Role: SOC Operations Engineer
Experience : 4-7 Years
Location : Kuala Lumpur, Malaysia
Job Overview
We are looking for a SOC Operations Engineer to support advanced security monitoring and operational activities across network, endpoint, email, web, and data protection platforms. The role focuses on investigating complex security alerts, optimizing security tools, and improving SOC effectiveness through proactive threat detection and continuous improvement.
Key Responsibilities
- Investigate and respond to alerts from SIEM, EDR, WAF, DLP, and security monitoring tools.
- Perform deep analysis of high-severity incidents and support containment and recovery.
- Conduct threat hunting using threat intelligence and behavioral indicators.
- Monitor and maintain security tool health, logging, and coverage.
- Tune detections, improve playbooks, and reduce false positives.
- Maintain incident documentation, reports, and SOC performance metrics.
- Ensure compliance with PCI DSS, ISO 27001, and NIST standards.
Requirements
- 47 years of SOC or Security Operations experience.
- Hands-on experience with SIEM and EDR platforms.
- Knowledge of network, endpoint, email, web, and data security controls.
- Experience handling malware, phishing, and security incidents.
- Strong analytical, troubleshooting, and documentation skills.
