Security Engineer

EVYD Technology is a healthcare AI and Big Data company established with the aim to deliver data-driven solutions to address healthcare issues facing countries in Southeast Asia and beyond.

We are transforming healthcare through Data Intelligence. Our Big Data platform aggregates raw data that reside in disparate information systems and convert them into computable, structured and standardized data so that they could be further processed to derive deep insights and knowledge using natural language processing, machine learning and other AI technologies.

JOB TITLE: Security Engineer

REPORTING TO: Head of Security

IN BRIEF

As a Security Engineer, you will be part of the IT Security team and help design, build and support our core security infrastructure and information security processes. This individual will build strong partnership with the technical teams within EVYD to help devise strategies for the detection and response to threats and incidents.

Key Responsibilities:

• Act as subject matter expert for our SIEM solution
• Maintain SIEM operations, documentation and knowledge of the latest active security threats
• Implement analytics-based rules to enhance and maintain visibility for the Information Security team across endpoint & network activity and audit logs
• Perform proactive threat analysis from network traffic, user and security logs, and other relevant security data to hunt for potential adversary activity.
• Develop and maintain cyber incident response and handling playbooks for various threat scenarios.
• Recommend and implement tools to enhance detection, response and recovery functions and security posture.

Requirements:

BASIC

• More than 4 years of relevant work experience with a Bachelor degree or more than 3 years of relevant work experience with an advanced Degree (e.g. Masters)
• Strong understanding of information security principles, network layer protocols and operating systems technologies
• Fluent in English, proficient in Mandarin

PREFERRED

• Security certification from: SANS, GIAC, EC Council, (ISC)2, ISACA
• Hands on experience with Cloud SIEM (e.g. Sentinel), EDR and SOAR tools preferred.
• Comfortable in Windows, Linux systems and scripting languages
• Knowledge of cyber security threats, vulnerabilities, hacking and exploit methods etc.

Due to limited capacity, we regret that only shortlisted candidates will be contacted.