Our client, a leading large enterprise with a large CyberSecurity Center and SOC in Hong Kong, is looking for a Tech Lead in Security and Cyber Intelligence to provide security and threat intel for the organization. Great exposure and scale to work with one of the most prominent organizations in the region.
Responsibilities:
Oversight of SOC Operations in Hong Kong to monitor potential risks, threats, and attacks.
Provide Security Incident Process Management across SLA, KPI, and SOP building threat intel platform.
Review and manage security systems including security log, user behavior analytics, vulnerability scanning, and security playbook automation.
Monitor suspicious cloud-based user activities, potential hazardous actions, malware, etc.
Lead and manage the threat intel platform in providing intelligence across cyber security.
Advise development teams and technology product owners on security to withstand known attack vectors and prevalent threats.
Work with senior management, CIO, and Technology Heads in providing external threat intelligence insight.
Requirements:
At least 8 years of hands-on technical experience in the Information Security and/or Cyber Security area.
Experience with vulnerability assessments, environment scanning, security controls, etc.
Experience with Security Data Engineering and Analytics technology in SIEM, UEBA, ELK, and SOAR.
Experience with threat intel platforms and feed providers such as Anomali, Mandiant ADV, RiskIQ, Recorded Future, ThreatConnect, Crowdstrike Falcon", GreyNoise, Intel 471, "ZeroFox", MISP, Flashpoint, and KELA.
Experience in performing malware analysis and using the sandbox for detailed investigation.
Security Certificates in CISSP, CISM, CISA, or equivalent.
Excellent communication skills in English.
Bachelor's Degree in Computer Science or related field from a reputable University.