Enable job alerts via email!
Manager, Threat Detection & Engineering
Awantec
Cyberjaya
On-site
MYR 80,000 - 120,000
Full time
Yesterday
Be an early applicant
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A cybersecurity solutions provider in Cyberjaya is seeking a skilled cybersecurity engineer to lead the deployment and optimization of SIEM and EDR platforms. Responsibilities include overseeing threat monitoring, providing technical advisory, and managing incident response. The ideal candidate should possess a Bachelor's Degree in Information Security or a related field, with 5-6 years of relevant experience. Familiarity with cloud environments and proficiency in security tools are essential for this role, offering opportunity for significant impact on SOC operations.
Qualifications
- 5–6 years of hands-on experience in cybersecurity engineering or SOC operations.
- Professional certifications in EDR/XDR or SIEM are preferred.
- Familiarity with cloud security and log integration workflows.
Responsibilities
- Lead deployment and management of SIEM, EDR, and XDR platforms.
- Conduct threat monitoring activities and incident analysis.
- Support technical advisory on detection engineering and SOC optimization.
Skills
Cybersecurity engineering
Incident response support
Threat detection logic
Cloud security
Log correlation
Education
Bachelor’s Degree in Information Security, Computer Science, or related technical field
Tools
SIEM tools (e.g., Splunk)
EDR/XDR platforms (e.g., Trend Micro, CrowdStrike)
Firewalls
VPN technologies
Job description
Key Accountabilities
- Lead deployment, optimization, and lifecycle management of SIEM, EDR, and XDR platforms, ensuring effective detection coverage and alignment with MITRE ATT&CK
- Oversee threat monitoring activities, including L2 incident analysis, threat hunting, and purple-team validation to strengthen SOC detection maturity
- Provide technical oversight for endpoint, network, and cloud security implementations (EDR, firewalls, WAF, IDS/IPS), ensuring secure configurations and operational readiness.
- Support client-facing engagements by delivering technical advisory on detection engineering, SOC optimization, and incident readiness, including playbook development.
- Collaborate with the Principal Consultant to align detection controls with ISO 27001, NIST CSF, PDPA, and RMiT requirements, contributing to posture assessments and Phase 1–2 roadmap execution
- Lead and deliver technical POCs, solution designs, and workshops together with the sales teams, including presenting architectures and detection approaches to senior stakeholders
- Guide SOC analysts and junior engineers, develop internal detection engineering content for the Cyber Academy, and enhance engineering playbooks and deployment templates
Job Summary
- Deploy and configure cybersecurity technologies across endpoint, network, and cloud environments
- Conduct threat hunting, detection development, and analysis of suspicious behavior
- Perform incident support, including evidence gathering, timeline reconstruction, and recovery advisory
- Lead SIEM/SOC engineering tasks such as onboarding data sources, parser development, and log quality assurance
- Assist in security assessments and gap analyses aligned to ISO 27001, NIST CSF, and RMiT
- Coordinate with Principal Security Consultant to develop security controls that support governance and compliance outcomes
- Drive continuous improvement of MTTD, MTTR, and overall SOC maturity
Job Requirements
- Bachelor’s Degree in Information Security, Computer Science, or related technical field
- 5–6 years of hands‑on experience in cybersecurity engineering, SOC operations, detection engineering, or IR support
- Professional certifications are preferred but not mandatory. For example:
- EDR/XDR certifications (Trend Micro, CrowdStrike, SentinelOne)
- SIEM/XDR certifications (Splunk Power User / SIEM certifications)
- Relevant offensive security certifications (e.g., CEH, eJPT; OSCP is an advantage)
- Cloud security certifications (e.g., Google Cloud Security, AWS Security Specialty, or Azure Security) are an added advantage
- Network/security certifications (e.g Fortinet NSE4/5, CCNP Security, HCIP Security)
- Familiarity with cloud environments (e.g Google Cloud, AWS, Azure) and log integration workflows
Desired Experience/Exposure
- Experience deploying SIEM/XDR platforms in production environments
- Deep understanding of threat detection logic, log correlation, and alert tuning
- Exposure to VAPT workflows, basic offensive testing, or purple-team validation
- Experience with network defense technologies (firewalls, IPS/IDS, VPN, SWG)
- Good understanding of regulatory requirements (RMiT, PDPA, ISO 27001 controls)
- Ability to translate technical detections into risk‑based reporting for CXO audiences
Get your free, confidential resume review.
or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Michael Carter
I was stuck sending out resumes with no response until I used JobLeads. They made my resume impossible for recruiters to ignore.
Sophie Reynolds
JobLeads' resume review helped me fix critical mistakes, and I started getting interviews almost immediately!
Daniel Fischer
With JobLeads' resume review, my resume went from overlooked to interview-ready in no time!