Engineer (Security Operation)

About the role

You review and advise on the designs of the Security Operation Centre (SOC)'s infrastructure, determining the placement and coverage of intrusion detections, endpoint hardening agents within the host and network environment.

What you will be working on

• Create and manage customised security event detection rules
• Oversee daily SOC operations involving threat detection and incident management
• Supervise SOC training and development activities
• Establish and maintain operational procedures, guidelines and knowledge management
• Interact with vendors and system managers for system integration and enhancement
• Rotate with Head SOC for 24/7 monitoring duties

Challenge(s)

• Balancing leadership and technical skills
• Managing resources, including staffing needs and integration of complex SOC tools
• Rapidly responding to cyber incidents while maintaining composure

What we are looking for

• Education in Cybersecurity, Computer Engineering, Information Systems or a related field
• At least 5 to 8 years of working experience in cybersecurity roles, minimum 2 years in a senior or supervisory role within a SOC or Cyber Emergency Response Team
• Technological knowledge in threat detection, incident response and security tool management
• Proficiency in SOC tools (Security Information and Event Management, Intrusion Detection System, Intrusion Prevention System, Endpoint Detection and Response)
• Certification in GIAC Security Operations Certified (GSOC), GIAC Certified Incident Handler (GCIH), Certified Information Systems Security Professional (CISSP) and/or Certified Information System Manager (CISM) is preferred
• Familiarity in evaluating cybersecurity tools
• Vendor collaboration and management skills

Apply

Only shortlisted candidates will be notified.