Cybersecurity Incident Response Analyst

5 months ago


Petaling Jaya, Malaysia Air Liquide Full time

ALBS is an Air Liquide entity in Kuala Lumpur, regrouping for the APAC scope its Business Service Centers (Kuala Lumpur and Shanghai) as well as the two Global Functions (IT, Digital and Procurement). Designed to derive optimal value by better leveraging technology, people and competencies, the ultimate goal is to boost efficiency and deliver outstanding and sustainable performance while keeping a strong focus on customer centricity. This Organization is striving for excellence, adopting the Best in Class models to deliver value through simplification and standardization of processes, while adhering to Internal controls and compliance requirements.

The CSIRT (Computer Security Incident Response Team) is responsible for the management of security incidents for the whole group. The CSIRT has offices in Paris, Houston, Radnor and Singapore.

**How will you CONTRIBUTE and GROW?**:
The missions are:

- Incident handling: Alert qualification: a first level of qualification is done by the L1/L2 teams of our MSSP and advanced qualification is done by CSIRT analysts before generating an incident
- Investigation: Incidents are investigated by members of the CSIRT (L3) in coordination with the local security officers in order to define the exact scope of the incident. The CSIRT analyst defines for each incident an action plan which aims to collect the artifacts needed on suspicious assets, replay binaries to extract the IOC (Indicator of Compromise), contact local teams of the group for obtaining additional information,
- Remediation: the CSIRT analyst also defines the remediation action plan for a return to normal and pilot remediation actions with technical teams
- Writing procedures (industrialization): CSIRT analysts enrich existing standard operating procedures (SOP) or create new ones, develop global playbooks, document the IT context of our information system, develop scripts and processes to automate activities
- "Sanitary" actions: conduct actions to limit or eradicate inappropriate behaviors which are not malicious but generate false positives
- User awareness: during qualification and incident handling, remind users of the group security policies and of best practices
- Hunting: CSIRT analysts with the tools at their disposal (SIEM, IDS, PROXY, EDR) identify weak signals
- Monitoring optimization: CSIRT analysts propose evolutions to our monitoring rules and processes
- CSIRT tooling: the CSIRT has its own infrastructure (monitoring, malware analysis) and CSIRT analysts are involved in its maintenance and evolution by keeping it up and running, by adding new features or new tools (sandbox, scripts)

**Are you a MATCH?**:

- BSC / MSC in the field of IT security component or with a similar experience
- 5-8 years of experience in security operations (with at least 2 years in a CSIRT/CERT/SOC position)
- Good knowledge of traditional safety equipment (Firewall, proxy, reverse proxy, VPN, etc.)
- Understanding of the generated logs and security architectures.
- Good knowledge of security issues (attacks, vulnerabilities, etc.)
- Good knowledge of standard protocols (HTTP, FTP, FTP, DNS, SSL, etc.)
- Good knowledge of Windows / Linux architectures
- Knowledge of AWS security and/or industrial IT security would be a plus
- Excellent communication skills (oral and written)

**About Air Liquide
A world leader in gases, technologies and services for Industry and Health, Air Liquide is present in 78 countries with approximately 64,500 employees and serves more than 3.8 million customers and patients. Oxygen, nitrogen and hydrogen are essential small molecules for life, matter and energy. They embody Air Liquide’s scientific territory and have been at the core of the company’s activities since its creation in 1902.

**Our Differences make our Performance
**At Air Liquide, we are committed to build a diverse and inclusive workplace that embraces the diversity of our employees, our customers, patients, community stakeholders and cultures across the world.



  • Petaling Jaya, Malaysia ResourceXpert Sdn Bhd Full time

    The Incident response manager role will be working in the Cyber Response Services (CRS) Team within our Risk Consulting practice, reporting directly into the head of cyber response. Cyber security is one of the areas which KPMG has identified for tremendous investment and growth. Our clients face a challenging cyber threat and look to us to help them...


  • Petaling Jaya, Malaysia KPMG Full time

    A/SA - Cyber Incident Response & Forensic - TRC **Grade**: Experienced **Department**: Emerging Tech Risk & Cyber (Security) **Descriptions**: In this role, we are looking for a person who can demonstrate a good technical background and has a desire to improve and learn new knowledge. When not responding to incidents, you may be helping our clients build...


  • Petaling Jaya, Malaysia Agensi Pekerjaan Hays (Malaysia) Sdn Bhd Full time

    A Cybersecurity Analyst role that offers extensive opportunities in an expanding team. **Your new company** One of the fastest growing healthcare companies that aims to provide the best medical services to humankind. **Your new role** - Perform DevSecOps and ensure security components are integrated into every step of Software Development Lifecycle...


  • Petaling Jaya, Malaysia HILTI Full time

    WHAT'S THE ROLE? You want to kickstart your career in Cybersecurity? This internship will provide you with exciting insights into the Cybersecurity landscape of a global company. We tailor the internship to your interest in Cybersecurity governance, Cybersecurity architecture, or Cyber defense, with the overall goal of integrating Cybersecurity as a...


  • Petaling Jaya, Malaysia TD SYNNEX Europe Services and Operations S.L.U. Full time

    Job PurposeCybersecurity Specialist requires a Cybersecurity Subject Matter Expert (SME) with excellent communication skills for active collaboration with associates within the team and various external teams. It will actively operate and manage Cybersecurity technologies and ensure their health. The successful candidate will be a self-starter and be able to...


  • Petaling Jaya, Malaysia Hong Leong Bank Full time

    If you are looking to excel and make a difference, take a closer look at us We are seeking an experienced Threat Intelligence Analyst to join our dynamic and growing cybersecurity team. As a Threat Intelligence Analyst, you will play a crucial role in identifying and mitigating cyber threats, enhancing the organization's security posture, and protecting...

  • Noc Analyst Specialist

    5 months ago


    Petaling Jaya, Malaysia LifeTech Group Full time

    **JOB DESCRIPTION**: - Reporting to ISP when persistent, unfixable problems occur. - This role reports to the NOC Team Lead. Typical duties include, but are not limited to: - Proactively monitor and troubleshoot: - systems operations - systems problems - network outages - software issues - Respond to alarms and alerts from network tools - Creates and...

  • Security Analyst

    5 months ago


    Petaling Jaya, Malaysia AceTeam Networks Sdn Bhd Full time

    AceTeam is committed to take IT beyond with our customers and pledge to be the best, while strengthening the focus towards becoming a people centric company and not just limiting to technologies. We are looking for a **Security Analyst **who would like to grow with us, clearly defined by three things: **CommITted - Connected - Converged!** As a **Security...

  • Noc Analyst

    5 months ago


    Petaling Jaya, Malaysia LifeTech Group Full time

    **JOB DESCRIPTION** Reporting to ISP when persistent, unfixable problems occur. This role reports to the NOC Team Lead. Typical duties include, but are not limited to: - Proactively monitor and troubleshoot: - systems operations - systems problems - network outages - software issues - Respond to alarms and alerts from network tools - Creates and reports...


  • Petaling Jaya, Malaysia 6co Solutions Sdn Bhd Full time

    **Responsibilities**: - Serve as the primary point of contact for customer executives, fostering deep and trustful relationships. - Engage with customers to understand their business drivers and objectives. - Educate customers on cybersecurity services, articulating their clear business value. - Develop and implement long-term cybersecurity strategies...


  • Subang Jaya, Selangor, Malaysia TD SYNNEX Europe Services and Operations S.L.U. Full time

    Job Summary Cybersecurity Specialist required to manage cybersecurity technologies, ensure their health, and collaborate with teams to solve service escalations and perform routine tasks. Job Description We are seeking a Cybersecurity Specialist to join our Cyber Platform team. The successful candidate will be a self-starter with excellent communication...

  • IT Security Operations

    5 months ago


    Petaling Jaya, Malaysia LifeTech Group Full time

    **JOB DESCRIPTIONS**: To analyse any incidents and undertake the detailed investigation of the Cyber Security Event. Shall determine whether the security event will be classified as an incident. Coordinating with the customer IT and Cyber Security team for resolution of the Cyber Security Incident. This role reports to the SOC Team Lead. **JOB...

  • SOC Analyst

    5 months ago


    Petaling Jaya, Malaysia LifeTech Group Full time

    **JOB DESCRIPTIONS** To analyse any incidents and undertake the detailed investigation of the Cyber Security Event. Shall determine whether the security event will be classified as an incident. Coordinating with the customer IT and Cyber Security team for resolution of the Cyber Security Incident. This role reports to the SOC Team Lead. Duties - Perform...

  • Soc/noc Analyst

    5 months ago


    Petaling Jaya, Malaysia LifeTech Group Full time

    Security Operation Center (SOC) Analyst - Internship - Perform proactive monitoring for security log events in 24x7 mode. (Splunk, SIEM, TrendMicro (EDR/IPS/etc) and others 3rd Party software) - Escalate validated and confirmed incidents to designated incident response team. - Notify Client of incident and required mitigation works. - Fine-tune SIEM rules to...

  • Pre-sales Architect

    5 months ago


    Petaling Jaya, Malaysia EPS Ventures Sdn Bhd Full time

    **Job Title**:Pre-Sales Architect - Cybersecurity **Location**: Petaling Jaya, Malaysia **Role & Responsibilities**: - To provide pre-sales technical support for Cybersecurity business primarily on cloud, network security, endpoints security related solutions - To support security product/solution included firewall, IPS, APT, SIEM, DLP, Cloud Security...

  • Emc Network Analyst L1

    5 months ago


    Petaling Jaya, Malaysia Schlumberger Full time

    **About us** - We are a global technology company, driving energy innovation for a balanced planet. Together, we create amazing technology that unlocks access to energy for the benefit of all.- Our inclusive culture is the key to our success. We collaborate with our internal community of colleagues, alumni, and our valued external partners to support each...

  • Security Architect

    5 months ago


    Petaling Jaya, Malaysia JMA Global IT Solutions Sdn. Bhd Full time

    POSITION: Pre-Sales Architect - Cybersecurity (Locals only can apply) Role & Responsibilities: - To provide pre-sales technical support for Cybersecurity business primarily on cloud, network security, endpoints security related solutions - To support security product/solution included firewall, IPS, APT, SIEM, DLP, Cloud Security (SASE, ZTNA), XDR etc. -...


  • Petaling Jaya, Malaysia FrieslandCampina Full time

    Key challenge for this role is striving for SAP operational and service delivery excellence with a strong focus on SAP technical availability and performance. - Accountable to meet committed business SLA agreements for global SAP technical services, in close cooperation with supporting platforms, partners and suppliers. - Accountable for follow up on...


  • Subang Jaya, Malaysia Mesiniaga Berhad Full time

    **Work Location**: Subang Jaya **Employment Type**: Contractual The Network and Security Operations Analyst will fulfil a dual role encompassing responsibilities from both SOC Security Analyst and NOC Network Analyst positions. This multifaceted role requires expertise in monitoring, analysing, and maintaining both network and security infrastructure to...

  • IT Support Manager

    5 months ago


    Petaling Jaya, Malaysia Eve M Solution Full time

    **Responsibilities**: - Lead and coach a team of security engineers in supporting security operations and IT infrastructure, including clouds. - Ensure that the IT support team is providing high-quality support to our customers. - Develop and implement new support processes and procedures. - Manage the IT support budget. - Mentor and develop junior IT...