Resident Security Engineer

Key Responsibilities

. Lead the monitoring and analysis of security events across networks, applications, and systems.

. Oversee incident response activities, ensuring rapid containment, investigation, and remediation.

. Conduct advanced threat hunting and forensic analysis to identify sophisticated attacks.

. Develop and enforce security policies, standards, and procedures across the organization.

. Collaborate with IT, compliance, and business units to align security initiatives with organizational goals.

. Evaluate and recommend new security tools, technologies, and processes.

. Prepare and review reports on security posture, risks, and incident trends.

. Stay ahead of emerging threats, vulnerabilities, and regulatory requirements.

. Assist with security audits and assessments.

Qualifications

. Bachelor's or Master's degree in computer science, Cybersecurity, or related field.

. 5-8 years of experience in cybersecurity.

. Strong expertise in SIEM platforms, intrusion detection/prevention, endpoint protection, and cloud security.

. In-depth knowledge of security frameworks (NIST, ISO 27001, CIS Controls) and regulatory standards (MAS TRM, PDPA and Cyber Hygiene).

. Proven experience in incident response, digital forensics, and threat intelligence.

. Excellent leadership, communication, and stakeholder management skills.

. Excellent analytical, problem-solving, and communication skills.

Preferred Skills

. Advanced certifications such as CISSP, CISM, OSCP.

. Fluent in Chinese and English.

. Experience with cloud security (AWS, Azure)

. Experience with security automation and orchestration (SOAR).

. Familiarity with DevSecOps practices and secure software development lifecycle.

. Ability to translate complex technical risks into clear business impacts.

Detailed Scope of Services

1. Security Monitoring & Threat Analysis

Monitor and analyze security events across networks, systems, applications, and cloud platforms.

Operate SIEM, IDS/IPS, EDR and related security tools.

Identify potential security incidents, anomalies, and suspicious behaviors.

2. Incident Response

Perform incident triage, containment support, investigation and remediation coordination.

Assist with incident communication and escalation according to company procedures.

Conduct root cause analysis and prepare detailed IR reports.

3. Threat Hunting & Forensic Analysis

Conduct proactive threat hunting based on threat intelligence, behavioral patterns, and MITRE ATT&CK.

Perform basic to advanced forensic analysis as required.

Provide technical assessments of sophisticated attacks.

4. Security Policies, Standards & Compliance

Assist in developing, implementing, and reviewing security policies, standards, and procedures.

Support compliance with MAS TRM, PDPA, Cyber Hygiene, and industry security frameworks (NIST, ISO 27001, CIS Controls).

Ensure documentation and security controls align with regulatory and audit requirements.