Talent.com
Tawaran kerja ini tidak tersedia di negara anda.
Lead, Security Operations Center

Lead, Security Operations Center

GREAT EASTERNKuala Lumpur, Kuala Lumpur, Malaysia
23 hari lalu
Penerangan pekerjaan

Overview

This role will report to the Head of IT Security, Malaysia. The SOC Lead will primarily be responsible for leading Great Eastern Next Generation Security Operations Centre (NGSOC) Team and act as a single point of contact to the management team for further action. Serves as primary escalation point of the SOC Analyst for any identified potential anomalies and will perform in-depth investigation into the matters. In the event of security incident, the SOC Lead will also serve as the primary incident responder and ensure that communications as well as adequate resolutions are implemented on a timely basis.

Responsibilities

  • Lead the operation of Next Generation Security Operations Centre (NGSOC).
  • Lead and support security operations tasks such as cyber intelligence gathering, threat hunting, Security Monitoring & Log Review (SIEM) and Incident Response.
  • Plan, develop & constantly review Security Operations Centre (SOC) related policies, standards and procedures.
  • Manage cyber incidents associated with threats, intrusions, compromise, unusual, unauthorized or illegal activity via Incident Response and CSIRT framework.
  • Handle escalation from SOC analysts and Managed Security Service Providers (MSSP) ensuring that escalations are handled within agreed Standard Level Agreements (SLAs).
  • Collaborate with other functions such as Infra, Network, End User Computing, Cloud, Technology.
  • Risk Management, Assurance & Audit and Risk & Compliance team to ensure security tools implementation & security reporting is established as well as manage risk matters adequately.
  • Provide regular reports to management on the status of the SOC’s operations, security incidents, and security posture as well as to highlight any potential trend based on SOC metrics.
  • Constantly review and upgrade SOC related system component solutions (such as SIEM, SOAR etc) to always ensure effective operational and defense capabilities.
  • Identify gaps and propose countermeasures inclusive training requirement for SOC team as well as handling audit and compliance for overall SOC operations.
  • Takes accountability in considering business and regulatory compliance risks and takes appropriate steps to mitigate the risks.
  • Maintains awareness of industry trends on regulatory compliance, emerging threats and technologies in order to understand the risk and better safeguard the company.
  • Highlights any potential concerns / risks and proactively shares best risk management practices.

Qualifications

  • We are looking for people who
  • Possess at least a Degree / Master’s Degree in Computer Science / Information Technology / Engineering or equivalent. Any IT Security related certifications (CISSP, CISA etc) is a plus.
  • Minimum 7 years of working experience in SOC & Information Security.
  • Experience in handling security incidents and process improvement.
  • Broad knowledge in infrastructure, information and application security and related topics (i.e. DMZ, PKI, SSL, multi-factor authentication, cryptography and secure communications, security tools such as SIEM and SOAR).
  • Familiarity with security frameworks, such as NIST Cybersecurity Framework, ISO27001, PCI DSS and CIS Critical Security Controls.
  • Strong analytical and problem-solving skills, with the ability to identify and assess security risks and develop appropriate mitigation strategies.
  • Experience with incident management and response, including conducting post-incident reviews and developing corrective action plans.
  • Knowledge of current security events and a demonstrated passion to stay informed of best practices & trends within the industry.
  • Excellent communication and leadership skills, with the ability to motivate and inspire a team to achieve its goals.
  • High level of integrity, takes accountability of work and good attitude over teamwork.
  • Takes initiative to improve current state of things and adaptable to embrace new changes.

    • How you succeed

  • Champion and embody our Core Values in everyday tasks and interactions.
  • Demonstrate high level of integrity and accountability.
  • Take initiative to drive improvements and embrace change.
  • Take accountability of business and regulatory compliance risks, implementing measures to mitigate them effectively.
  • Keep abreast with industry trends, regulatory compliance, and emerging threats and technologies to understand and highlight potential concerns / risks to safeguard our company proactively.

    • Who we are

    Founded in 1908, Great Eastern is a well-established market leader and trusted brand in Singapore and Malaysia. With over S$100 billion in assets and more than 16 million policyholders, including 12.5 million from government schemes, it provides insurance solutions to customers through three successful distribution channels – a tied agency force, bancassurance, and financial advisory firm Great Eastern Financial Advisers. The Group also operates in Indonesia and Brunei.

    The Great Eastern Life Assurance Company Limited and Great Eastern General Insurance Limited have been assigned the financial strength and counterparty credit ratings of "AA-" by S&P Global Ratings since 2010, one of the highest among Asian life insurance companies. Great Eastern's asset management subsidiary, Lion Global Investors Limited, is one of the leading asset management companies in Southeast Asia.

    Great Eastern is a subsidiary of OCBC, the longest established Singapore bank, formed in 1932. It is the second largest financial services group in Southeast Asia by assets and one of the world’s most highly-rated banks, with an Aa1 rating from Moody’s and AA- by both Fitch and S&P. Recognised for its financial strength and stability, OCBC is consistently ranked among the World’s Top 50 Safest Banks by Global Finance and has been named Best Managed Bank in Singapore by The Asian Banker.

    To all recruitment agencies : Great Eastern does not accept unsolicited agency resumes. Please do not forward resumes to our email or our employees. We will not be responsible for any fees related to unsolicited resumes.

    Notes

    This description is intended for the job posting content and may contain company information that is publicly available.

    #J-18808-Ljbffr

    Buat amaran kerja untuk carian ini

    Lead Security Center • Kuala Lumpur, Kuala Lumpur, Malaysia