Enable job alerts via email!
Senior Incident Response Specialist, Cyber Security
Cygnify Pte Ltd
Kuala Lumpur
On-site
MYR 100,000 - 150,000
Full time
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A cybersecurity firm in Kuala Lumpur is looking for a Senior Analyst – Cyber Security Incident Response to oversee incidents from detection to closure. You'll engage in monitoring, deeply analyze security alerts, and work with various teams to ensure effective incident response. Ideal candidates have strong experience in incident response and familiarity with SIEM tools. This role is pivotal in enhancing cyber resilience and addressing security challenges.
Qualifications
- Experience in cybersecurity incident response.
- Strong analytical skills for incident triage and investigation.
- Familiarity with SIEM platforms like Elastic Stack.
Responsibilities
- Monitor and analyze cybersecurity incidents through SOC.
- Conduct incident triage and investigation.
- Collaborate with internal teams for incident resolution.
The Senior Analyst – Cyber Security Incident Response is responsible for monitoring, detecting, and analyzing cybersecurity incidents through the Security Operations Centre (SOC) platform. The role supports the end-to-end incident lifecycle — including triage, investigation, containment, and closure — ensuring timely response to security events and maintaining cyber resilience. This role acts as the Level 2 (L2) Incident Responder, bridging SOC analysts and Incident Response management by performing deep technical analysis and coordinating with internal teams for resolution.
- Perform end-to-end incident triage and investigation of security alerts escalated from L1 SOC analysts.
- Ensure timely incident analysis, containment, and escalation aligned with MTTD and MTTR goals.
- Support the SIEM platform (Elastic Stack) by fine-tuning existing rules and suggesting new detections.
- Conduct log analysis and correlation across multiple data sources (network, endpoint, and cloud).
- Create and maintain incident documentation, reports, and lessons learned.
- Support incident response playbook execution during containment and recovery phases.
- Collaborate with IT, network, and application teams for incident remediation and root cause analysis.
- Provide insights for use case improvements and participate in use case validation and testing.
- Escalate confirmed incidents to CSIRT / Assistant Manager – Incident Response for further action.
- Participate in post-incident reviews, contributing to process and detection improvements.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
