Your Browser is Not Supported

To ensure jobstore run smoothly, please use the latest version of the following supported browsers:

Jobs in Malaysia   »   Jobs in Selangor   »   Legal / Public / Security jobs   »   Security Incident Management Analyst

Security Incident Management Analyst

Malaysia
Being one of the Fortune 500 (Global) companies, our client provides financial solutions and protections to their clients across more than 50 countries around the globe. Our client is also one the very few if not the pioneer within the financial instituti

Incident Response Orchestration and Automation Leader

Malaysia - Permanent
  • Innovation
  • Cutting-edge Technology
About our Client:

Being one of the Fortune 500 (Global) companies, our client provides financial solutions and protections to their clients across more than 50 countries around the globe. Our client is also one the very few if not the pioneer within the financial institution community to kickstart an automated SOC to bolster their security in the IT space.

Responsibilities:
  • Responsible for Analytics automation strategy and architect and deliver security monitoring.
  • Managing the integrations and mapping between various systems for IR and analytics.
  • Contextualize warnings by looking at various data points and correctly assess risks and alerts
  • Write and manage playbooks for automation programs with SOAR solution
  • Incident response, vulnerability mapping, automate analysis,consuming threat feeds and intelligence gathering to track adversaries
  • Responsible for manage and assure quality included Incident Management quality, SoP of SOC Operation, SOC Administration, manage tracking of Metrics and reporting.
  • Responsible for Project Management, Planing and Team Administration.
Requirements:
  • Experience with Incident Response, machine learning models and reverse engineering.
  • Deep understanding with automation tools and able to perform building automation of services and scripting.
  • Able to work with extremely large data sets.
  • Must able to scrip using Splunk, phyton, Power BI and SQL.
  • Excellent interpersonal skills to articulate organization need for detection improvements.
  • Min 2 years exposure with API development and integration for security appliances.
  • Min 1 year exposure in cloud services such as Google Cloud, AWS or Azure.
  • Deep understanding with SOC processes such as Enpoint Detection, Malware Analysis, SIEM, Threat Intelligence and Response Solutions.
  • Deep hands on skills working with Splunk and good understanding in Splunk SPL.
  • Good understanding with SOAR platforms such as Phantom, Resilient and Demisto.
What to Expect:

You can expect to be working with highly advanced technology that little to no other company is using. Apart from that you'll have the opportunity to work closely with high intelligent counterparts from other countries!

If you're interested with the above role, drop me your updated CV to guok.khoryik@springasia.com

Learn more...

✱   This job post has expired   ✱

Sharing is Caring

Know others who would be interested in this job?