Senior IT Cyber Security  

Regular on-site 8x5 (beside national holiday)

* Follow advanced actions to investigate possible security incidents or perform incident response actions, including

escalating to othe supportgroups

* Ensure proper functioning of systems in the Security Operations Centre.

* Enhance and Build Cyber threat detection use cases and assist in analyzing & reducing false positive

* Execute daily ad hoc tasks or lead projects as needed

* Conduct thorough analysis of security incidents escalated from the L1 SOC Analyst team

* Utilize advanced security tools and techniques to identify the root cause of security issues

* Coordinate and execute incident response plans to contain, eradicate, and recover from security breaches

* Support the development and enhancement of SOC incident response capabilities

* Perform threat hunting activitles to proactively identify and mitigate potential threats

* Collaborate with other security teams (e.g., Incident Response, Vulnerability Management) to ensure effective remediation of security incidents

* Develop and maintain playbooks, runbooks, and other documentation to guide the incident response process

* Provide guidance and mentorship to the L1 SOC Analyst team

* Participate in the continuous improvement of the organization's security monitoring and incident response capabilities

Minimum 6 years experience in a Cyber Security / IT Security

* Common knowledge on TCP/IP, OSI Layer, routing switching and IP addressing

* Understanding basic security concept, common attach vectors and technique

* Demonstrated expertise in security monitoring, incident response, and threat hunting

* Proficiency in the use of security tools and platforms (e.g., SIEM, threat intelligence, endpoint detection)

* Familiar with SIEM tools (QRadar)

* Strong analytical and problem-solving skills with the ability to think critically

* Excellent communication and collaboration skills to work effectively with cross-functional teams

* Fine-tuning usecase and playbook

* Have certification preferred (CEH, Cysa, CHFI, or related)

• Full WFO in Sentul Bogor