Cyber Security Engineer

Responsibilities:

1. Responsilbe for daily alert monitoring, analysis, initial triage and classification.

2. Use SIEM platform(Eg: Splunk, ElasticSearch)to collect logs and analyze the events.

3. Response, record, escalate and report the security incident based on SOP.

4. Review and process Parsec and PAN whitelisting request.

5. Monitor the status and completion of vulnerability scans, and regularly review vulnerability scan reports.

6. Monitor security tickets generated by platforms such as WAF, vulnerability scanning, EDR, and CPI, and identify the asset owner responsible for each ticket.

7. Handle privilege access, system configuration compliance, and vulnerability management collaboration.

8. Analyze network traffic and logs to identify potential threats.

9. Conduct periodic vulnerability assessments and remediation follow-up

10. Support the implementation of security policies, standards, and procedures.

11. Perform routine maintenance on security devices (patching, configuration updates, firmware upgrades).

Qualifications

1. Minimum Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field.

2. Minimum 1 year working experience in network security and cyber security related fields

3. Understanding networking, security devices (Firewall, IDS/IPS)

4. Well understanding with common cybersecurity threats such as phishing emails, brute-force attacks, and malware.

5. Well understanding with the use of common SaaS applications such as Jira and Office 365.

6. Strong analytical and troubleshooting skills.

7. Able to work shift and perform well under pressure.

8. Willingness to solve the challenges in a practical/hands-on manner.

Good to have

1. Ability to perform automation when required, with any programming language such as PowerShell, Bash, Python, Java.
2. Experience in SOC environment and participated cyber drills
3. Strong knowledge on different standards, guidelines and best practices, such as ISO 27001, CIS Benchmark etc.