Responsibilities:
- Manage day-to-day SOC operations, and act as escalation point for SOC team
- Coordinate the security incident response escalation
- Assist on building use case logic and playbook
- Day-to-day management of the SIEM platform
- Manage outsourced security vendor/service provider
- Assist on the creation of various metrics, reporting, review of incident progress and compliance status
- Support Regional Security Operations to ensure the Security posture of business units are under proper measure, monitor and manage
- Review all the reported security incidents and act as an Incident Manager; take charge the communication, creation of Incident Report and follow-ups, work with the Global Security Operations Team
- Liaise with the Business IT Security Incident Coordinator on the remediation action items
- Assist on developing new ideas on how to improve the security Operations, Cyber Security Incident Response Process (CSIRP), handling guidelines and playbooks
- Support in the implementation of the SOC, its security tooling and the resourcing
- Support other projects at the discretion of the Cyber Security Operations Senior Manager
Requirements:Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â
- Bachelor’s Degree in Information Security, Cybersecurity or related field
- Minimum 3 years of experience working on a SOC or Incident Response team
- Minimum 3 years of experience working with SIEM, SOAR, IDS/IPS etc.
- Nice to have: GCIA, GCIH, GCFA, GMON, GNFA, SSCP, OSCP
- Self-starter, proactive, good interpersonal and presentation skills
- Good command in both written and spoken Chinese and English
.
***Permanent Hong Kong Resident is preferred. Expected Salary in CV is needed for consideration***
All information provided will be treated in strict confidence and used solely for recruitment purposes. The resume will be retained for a period of two years for future recruitment purposes within our group and clients