Position: Cyber Security Operation Analyst

Reports to: SOC Practice Manager

Location: Kuala Lumpur – Full time



Role Summary

Cyber Security Operation Analyst is responsible for monitoring, detecting, and responding to security incidents within an organization's Security Operations Center (SOC). This role is critical in maintaining the security and integrity of the organization's information systems and data.



You must be willing to work on Malaysia Public Holidays.

You must be willing to work 100% from office.

Your working hours are 7:00am to 4:00pm (Malaysia timing)



Key Responsibilities

Security Operation and Monitoring

Investigate and respond to security incidents including malware infections, data breaches, and unauthorized access.

Conduct root cause analysis of incidents and implement remediation plans.

Provide detailed remediation recommendation for the incidents within agreed SLAs.

Analyze and interpret security threats using multiple sources, such as threat intelligence feeds and vulnerability databases.

Ensure security controls are functioning effectively and provide seamless support by developing SOC playbooks and maintaining a relevant and comprehensive knowledge base.

Continuously monitor security alerts and logs using various security tools and systems (e.g., SIEM, IDS/IPS).

Maintain and regularly update security monitoring tools and technologies to ensure optimal performance and coverage.



Vulnerability Management

Perform regular vulnerability assessments and penetration testing.

Work with IT teams to remediate vulnerabilities and ensure systems are patched and secure.

Maintain an inventory of assets and track their security status.



Reporting and Documentation

Document security incidents, investigation processes and outcomes.

Prepare regular reports on security status, incident metrics and remediation activities.

Provide recommendations to strengthen the organization’s security posture.

Prepare SOC monthly reports, including customized reporting aligned with specific business requirements.



Skills

Hands-on experience in implementing and conducting incident analysis using Trend Micro and SIEM technologies, with relevant vendor certifications highly regarded.

Experience with Endpoint Protection (EPP) and/or Extended Detection and Response (XDR) technologies.

Experience in managing Web Application firewall and AWS platform.

Available on-call after office hours to cover security escalation when situation requires.

Ability to analyze complex security data and identify patterns or anomalies.

Strong problem-solving skills and attention to detail.

Experience in managing small projects or contributing to large projects in a collaborative environment is advantageous.

Strong verbal and written communication skills, able to document and explain compliance issues and risks to a non-technical audience.



Education

Bachelor’s degree in Information Security, Computer Science, or a related field.

Minimum 3 experience working in SOC.

Professional certifications such as ISC2 Certified in Cybersecurity (CC) or Certified Ethical Hacker (CEH) are highly regarded.



Benefits

Corporate medical insurance.

Optical and dental claims.

Competitive salary and bonus structure.

Ongoing professional development opportunities.