SOC Analyst, Kuala Lumpur, Malaysia

Business Unit: Technology

Location: Kuala Lumpur

Contract Type: Permanent/Full Time

Closing Date: 31 December 2018

SOC Analyst, Kuala Lumpur, Malaysia

The Team…
Are accountable for GBG’s Information Security, Security Compliance, and Information Risk mitigation.

The Role…
The security operations analyst is responsible for supporting the Sec Ops Manager and overseeing GBG Security Operations activity. Improve and challenge existing processes and procedures in a very agile and fast moving information security environment.

Security analysts should have expert knowledge of:
• Information security policies and goals
• Log analysis and event traffic patterns
• The current IT threat landscape and upcoming trends in security

What you will do…
• Maintain up-to-date knowledge of the IT security industry including awareness of new or revised security solutions, and the development of new cyber-attacked and threat vectors
• Monitor the security operations centre, review and analyse logs, interpret the implications of problem activity, and prepare regular detailed analysis and management reports with recommendations for improvement
• You will have a responsibility for the identification, investigation, and resolution of security breaches
• Support day to day vulnerability scanning, security testing, threat monitoring, data loss and leakage prevention, security event monitoring, incident management, security forensics, crisis simulation exercises and security research
• Provide regular statistics and information to support service and management reviews
• To support the upkeep of security risk register, identification of incident themes and areas for improvement
• To ensure working processes align to ISO27001, company policy and regulatory demands
• Create high trust working relationships with peers and interested parties both inside and external to the company

To enable you to be successful, we are looking for…

• Experience in security management/monitoring
• Hands on experience and thorough understanding of security event analysis and relevance in production environments
• Knowledge of technical infrastructure networks, databases and systems
• Knowledge of latest threat trends and security landscape
• Strong analytical and problem-solving skills to enable effective security incident and problem resolution
• Good team-oriented interpersonal skills, with the ability to interface effectively with a broad range of people and roles
• Strong written and verbal communication skills
• Experience in one of the following:
o Network operations or engineering
o System administration on Unix, Linux, or Windows
o Malware analysis
o Offensive security (penetration testing/vulnerability scanning)
o Advanced incident handling
o Scripting and automation
• Experience in developing, documenting and maintaining security procedures.
• General technical skills, includes TCP/IP knowledge, networking and security product experience
• Willingness to acquire in-depth knowledge of network- and host security technologies and products (such as firewalls, network IDS, scanners) and continuously improve these skills
• Experience of User Entity Behaviour Analytics (EUBA) services, such as Darktrace and security threat intelligence services like Digital Shadows or comparable equivalent

• Hold at least one of the following: CISM, CISSP, CISA, GIAC certifications, Security+, OSCP
• IT related degree or equivalent experience

Apply now