Title:  Threat Research Analyst

ST Engineering is a global technology, defence and engineering group with offices across Asia, Europe, the Middle East and the U.S., serving customers in more than 100 countries. The Group uses technology and innovation to solve real-world problems and improve lives through its diverse portfolio of businesses across the aerospace, smart city, defence and public security segments. Headquartered in Singapore, ST Engineering ranks among the largest companies listed on the Singapore Exchange.

Join our Cyber Team

We are an industry leader in cybersecurity with over two decades of experience, we deliver a holistic suite of trusted cybersecurity solutions to empower cyber resilience for government and ministries, critical infrastructure, and commercial enterprises. Backed by our indigenous capabilities and deep domain expertise, we offer robust cyber-secure products and services in cryptography, cybersecurity engineering, digital authentication, SCADA protection, audit and compliance. We specialise in the design and build of security operations centres for cybersecurity professionals and provide managed security services to strengthen the cybersecurity posture of our government and enterprise customers.

Role Summary

We are seeking a Threat Research Analyst to strengthen our proactive cybersecurity capabilities through advanced threat intelligence, deception technologies, and AI-driven data analysis. This role will focus on building and enhancing threat data pipelines, deploying high-interaction honeypots, conducting in-depth threat research, and producing actionable intelligence to support early warning and strategic decision-making.

The ideal candidate combines technical expertise, analytical rigor, and strong communication skills to translate complex threat activity into meaningful insights.

Key Responsibilities

• Collaborate with internal teams and external partners to design and implement scalable threat data pipelines
• Research, evaluate, and deploy AI-powered high-interaction honeypots and deception technologies to capture adversary behaviours
• Analyse attacker tactics, techniques, and procedures (TTPs) using frameworks such as MITRE ATT&CK
• Correlate data from multiple sources (SIEM, EDR, honeypots, OSINT, malware analysis) to generate actionable threat intelligence
• Produce threat actor profiles, campaign analysis, and periodic threat landscape reports
• Develop early warning indicators and support proactive threat hunting initiatives
• Present findings to technical teams and leadership stakeholders

Required Qualifications

• At least 7 years of experience in threat intelligence, cybersecurity research, SOC operations, or malware analysis.
• Experience working with SIEM/EDR platforms and log analysis tools.
• Strong understanding of network protocols, attack methodologies, and adversary behaviour.
• Familiarity with intelligence standards (e.g., STIX/TAXII) and scripting (Python or similar).
• Proven ability to produce clear, structured threat intelligence reports.

Preferred Qualifications

• Experience with honeypots or deception technologies
• Knowledge of AI/ML applications in cybersecurity
• Relevant certifications (e.g., GCTI, GCIA, CISSP)

Key Competencies

• Analytical and investigative mindset
• Ability to translate technical findings into strategic insights
• Strong written and verbal communication skills
• Collaborative approach to working with partners and stakeholders
• Continuous learner with a proactive security mindset

Find out more:  https://www.stengg.com/cybersecurity

ST Engineering believes in fostering a culture where team members are encouraged to overcome challenges, explore new ideas, and work together to succeed. We value individuals who are determined to push beyond the boundaries, and have a thirst for knowledge, continuous learning, and self-improvement.