Work closely with internal and external stakeholders to manage the technical risk, security operation and SOC.
Act as IT security expert for department in the areas of cyber security assessments, PAM, Database, WAF, Firewall and EPP/EDR.
Perform risk assessment and identify mitigation controls for the risk area identified.
Enhance and build cyber threat detection user cases and assist in analyzing and reducing false positive.
Identify infection/compromise in the company utilizing threat intelligence and indicators of compromise (IOCs) from different threat Intel sources and regulators.
Ensure all compliance and security control functions are performed timely and orderly.
Drive continuous improvement of procedures and processes related to cybersecurity process and operations monitoring.
Track, monitor and valid security-related and risk issues, provide an action plan to rectify the issues and prevent recurrence.
Generate security reports and metrics as required.
Provide timely and periodic update to managements on its security matters.
Stay current on the latest Cyber threats, Attacks and vulnerabilities etc.
Good diploma or degree in Computer Science, Digital Forensic or Engineering preferred.
Preferred minimum of 6 years of relevant work experience in IT security auditing or security operation role.
Strong knowledge in internet infrastructure, networking technology and security (i.e. DNS, DHCP, Firewall, WAF, IDS, IPS, VPN, APT and TCP/IP protocols)
Working experience with major SIEM will be advantage
Demonstrated ability to multitask and is detail-oriented with inquisitive mind during case investigation.
Good team player with strong communication skills with project teams, stakeholders, senior management, and contractors including both technical and non-technical personnel.
Professional security related qualification (e.g. CEH, ECIH/GCIH, and ITIL) will be favorable although not mandatory technical skills
