, and updates.
• Offer technical support to internal teams and end-users.
• Improve security architecture for SOC tools and other IT technologies.
• Document, respond, and report on security incidents and IT operations.
• Continuously refine IT operation processes and procedures to ensure top-tier and secure service delivery.
• Draft user manuals, standard operating procedures (SOPs), and FAQs.
• Steer and support daily IT and security initiatives.

Essential Qualifications and Experience:

• Strong proficiency in written and spoken English.
• Tertiary education from a recognized University or Polytechnic.
• Must have hands-on experience with SIEM/SOAR/EDR tools, working knowledge on Sentinel,Logic Apps and MS-365 suites would be preferable. 
• Knowledge of Cloud environments such as AWS & Microsoft Azure would be essential.Experience with threat hunting and building threat detections, creating automation playbooks. 
• Familiar with shell scripting, or another scripting language such as Python.Skilled in memory forensics, malware analysis, network traffic analysis, and log scrutiny.
• Passion for staying abreast of the latest security trends and tech for optimal security maintenance.
• Prior experience in SOC construction, maintenance, and operations.
• Strong knowledge of Security frameworks such as Cyber Kill Chain and MITRE ATT&CK and how they can be used to understand and defend against cyber attacks.
• Excellent problem-solving skills combined with hands-on experience doing root cause analysis and post-incident reviews.
• Willingness to work an on-call rotation during out-of-business hours and weekends.
• Any Security related certifications would be an added advantage.

Desirable Skills:

• Degree in Computer Science, IT, Engineering, or a related field.
• Familiarity with AWS, GCloud, GitHub, Google Workspace,CloudFlare, Azure Logic Apps, and malware analysis.
• Microsoft 365 (including Entra and Intune)
• Experience in retesting penetration testing findings.
• Proficiency with Linux environments.
• Software development skills, especially in Python, Bash, and Powershell.
• Personal tech projects showcased on platforms like a blog or Github.

What we offer

• Uncapped flexible annual leave.
• Hybrid work arrangement. 
• Training subsidy for your professional growth.
• Wellness benefit.
• Team bonding budget to foster collaboration and sense of belonging.
• Flexibility to work from anywhere (for up to 90 days per annum).
• Culture is Key: We always strive to cultivate a special culture that brings special talents together - You can learn more about our culture on our careers site and LinkedIn Life page.
  

Equal Opportunity Statement 

Aspire is an equal opportunity employer and is committed to providing equal employment opportunities to all qualified individuals without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or any other protected characteristic as outlined by applicable laws. 

Please note: by submitting your application, you acknowledge that you have read and understood Aspire’s Data Protection Policy for Employees, Freelancers, Contractors and Job Applicants (the “Policy”), and consent to the collection, use and disclosure of your personal data by Aspire for the purposes set out in the Policy. You may withdraw consent for such collection, use and disclosure, and make an access or correction request in respect of your personal data, in accordance with the Policy by emailing people@aspireapp.com.