IT - Senior SOC Analyst (Mandarin Speaker)

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia

Applications have closed

ZFX

Trade forex, currencies, gold, oil, indices, stocks, cryptocurrencies on MT4 online trading platforms with ZFX, an FSA licensed forex broker

View company page

Principal Accountabilities :

  • Security events monitoring tools administration
  • Participation in security incident investigations
  • Proactive detection of anomalous activity and security incidents in IT infrastructure
  • Participation in the vulnerability discovery process (scanning, analysis of discovered vulnerabilities)
  • New security monitoring tools research and development
  • Installation support and content development (dashboards, alerting, etc) for Elastic Infrastructure
  • Participation in Security team’s project activities
  • Conducting periodic tests/exercises to respond on security incidents
  • Connection to the SOC’s tools of new log sources, the development of the necessary processes and instructions for Cloud infrastructure
  • Operational reporting on suspicious activity
  • Develop in cooperation with other teams alerts, rules and monitoring automation solutions
  • Automation of alerts
  • Deliver SOC and SIEM solutions
  • Participate actively and support company security driven projects and initiatives in terms of Security monitoring and automation
  • Create best practices for SOC tools in terms of their implementation across all IT functions, setup and support security quantitative KPIs in terms of Security monitoring and awareness of activities
  • Continuous improvement of Security events monitoring
  • Budget management in terms of SOC field of responsibility within Information Security function
  • Vendor assessment and comparison
  • Contribute to the management of the Security tools development direction and roadmap of security tools, investigate technologies, run proof of concepts and testing
  • Build and manage the on boarding of new security tools to SIEM (Security Incident & Event Management), infrastructure processes and SOC (Security Operations Centre)
  • Support for internal documentation (standards, manuals, descriptions, etc.)

Requirements

  • 3+ years of working experience on the same functional level
  • Solid technical and knowledge in Information Security
  • Expert knowledge and expertise with SIEM systems at the administrator level
  • Python programming skills
  • Knowledge in the area of modern techniques for exploiting the vulnerabilities of applications, information systems and networks
  • ITIL knowledge (change control process, change management, problem/incident management, procedures, guidelines, etc)
  • Understanding of the methods, techniques and procedures used at different stages of the development of complex attacks
  • Understanding network security
  • Information security principles for business applications practical knowledge is a plus
  • Experience and skills in Unix and Windows administration, basic system utilities and functions
  • Strong skills and experience with such data formats as Syslog, XML, JSON
  • Team player with energy and a desire to progress in a fast moving, demanding and progressive environment
  • Project management skills, vendor management
  • Ability to thrive under stressful situations
  • Strong knowledge in building correlations with such information security tools and systems (for understanding logs and building correlations) like: Antivirus, Endpoint detection and response, Firewalls, Vulnerability scans, Remote access technology, VPN gateways, Cloud infrastructure.
  • Expert knowledge in identification and evaluation of indicators of compromise (IOC) associated with malicious code and malware
  • Ability to work with several tasks at the same time
  • Team player with energy and a desire to progress in a fast moving, demanding and progressive environment
  • Project management skills, vendor management
  • Ability to thrive under stressful situations
  • English and Mandarin language proficiency is a MUST

Benefits

  • Medical Benefit
  • Optical Benefit
  • Life Insurance
  • Quarterly Performance Bonus
  • Work From Home (Wednesdays)
  • Work From Home / Anywhere Policy (T&C applies)

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Antivirus Automation C Cloud EDR Firewalls ITIL IT infrastructure JSON KPIs Malware Monitoring Network security Python SIEM SOC UNIX Vendor management VPN Vulnerabilities Vulnerability scans Windows XML

Perks/benefits: Team events

Region: Asia/Pacific
Country: Malaysia
Job stats:  4  2  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.