Job Description

About the Role

We are looking for a

Cybersecurity Senior Analyst

to join our security operations and governance team. The successful candidate will play a key role in monitoring, analyzing, and responding to cybersecurity incidents, as well as improving our overall security posture. This position requires strong technical skills, analytical thinking, and the ability to work collaboratively with IT and business teams to mitigate cyber risks.

Key Responsibilities

Monitor and analyze security alerts, logs, and threat intelligence to detect potential security incidents. Investigate and respond to cybersecurity incidents, conducting root cause analysis and recommending corrective actions. Perform vulnerability assessments, security monitoring, and risk analysis on systems, networks, and cloud environments. Support the development and maintenance of security controls, policies, and standard operating procedures. Work with IT and infrastructure teams to implement and maintain endpoint, network, and application security. Assist in compliance initiatives such as ISO 27001, NIST, GDPR, and PDPA. Prepare technical reports, dashboards, and metrics for management review. Stay current on emerging threats, vulnerabilities, and best practices in cybersecurity.

Required Qualifications

Bachelor's or Master's degree in Computer Science, Information Security, or related field. 8-10 years of experience in cybersecurity consulting, IT risk management, or information assurance. Strong understanding of network security, endpoint protection, firewalls, SIEM tools (e.g., Splunk, QRadar), and intrusion detection systems. Familiarity with frameworks and standards such as ISO/IEC 27001, NIST CSF, COBIT, and OWASP. Hands-on experience with vulnerability management, malware analysis, and threat hunting tools. Good understanding of cloud security (AWS, Azure, or Google Cloud). Excellent analytical, troubleshooting, and communication skills.

Preferred Certifications

CompTIA Security+, CEH, CySA+, SSCP, or equivalent. * ISO 27001 Foundation or SOC Analyst certifications are an advantage.