Role :SOC & Cyber Incident Response
Location : Kuala Lumpur, Malaysia
Experience : 7 to 10+ Years
We are seeking an experienced SOC & Cyber Incident Response Leadto oversee Security Operations Center (SOC) activities and drive the Cyber Incident Response Program (CIRP). The role focuses on strengthening threat detection, incident response, security operations maturity, and cyber resilience while ensuring regulatory compliance and operational excellence.
Key Responsibilities- Lead 247 SOC operations and manage outsourced SOC/MSSP teams (Tier 13).
- Develop and optimize detection use cases across SIEM, EDR, NDR, and SOAR platforms.
- Drive cyber incident response including triage, containment, recovery, and root cause analysis.
- Conduct threat hunting, tabletop exercises, and incident simulations.
- Integrate threat intelligence into detection and response processes.
- Improve SOC automation and reduce response times (MTTD/MTTR).
- Ensure compliance with NIST, ISO 27001/27035, and regulatory requirements.
- Lead cybersecurity projects and provide executive reporting and insights.
- Mentor SOC analysts and collaborate with cross-functional stakeholders.
Required Qualifications- 710+ years cybersecurity experience with 35 years leading SOC/IR teams.
- Hands-on experience with SIEM, EDR, SOAR, and threat detection engineering.
- Strong knowledge of MITRE ATT&CK, NIST Incident Response frameworks, and cyber forensics.
Preferred CertificationsCISSP, CISM, GIAC (GCIH/GCIA/GCFA) or equivalent.
