Enable job alerts via email!
Team lead SOC
SECURXCESS
Indonesia
On-site
IDR 1.006.542.000 - 1.342.057.000
Full time
3 days ago
Be an early applicant
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A leading cybersecurity firm in Indonesia is seeking an experienced L3 Engineer (SOC Team Leader) to lead incident response activities and conduct digital forensic investigations. The role requires at least 5 years of experience in a Security Operations Center, along with strong analytical skills and the ability to deliver concise technical reports. Candidates should hold a Bachelor's degree in a technical field and preferably have relevant cybersecurity certifications. This is an on-site position with mentoring opportunities for junior analysts.
Qualifications
- Strong experience in incident response, threat hunting, and detection engineering.
- Proven ability to lead under pressure and deliver clear reports.
- Strong analytical skills for contextual analysis across diverse security logs.
Responsibilities
- Lead end-to-end incident response activities.
- Perform advanced triage across environments.
- Conduct digital forensic investigations.
Skills
Incident response
Threat hunting
Detection engineering
Analytical skills
Technical leadership
Education
Bachelor’s degree in a technical field
Job description
L3 engineer (SOC Team Leader)
- Lead end-to-end incident response activities, from preparation through containment, eradication, recovery, and lessons learned.
- Perform advanced triage across host, network, and cloud environments.
- Lead, monitor, and conduct digital forensic investigations, including memory, disk, registry, Shimcache, Amcache, and browser artifacts.
- Perform quality control (QC) on analysis results and reports produced by security analysts.
- Review threat hunting outcomes and proactively communicate findings, including indicators of compromise (IOCs), behavioral patterns, TTP-based insights, and anomaly-driven detections.
- Design, fine-tune, and propose detection rules (e.g., YARA, Sigma, KQL, SPL, CrowdStrike RTR) aligned with the MITRE ATT&CK framework.
- Provide technical leadership and mentorship to L1/L2 analysts and support decision-making during incident war-room sessions.
Requirements
- Strong experience in incident response, threat hunting, and detection engineering.
- Proven ability to lead under pressure and deliver clear, concise technical and executive-level reports.
- Strong analytical skills with the ability to perform contextual analysis across diverse security logs (e.g., EDR, Sysmon, firewall, AWS/GCP/Azure audit logs).
- Strong threat intelligence and root‑cause analysis mindset.
- Bachelor’s degree (S1) in a technical field (e.g., Computer Science, Information Security, Engineering).
- Relevant cybersecurity certifications are preferred.
- Minimum of 5 years of experience working in a Security Operations Center (SOC).
Get your free, confidential resume review.
or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Michael Carter
I was stuck sending out resumes with no response until I used JobLeads. They made my resume impossible for recruiters to ignore.
Sophie Reynolds
JobLeads' resume review helped me fix critical mistakes, and I started getting interviews almost immediately!
Daniel Fischer
With JobLeads' resume review, my resume went from overlooked to interview-ready in no time!