JOB SUMMARY:
We are looking for a Senior SOC Security Analyst (L2) to join our Security Operations Center (SOC) team. The role is responsible for monitoring, investigating, and responding to cybersecurity incidents while providing advanced threat analysis and incident handling support. The ideal candidate should have hands-on experience with SIEM/SOC operations, security investigations, threat detection, and incident response. This position also requires mentoring junior analysts, improving detection capabilities, and supporting continuous SOC operational improvements in a fast-paced environment.
REQUIREMENTS:
- Bachelor’s degree in Cybersecurity, Information Technology, or a related field (or equivalent experience).
- Minimum of 3 years in SOC operations, incident response, or cybersecurity monitoring environments.
- Strong understanding of SIEM, EDR, threat detection, log analysis, and incident investigation methodologies.
- Experience handling security incidents including malware, phishing, brute force attacks, suspicious network activities, and endpoint compromises.
- Strong knowledge of networking, Windows/Linux systems, Active Directory, cloud security, and security best practices.
- Ability to perform advanced alert triage, root cause analysis, threat hunting, and incident escalation.
- Experience with security tools such as SIEM, SOAR, EDR, IDS/IPS, firewall, and threat intelligence platforms.
- Familiar with MITRE ATT&CK framework, IOC analysis, and cybersecurity incident lifecycle.
- Ability to guide and mentor junior analysts (L1) during investigations and daily SOC operations.
- Good documentation, reporting, and communication skills for technical and non-technical stakeholders.
- Experience working in shift-based SOC environments and handling high severity incidents.
- Strong leadership and communication skills, with the ability to train and guide junior staff effectively.
- Industry certifications such as CISSP, GIAC (GCIA, GCIH), Security+ or CySA+ are preferred.
RESPONSIBILITIES:
Security Monitoring and Incident Response:
- Perform in-depth analysis of security events to identify potential threats, vulnerabilities, and trends.
- Lead complex incident investigations, providing root cause analysis and recommendations for remediation.
- Manage and improve the threat detection and alerting systems to ensure timely identification of security events.
- Develop playbooks and standard operating procedures (SOPs) for consistent and efficient incident handling.
Training and Mentorship:
- Mentor and train junior SOC analysts to enhance their technical skills and operational effectiveness.
- Develop and deliver training sessions on cybersecurity best practices, threat detection, and incident response.
- Provide ongoing feedback and guidance to team members to foster a culture of continuous learning.
Continuous Improvement and Reporting:
- Regularly assess and optimize SOC processes, tools, and metrics to align with industry best practices.
- Generate periodic reports on SOC performance, incidents, and emerging threats for management.
Pay: RM4,000.00 - RM6,000.00 per month
Benefits:
- Gym membership
- Health insurance
- Opportunities for promotion
- Professional development
Work Location: In person