Specialization: IT OR COMPUTER NETWORK OR SYSTEM OR DATABASE ADMIN
Job description:
We are assisting our Computer Software & Networking client to look for SOC Team Lead to join their team in Petaling Jaya. About the role 1. Supervision and Leadership: - Lead and supervise a team of Level 1 analysts.
- Provide guidance, mentorship, and support to team members.
- Ensure that team members are trained and equipped to handle their responsibilities effectively.
2. Incident Detection and Analysis: - Monitor security alerts and events to identify potential security incidents.
- Analyze and investigate security events to determine their nature and severity.
3. Incident Triage and Response: - Prioritize and escalate security incidents based on their severity.
- Coordinate incident response activities, involving Level 2 and Level 3 teams if necessary.
- Ensure that security incidents are documented and handled according to established procedures.
4. Security Tools and Technologies: - Familiarity with various security monitoring tools, SIEM (Security Information and Event Management) systems, and other security technologies.
- Help maintain and optimize security tools and technologies to improve incident detection and response.
5. Documentation and Reporting: - Maintain detailed incident records and reports for compliance and analysis purposes.
- Communicate incident details to relevant stakeholders, including management and IT teams.
6. Security Awareness: - Promote security awareness within the team and the organization.
- Keep up to date with the latest security threats and trends to enhance the team's capabilities.
7. Process Improvement: - Collaborate with higher-level SOC teams and other stakeholders to identify areas for process improvement.
- Suggest and implement enhancements to SOC workflows and procedures.
Requirements - Candidate must possess at least an Advance Diploma or Degree in IT related field.
- At least 5 years’ experience in a SOC & Cybersecurity related field preferred.
- Recommended certification(s): Relevant SOC industry certifications (CompTIA Security+, CISA, CISM, CISSP, CASP, CCSP, SSCP, SANS & GIAC: GMON GCIH, GCIA, GCFA, GCFE, GREM etc.) are a plus.
- Proven Leadership and supervisory experience.
- Proven experience in security operations and incident response.
- Strong knowledge of security monitoring tools, SIEM systems, and other security technologies.
- Strong problem-solving and analytical skills.
- Excellent communication and interpersonal skills.
- Ability to remain work in calm and handle high stress situations, strong analytical and problem-solving skills a fast-paced, 24/7 SOC environment.
Apply Now
Back to Job Vacancies
|