SOC Lead Analyst

🚀 SOC Team Lead (Cybersecurity Operations Analyst)
📍 Bandar Sunway, Selangor | 🕒 Mon – Fri, 9AM – 6PM

💡 Why This Role Stands Out:

Fixed allowance up to MYR 400/month

Clear career progression

Opportunity to lead advanced threat detection & incident response

Work with a growing, high-performance SOC team



🎯 Key Responsibilities:

(1) Technical Leadership and Incident Handling

Act as the primary point of escalation for Level 1 analysts for complex security events and potential incidents.

Investigate and analyze alerts using SIEM, EDR and other security tools.

Lead the response to confirmed security incidents, including containment, eradication, and recovery efforts.

Conduct advanced threat hunting to identify indicators of compromise (IOCs) and tactics, techniques, and procedures (TTPs) that evade traditional detection methods.

Perform detailed analysis of malware and attacker tools.

(2) Team Management & Mentorship

Provide daily guidance, supervision, and technical direction to a team of Level 1 SOC Analysts.

Develop and execute a formal training and mentorship program to "groom" Level 1 analysts into proficient Level 2 analysts.

Work with the team-lead to create and review shift schedules to ensure 24/7 coverage.

Foster a collaborative, knowledge-sharing, and high-performance team culture.

Conduct regular performance reviews and provide constructive feedback.

(3) Process Improvement & Documentation

Develop, refine, and document SOC standard operating procedures (SOPs), playbooks, and runbooks for alert triage and incident response.

Analyze alert trends and false positives to provide feedback for tuning SIEM rules, use cases, and correlation logic.

Assist the SOC Manager in evaluating new security technologies and tools.

Contribute to the creation of detailed incident reports for management and clients.

🎯 What We’re Looking For:

Bachelor’s Degree in Cybersecurity, IT, or a related field

5+ years of experience in cybersecurity operations (SOC environment)

Proven experience as a Level 2 Escalation Analyst (3–4 years)

3+ years of leadership experience (mentoring, coaching, or managing junior analysts)

Strong hands-on expertise in threat hunting and incident response



🛠️ Technical Skills & Expertise:

Strong understanding of Windows & Linux systems, including system internals

Hands-on experience with SIEM platforms (e.g., NetWitness, Devo)

Proficient in EDR solutions (Trend Micro, CrowdStrike, Microsoft Defender for Endpoint)

Solid knowledge of MITRE ATT&CK, Cyber Kill Chain, and incident response lifecycle

Ability to analyze, investigate, and respond to complex security incidents