ResponsibilitiesResponsible for deploying products and workflow processes for the requirements of SIEM, Cyber Threat Intelligence, CERT, IOCs and its relevance.Supports SOC development roadmap by delivering SOC capabilities to the business and championing new ideas and initiatives to help improve new and existing capabilities.Responsible for ensuring that SOC development is aligned with ISMS policies and related standards and guidelines.Supports SOC operation hand-holding in build and business transfer program.Provides and maintains Indicators from latest threat research to enhance threat detection capabilities for the business requirements.Delivers Information Security related consultancy across a wide range of technology issues to the business and clients.Responsible for Solution Proof-Of-Concept and Demo for SOC and MSS requirements.QualificationsKey skills:Minimum 10 years professional experience in IT, with at least 6 years recent experience in SOC operation and/or MSS consultancy/deliverables.Solid knowledge of Information Security principles and practices with the ability to use these effectively in building security analyticsBroad understanding of IT security principles associated with at least FOUR of these fields: Network Security, Cloud Security, Operating System and Scripting, Firewalls, Content Filtering Management, Intrusion Detection, Log Management and Analysis, Cryptography, Governance and Compliance, Cyber Security Threats and research, DDoS mitigation, Malware Analysis, custom user-defined SIEM Correlation Rule creation, Zero-Day attack detection and handling.Has technical and product experience in at least TWO of the following solution types: anti-malware, vulnerability management, audit logging/SIEM, compliance, hacking tools, and network security/intrusion prevention.Has solid infrastructure knowledge and experience with fluency in server and other platform technologies (Windows and Linux), virtualisation, networking (e.g. OSI model, routing, firewalls, zoning, etc) and ability to produce quality technical design documents covering these areas to enable effective deployment of the security solutions by the project and solution team.Experience in working within service delivery frameworks, such as ITIL.Analytic, problem solving, and business relationship skills.An understanding of current legislation and precedence governing IT.Good interpersonal and consultative skills.Ability to work independently and manage multiple projects and task demands effectively.Good analytical skills in customer requirements and related security.Solid writing and communications skills.Ability to work within highly challenging and dynamic business environments.Experience in working in a service provider context, understanding and practicing effective operating relationships with customers and other entities.A team player.Essentials for the role:Bachelors or Master’s Degree, preferably in technical discipline or field (Architecture, Computer Science, Information Security etc.)Proven experience in operating SIEM systems in mission critical environments.Knowledge in ISO 27001 standards.Excellent knowledge of IT Security best practices.Broad infrastructure and technology background including demonstrable understanding of security operations in mission critical environments.Good communication skills - both written and verbal.Highly effective and creative problem-solving skills.In-depth knowledge in security issues that are inherent in common corporate environments.Ability to prioritise workloads and to know when to seek guidance.Proven technical ability and experience in Unix/Linux/etc, Microsoft Windows and networking systems such as Cisco.Added advantage:CISSP, GSEC or GCIH certifications (preferred but not essential).Experience in operating and managing either IBM QRadar, HPE ArcSight, Splunk, AlienVault USM, LogRhythm Security Intelligence Platform, RSA Security Analytics or similar big data security analytics technologies.Understanding of ISMS concepts.Experience in involvement in software development environment and process.Other InformationWorking hours: Monday to Friday 10am to 6pm.Working location: Petaling Jaya, Selangor.Contractual bonus: 1 month (13th month salary).Working attire: casual.Medical benefits: comprehensive coverage includes spouse and children.Fringe benefits: optical, dental and air fare.Parking: fully reimbursed.
Type : Company job
Role : Manager
Industry : Computer/Information Technology (Software)
Salary : MYR 10,000 - 20,000
Tecforte is an award-winning firm that specialises in enterprise level security management solutions. The SIEM platform enables businesses to better manage their security information, threats and incidents. Tecforte applies a unique blend of technology, intelligence and expertise in providing safer ICT environment to the user. Our range of solution helps to identify and ensure control of operations so that organisation and can reduce the overall impact of network security breaches that cause disruption in business operations, costly fixes and reputations.
Product & Services
Log Radar - the company's flagship product and the centerpiece of an overall risk-management strategies for commercial organizations, government agencies and Managed Security Service Providers - empowers enterprises to limit risk without sacrificing business effectivess, affordably scale security coverage enterprise-wide and sustain a compliance environment. For more info on Log Radar, please visit: www.logradar.com