Avensys is a reputed global IT professional services company, and our service spectrum includes enterprise solution consulting, business intelligence, business process automation and managed services. And we service a client base across banking and financial services, insurance, information technology, healthcare, retail, and supply chain.
We are currently looking to hire Security Operations Center Analyst. This is an exciting opportunity to expand your skill set, achieve job satisfaction and work-life balance. More details as below.
JOB TYPE:
12 Months Renewable contract
ROLES AND RESPONSIBILITIES
- Analyze potential threats, investigate alerts, and coordinate responses to mitigate risks, ensuring the organization's security posture is maintained
- Continuously monitor security information and event management (SIEM) systems, intrusion detection/prevention systems (IDS/IPS), firewalls, and other security tools for suspicious activities or anomalies.
- Analyze security alerts to identify potential threats, such as malware, phishing, or unauthorized access attempts.Use threat intelligence feeds to stay updated on emerging threats and vulnerabilities.
- Incident Response:Investigate and triage security incidents to determine their scope, impact, and root cause.Respond to incidents following established playbooks, escalating critical issues to senior analysts or incident response teams as needed.Contain and mitigate threats, such as isolating compromised systems or blocking malicious IPs.
- Log Analysis and Forensics:Analyze logs from various sources (e.g., servers, endpoints, cloud services) to identify indicators of compromise (IOCs).
- Perform basic digital forensics to collect and preserve evidence for investigations.Document findings and maintain detailed incident reports for compliance and auditing purposes.
- Threat Hunting:Proactively search for hidden threats or vulnerabilities within the network that may have evaded automated detection.
- Use advanced techniques and tools to identify patterns of malicious behavior.
- Collaboration and Communication:Work closely with other SOC team members, IT staff, and external stakeholders to coordinate incident response and remediation efforts.Communicate findings and recommendations to technical and non-technical audiences, including management.
- Participate in post-incident reviews to improve processes and prevent recurrence.
- Maintenance and Optimization:Tune SIEM rules and alerts to reduce false positives and improve detection accuracy.
- Update and maintain security tools, ensuring they are configured correctly.Assist in developing and refining SOC processes, procedures, and playbooks.
- Compliance and Reporting:Ensure adherence to regulatory requirements and industry standards (e.g., GDPR, HIPAA, PCI-DSS).Generate reports on security incidents, trends, and metrics for management and audits.
REQUIREMENTS
- Bachelor's degree in Computer Science/Information Technology
- Minimum 6months in SOC /Security
- Experience in Splunk ,MS Sentinel, Google Chronicle
- Experience in EDR - Crowdstrike, Trend Micro
- Experience in Vulnerability Management Qualys, Tenable Reporting, Vulnerability tracking, vulnerability analysis
- Experience in Threat Detection, Vulnerability, Information Security,
- Experience with security monitoring, incident response, and threat analysis
- Knowledge of security best practices and standards
- Knowledge of security technologies such as firewalls, intrusion detection systems, and anti-virus software
- Familiarity with scripting and automation tools
- Excellent problem-solving and analytical skills
- Excellent communication and interpersonal skills
- Immediate joiners preferred.
WHAT'S ON OFFER
You will be remunerated with an excellent base salary and entitled to attractive company benefits. Additionally, you will get the opportunity to enjoy a fun and collaborative work environment, alongside a strong career progression
To submit your application, please apply online or email your UPDATED CV in Microsoft Word format to [Confidential Information]. Your interest will be treated with strict confidentiality.
CONSULTANT DETAILS
Consultant Name : Emimal Joshwa
Reg No : 201201037177
Avensys Consulting Sdn Bhd
Privacy Statement: Data collected will be used for recruitment purposes only. Personal data provided will be used strictly in accordance with the relevant data protection law and Avensys privacy policy.
