Immediate opening for below two roles:
Duration : Long term contract
Role: SOC Operations Engineer
Experience : 4-7 Years
Location : Kuala Lumpur, Malaysia
Job Overview
We are looking for aSOC Operations Engineerto support advanced security monitoring and operational activities across network, endpoint, email, web, and data protection platforms. The role focuses on investigating complex security alerts, optimizing security tools, and improving SOC effectiveness through proactive threat detection and continuous improvement.
Key Responsibilities
- Investigate and respond to alerts from SIEM, EDR, WAF, DLP, and security monitoring tools.
- Perform deep analysis of high-severity incidents and support containment and recovery.
- Conduct threat hunting using threat intelligence and behavioral indicators.
- Monitor and maintain security tool health, logging, and coverage.
- Tune detections, improve playbooks, and reduce false positives.
- Maintain incident documentation, reports, and SOC performance metrics.
- Ensure compliance with PCI DSS, ISO 27001, and NIST standards.
Requirements
- 47 years of SOC or Security Operations experience.
- Hands-on experience with SIEM and EDR platforms.
- Knowledge of network, endpoint, email, web, and data security controls.
- Experience handling malware, phishing, and security incidents.
- Strong analytical, troubleshooting, and documentation skills.
Role :SOC & Cyber Incident Response / SOC Operations Engineer
Location : Kuala Lumpur, Malaysia
Experience : 7 to 10+ Years
We are seeking an experiencedSOC & Cyber Incident Response Lead to oversee Security Operations Center (SOC) activities and drive the Cyber Incident Response Program (CIRP). The role focuses on strengthening threat detection, incident response, security operations maturity, and cyber resilience while ensuring regulatory compliance and operational excellence.
Key Responsibilities
- Lead 247 SOC operations and manage outsourced SOC/MSSP teams (Tier 13).
- Develop and optimize detection use cases across SIEM, EDR, NDR, and SOAR platforms.
- Drive cyber incident response including triage, containment, recovery, and root cause analysis.
- Conduct threat hunting, tabletop exercises, and incident simulations.
- Integrate threat intelligence into detection and response processes.
- Improve SOC automation and reduce response times (MTTD/MTTR).
- Ensure compliance with NIST, ISO 27001/27035, and regulatory requirements.
- Lead cybersecurity projects and provide executive reporting and insights.
- Mentor SOC analysts and collaborate with cross-functional stakeholders.
Required Qualifications
- 710+ yearscybersecurity experience with35 years leading SOC/IR teams.
- Hands-on experience with SIEM, EDR, SOAR, and threat detection engineering.
- Strong knowledge of MITRE ATT&CK, NIST Incident Response frameworks, and cyber forensics.
Preferred Certifications
CISSP, CISM, GIAC (GCIH/GCIA/GCFA) or equivalent.
