Role : Cyber Security Engineer
Experience : 4 to 7 Years
Job Summary
We are seeking a motivated and detail-oriented Cyber Security Engineer to join our Security Operations Center (SOC) team in Kuala Lumpur. The candidate will be responsible for monitoring, detecting, analyzing, and responding to cybersecurity incidents while supporting the organization's security posture. The role requires hands-on experience with security monitoring tools, incident response processes, and threat analysis in enterprise environments.
Key Responsibilities
- Monitor security alerts and events using SIEM and security monitoring tools.
- Perform initial investigation, triage, and analysis of security incidents.
- Identify potential threats, vulnerabilities, and suspicious activities.
- Escalate confirmed incidents to senior SOC analysts or incident response teams.
- Conduct log analysis across endpoints, servers, network devices, and cloud platforms.
- Support incident response activities including containment and remediation.
- Maintain incident documentation, reports, and root cause analysis.
- Assist in improving detection rules, playbooks, and SOC procedures.
- Participate in vulnerability management and security assessments.
- Work in rotational shifts including weekends or night shifts when required.
Required Skills & Qualifications
- 47 years of experience in SOC, cybersecurity operations, or information security.
- Strong knowledge of:
- SIEM platforms (Splunk, QRadar, Sentinel, ArcSight, etc.)
- Security monitoring and incident handling
- Network security concepts (TCP/IP, DNS, Firewalls, VPN)
- Windows & Linux security fundamentals
- Experience analyzing logs, alerts, and malware indicators.
- Understanding of MITRE ATT&CK framework and cyber threat lifecycle.
- Familiarity with EDR/XDR tools and threat intelligence platforms.
- Basic scripting knowledge (Python, PowerShell, or Bash) is an advantage.
