SecOps Consultant
Location : Kuala Lumpur
About Delta Spike
Delta Spike delivers Managed Detection and Response (MDR) services across Southeast Asia through our Concierge SecOps model. Each client is assigned a dedicated consultant who understands their environment, owns their security posture, and drives continuous security improvements.
We are seeking a SecOps Consultant to act as the primary technical authority for a portfolio of clients, focusing on detection engineering, security advisory, service quality, and incident response.
Key Responsibilities
Client Management & Advisory
- Serve as the primary technical point of contact for assigned client accounts.
- Conduct security posture reviews, service delivery reviews, and technical briefings.
- Lead onboarding sessions and regular client engagements.
- Manage escalations and ensure service quality improvements.
Detection Engineering
- Design, implement, and maintain detection use cases.
- Fine-tune SIEM and EDR detections to reduce false positives.
- Identify detection gaps and develop improvement roadmaps.
- Onboard new log sources and enable relevant detection coverage.
Incident Response & Threat Operations
- Lead investigations for escalated security incidents.
- Collaborate with Threat Intelligence teams to improve detection capabilities.
- Conduct threat hunting activities based on intelligence insights.
- Deliver actionable incident reports and remediation recommendations.
Automation & Continuous Improvement
- Define and improve automation workflows and response playbooks.
- Mentor SOC analysts on detection logic and investigation techniques.
- Contribute to SOC process improvements and R&D initiatives.
Requirements
Experience
- 3–4 years of cybersecurity or security operations experience.
- 1–2 years of hands-on SOC Analyst (L1/L2) experience.
- Experience in detection engineering, SIEM/EDR tuning, incident investigations, or security operations improvement.
- Experience developing or tuning detection rules and use cases.
Technical Skills
- Proficiency in KQL, XQL, SPL, or similar query languages.
- Experience with EDR platforms such as Cortex XDR, Microsoft Defender, CrowdStrike Falcon, or similar.
- Strong understanding of MITRE ATT&CK and detection coverage mapping.
- Experience onboarding and validating security telemetry sources.
- Ability to investigate, scope, and communicate security incidents effectively.
Soft Skills
- Strong client-facing communication and reporting skills.
- Ability to explain technical security concepts to non-technical stakeholders.
- Self-driven and capable of independently managing client portfolios.
Preferred Qualifications
- SC-200, Palo Alto XSIAM, CrowdStrike Falcon, GCIA, GCIH, or equivalent certifications.
- Experience with Sigma rules and SOAR platforms.
- MSSP or multi-tenant security operations experience.
- Knowledge of Malaysian regulatory frameworks (RMiT, PDPA).
Apply Now
If you are ready to move beyond alert triage and take ownership of client security outcomes, we'd love to hear from you.
Send your CV to: [Confidential Information]
