Responsibilities

  • Detect and respond to security alerts/incidents (generated by SIEM, endpoint protection tools, IDS/IPS, firewalls etc) in a timely manner according to SLA and playbooks.
  • Provide technical direction and able to lead junior SIRT members to triage security alerts effectively.
  • Identify potential, successful, and unsuccessful intrusion attempts and compromises through reviews and analyses of relevant event detail and summary information.
  • Co-develop process documents and playbooks with stakeholders for security incident management.
  • Timely reporting on security incidents including completing an AAR report and respective reports for onwards reporting by stakeholders.
  • Gather threat intelligence and research new and evolving threats and vulnerabilities which can guide the actions of the security operations.
  • Perform security scanning and testing by using the Vulnerability Assessment tools.
  • Reporting and tracking on vulnerabilities and risks and ensure timely patching are completed to comply with stipulated resolution time.

Requirements

  • 3 years hands-on experience of common security tools like SIEM software (eg. IBM Qradar), Vulnerability Assessment tool (eg. Tenable Nessus, Aquasec) and/or DAM software (eg. Data SunRise) etc
  • Hands-on in areas like security vulnerabilities and mitigation actions, security incident response, malware analysis etc for on-prem and in cloud.
  • CompTIA Security+ and/or AWS certification is preferred.

Shortlisted candidates will be offered a 1 Year Agency Contract employment