Job Description

PURPOSE To accomplish all assigned tasks by the management in a timely and effective manner as deemed necessary for the betterment of the organization as a whole
DUTIES AND RESPONSIBILITIES CYBER PROTECTION

• To lead the team in establishing cyber protection programs and activities.
• To perform as lead researcher, giving guidance to team on where, what, and how to dig information.
• To review materials prepared and written by the team.

INCIDENT FORENSICS

• To review and analyze entry points of an attack and related vulnerabilities for corrective actions.
• To coordinate with clients, other domain specialists, internal & external SMEs, and other related departments or units in gathering evidences and information relating to an incident.

OFFENSIVE DEFENSE

• To act as the champion in conducting Red team and Purple Team exercises
• To act as the champion in assessing vulnerabilities and providing appropriate recommendations.
• To perform Vulnerability Assessment & Penetration Testing
• To perform Breach and Attack Simulations
• To perform Compromise Assessment

PROCESS ENGINEERING

• To act as the champion in establishing and institutionalizing the group's optimum process standards.
• To contribute in the establishment of the most effective and efficient processes.
• To promote and uphold compliance to agreed standards and processes.
• To report process inefficiencies and non-compliance to agreed standards and processes.
• To regularly conduct audit on processes and ensure compliance to standards

TEAM MANAGEMENT

• Supervise the operations of the team and ensures it is in accordance with the department's operation policies, protocols and procedures
• Train and coach new members going on board, specifically on processes, techniques and tools.
• Assign objective and attainable tasks for hist/her team members.
• Conduct performance review for his/her team members

CONTINUOUS IMPROVEMENT

• To regularly measure processes and find areas of improvement.
• Collaborate with other Leads in improving workflows, documentations, standards and processes.

INFORMATION MANAGEMENT

• To promote and contribute to Cyber Security Intelligence's information and knowledge repository.
• To curate and manage the Cyber Security Intelligence Information Library especially topics relating to Cyber Security Protection.

Minimum Qualifications
Minimum Education

• Must be a graduate of Computer Studies/Computer Engineering/Information Technology/Electronics Engineering or equivalent

Minimum Experience/Training

• Having at least 3 years working experience in the cybersecurity space
• Trainings and Certification Requirement

(M) ITIL Foundation

(M) Comptia Security+
(O) Comptia CySA+
(O) Comptia CASP+

(M) EC Council: Certified Ethical Hacker
(M) EC Council: Certified Penetration Testing Professional

(M) - Mandatory
(O) - Optional
Competency TECHNICAL SKILLS (I) ITIL
(A) Networking Fundamentals
(A) Operating System Fundamentals
(A) Application/Web Programming
(A) Enterprise Application Architecture
(A) Cybersecurity Fundamentals
(A) Secure Network Architecture
(I) Application Security & Secure Coding Practices
(A) Identity & Access Management Principles
(I) Cryptography & Encryption Technologies
(A) Perimeter Defense Technologies
(A) End-Point Protection Technologies
(I) Vulnerability Scanning & Ethical Hacking
(A) Advanced Persistent Threats & pattern modeling
(I) Forensic Investigation
(N) Dark web Surfing & Intel Gathering

(F) - Familiar / 0-12 months
(N) - Novice / 1-2 years
(I) - Intermediate / 3-4 years
(A) - Advanced / > 5 years
COMMUNICATION SKILLS (I) Speaks clearly and can be easily understood.
(I) Expresses & speaks ideas in a logical and organized sequence.
(I) Writes clearly, concisely and effectively.
(I) Expresses ideas in a logical and organized sequence in written form.

(F) - Familiar / 0-12 months
(N) - Novice / 1-2 years
(I) - Intermediate / 3-4 years
(A) - Advanced / > 5 years

Having at least 3 years working experience in coordinating with partners & clients
ABILITIES

• Must work well under pressure
• Must have good interpersonal skills
• Must be pro-active when identifying potential issues
• Must show strong & effective coaching capabilities
• Must show strong customer management skills
• Must prepare well-organized and comprehensive reports tailored to its audience
• Able to effectively assess tasks & risks to prioritize work
• Able to approach a complex task by breaking it down into its component parts and considering each part in detail