Job Description

Responsibilities
Security Operations & Incident Response

• Monitor and investigate security alerts (directly or via SOC)
• Lead or support incident response for:
• Malware / ransomware
• Phishing and account compromise
• Insider threats
• Data leakage incidents

• Coordinate containment, eradication, and recovery activities
• Conduct post-incident root cause analysis and improvement actions

Vulnerability & Patch Management

• Perform vulnerability scanning and risk assessment
• Analyse scan results and prioritize remediation based on business risk
• Coordinate patching with IT and application teams
• Track remediation progress and report risk exposure

Security Tool Ownership

• Own day-to-day operation of security platforms such as: ? SIEM / SOAR
• EDR / XDR
• Email and web security ? DLP, CASB

• Tune detections, improve signal quality, and reduce false positives
• Integrate security tools with enterprise systems
• Advantage if verse in tools like Sentinel / Securonix

Threat Management & Intelligence

• Track emerging threats, vulnerabilities, and attack trends
• Assess relevance and impact to the organization
• Translate threat intelligence into actionable controls and detections

Governance, Risk & Compliance Support

• Support compliance with standards and regulations:
• ISO 27001, NIST, SOC 2, PDPA, GDPR
• Participate in internal risk assessments and audits
• Maintain security documentation, policies, and procedures
• Support third-party risk assessments and vendor reviews

User Awareness & Advisory

• Provide security guidance to IT, developers, and business users
• Support security awareness programs and phishing simulations
• Act as internal security SME and trusted advisor

Continuous Improvement

• Identify gaps and recommend security enhancements
• Drive automation and efficiency improvements
• Measure and report security KPIs and risk metrics

Requirements

• Degree in Computer Science/Information Technology or equivalent
• At least 3 years' experience in IT
• Basic technical knowledge in IT network infrastructure, server platforms (Unix, Windows platform) and desktops (OS X and Windows XP and above)
• Experience in using security tools (E.g. Security Endpoint solutions, CyberArk, Tenable Nessus, Securonix, Sentinel))
• Certified with one or more of the following: QISP, CISSP, Cybersecurity Nexus, CompTIA Security+

Shortlisted candidates will be offered a 1 Year Agency Contract employment

Skills Required