Cybersecurity Analyst

**Cybersecurity Analyst**

**JOB OVERVIEW**

As a Cybersecurity Analyst, you will serve as the intermediate escalation point for security incidents and alerts, focusing on in-depth analysis and response to security events. You'll be responsible for investigating and responding to escalated security incidents from Tier 1, performing detailed security monitoring, and maintaining comprehensive documentation of security events. This role bridges the gap between initial alert triage and advanced incident response, requiring both analytical skills and technical expertise.

**KEY RESPONSIBILITIES**

**Security Monitoring**
- Investigate and respond to escalated security alerts and incidents from Tier 1 analysts
- Perform deep-dive analysis of security events using SIEM tools and security platforms
- Monitor and analyze network traffic, system logs, and security alerts
- Conduct initial threat hunting activities based on identified indicators of compromise
- Identify and investigate potential security incidents using available security tools
- Validate and prioritize security alerts based on threat intelligence

**Security Reporting**
- Create detailed incident reports for investigated security events
- Document incident response activities and findings
- Generate regular reports on security metrics and trends
- Prepare summary reports of investigated incidents for management review
- Track and report on security incidents and their resolution
- Document patterns and trends identified during investigations

**Documentation**
- Maintain accurate documentation of investigation procedures and findings
- Update incident response playbooks based on investigation outcomes
- Document new threat patterns and attack vectors identified
- Create and maintain standard operating procedures for common incidents
- Contribute to the knowledge base for security investigations
- Document system changes and security configurations

**REQUIREMENTS**
- Bachelor's degree in Cybersecurity, Information Technology, or related field
- 4-7 years of experience in cybersecurity with at least 2 years in a SOC environment
- Relevant certifications such as Security+, CEH, GCIH, or equivalent
- Strong experience with SIEM platforms (Splunk, QRadar, or similar)
- Proficiency in security tools and technologies (IDS/IPS, EDR, Firewall)
- Good understanding of network protocols and security concepts
- Experience in incident response and handling
- Knowledge of common attack vectors and mitigation strategies
- Strong analytical and problem-solving skills
- Good documentation and technical writing abilities
- Experience with log analysis and correlation
- Understanding of security frameworks and best practices
- Basic scripting and automation skills
- Ability to work effectively under pressure
- Good communication skills for technical discussions

**Job Types**: Full-time, Permanent

Pay: RM5,500.00 - RM8,000.00 per month

**Benefits**:

- Free parking
- Health insurance
- Opportunities for promotion
- Professional development

Schedule:

- Day shift
- Monday to Friday