Security & SOC Analyst (SecOps)

About Liquid Group

Liquid Group is a FinTech payments services group based in Singapore. Liquid empowers and connects businesses and individuals to make transactions in a smart, secure and cost-effective way, anywhere in the world. We operate a regional payment network to enable cross-border QR payment services for e-wallet operators, banks, and merchants.

We also provide white-label solutions to accelerate the development and adoption of mobile payments for our business partners. We work in a collaborative and adaptive way, exploring innovative ideas and solving challenging problems to develop our products. Together, we ensure efficiency, security, and convenience for our partners and customers.

Website: www.liquidgroup.sg

Role Overview

We are seeking a Security & SOC Analyst (SecOps) to support security monitoring, incident response, cloud security operations, vulnerability management, and compliance activities across our AWS-based platforms. This role plays a critical part in threat detection, investigation, regulatory compliance, and coordination with Cloud Operations, Engineering teams, and external security vendors. The ideal candidate is hands-on, detail-oriented, and comfortable working in a fast-paced production environment.

Key Responsibilities

SOC Operations & Incident Response

  • Monitor security alerts and events using SIEM, EDR, and security monitoring tools

  • Perform alert triage, investigation, containment, and incident response

  • Escalate confirmed incidents to Security Engineering / Infrastructure Leadership with clear evidence and impact analysis

  • Participate in incident bridges, post-incident reviews, and security reporting

  • Maintain incident timelines, evidence collection, and response documentation

  • Support continuous improvement of SOC workflows, alert tuning, and response playbooks

AWS Security Operations

  • Monitor and support security controls across AWS environments

  • Review and respond to findings from AWS Security Hub, Amazon GuardDuty, AWS CloudTrail, and IAM Access Analyzer

  • Assist with IAM access reviews, privilege management, and policy enforcement (least privilege)

  • Support encryption and key management using AWS KMS, key rotation, and secure configurations

  • Work with Cloud Ops / DevOps teams to remediate AWS security findings and reduce risk exposure

  • Support logging and audit readiness across AWS accounts and services

Vulnerability Management

  • Support vulnerability scanning, tracking, prioritization, and remediation validation

  • Coordinate with infrastructure, application, and vendor teams on vulnerability fixes

  • Track risk acceptance, exceptions, remediation SLAs, and closure reporting

  • Assist with patch management tracking and verification across systems and cloud services

Compliance & VPAT Support

  • Support VPAT (Voluntary Product Accessibility Template) assessments and evidence collection

  • Assist with security and compliance questionnaires, audits, and customer due diligence requests• Support regulatory and certification requirements such as PCI DSS, SOC 2, ISO 27001, and MAS

  • Maintain compliance documentation, evidence repositories, audit trails, and control mapping

Security Operations & Governance

  • Support implementation and enforcement of security policies, standards, and procedures

  • Assist with third-party risk assessments and vendor security reviews

  • Maintain security dashboards, operational metrics, and reporting (weekly/monthly)

  • Promote security awareness and operational best practices across teams

Key Requirements

  • 3–6 years of experience in SOC, Security Operations, or Cloud Security roles

  • Hands-on experience with AWS security services and cloud security operations

  • Experience working in a SOC or 24/7 monitoring environment

  • Strong understanding of incident response lifecycle and security fundamentals (network security, IAM, logging, threat detection)

  • Familiarity with compliance frameworks such as PCI DSS, SOC 2, ISO 27001, MAS

  • Experience supporting VPAT or accessibility/security assessments and evidence collection

  • Strong analytical skills with good documentation and communication abilities

  • Ability to coordinate across multiple teams during incidents and investigations

Nice to Have / Certifications (Added Advantage)

  • AWS Certified Security – Specialty

  • AWS Certified Solutions Architect / AWS SysOps Administrator

  • Security certifications: CompTIA Security+, GCIH / GCED, or equivalent

  • Experience with SIEM tools such as Splunk, OpenSearch, Microsoft


Interested? Please submit your CV to hr@liquidgroup.sg.