Snr IT Security Analyst

Working Hour
- Regular Hours
- Monday - Friday- Business Area
- Digital Technology- Location
- Malaysia - Selangor- Description

**Primary Objective**:
To timely response to security alerts using a combination of technology solutions and a complete & reliable set of documented processes on a 24 x 7 x 365 basis

**Key Responsibilities**:

- Act as a point of escalation for Level-1 analysts in 12-hour shift rotation
- Perform due diligence and in-depth analysis on escalated security alert from Level-1 analyst and escalate to respective Business for further action in timely manner
- Support Level-1 alert analysis by providing advanced analysis services to include recommending containment and remediation processes and independent analysis of security events
- Work closely with SOC Manager to better security operations and address identified deficiencies
- Coaching and mentoring Level-1 analyst to improve detection capability within the SOC and feedback on work quality
- Recieve and review tuning request from Level-1, provide recommendations in use case tuning and optimization of security systems
- Interfaces with outside teams for incident escalations and resolution
- Challenge and suggest improvement on existing processes and procedures in a very agile and fast-moving information security environment
- Ensure all relevant processes are documented, complete, accurate and updated at least on a yearly basis or as and when any changes
- Requirements

**Requirements**:
Bachelor Degree - Bachelor’s degree in Computer Science, Engineering, IT Security or a related field.
- Preferred Certifications: SANS Certification such as GSEC, CCED, GCIA, GCIH, GMON or other relevant certifications
- A Bachelor's or Associate's degree in IT, Computer Science, or related field
- 3+ years' experience in security event analysis or/and security incident analysis
- 1+ years' experiance in one or more of the following:

- Offensive security (penetration testing/vulnerability assesment)
- System administration on Unix, Linux or Windows
- Network operation or engineering
- Malware reverse engineering
- Advanced incident handling
- Scripting and automation
- Demonstrated ability to work in a team environment, train and coach other team members
- Experience with investigating using a wide variety of detective technologies such as SIEM, packet capture analysis, host forensics and memory analysis tools
- Understanding and knowledge of threat landscape in terms of the tools, tactics, and techniques of attacks
- Excellent analytical and problem solving skills
- Great communication skills, both written and verbal
- Ability to effectively communicate technical and non-technical issues both verbally and in writing
- Hands-on experience in working with Security Operation Centre
- Relevant technical and industry certifications are a plus, e.g. SANS certifications
- Benefits

Dental, Education support, Miscellaneous allowance, Medical, Loans, Sports (e.g. Gym), Parking, Vision, Regular hours, Mondays - Fridays, Casual Business Wear, Performance Based Rewards