Summary of Job Role
Manage and run the company’s day to day IT cybersecurity operations and also support the IT cybersecurity’s compliance and governance functions.
Key Responsibilities
- Manage, run and troubleshoot the day to day operations of IT cybersecurity technology solutions (such as firewall, EPP, EDR, NDR, VMBR, SIEM, SWG, VPN, etc).
- Monitor, investigate, respond and remediate IT security alerts and incidents.
- Plan, manage and execute IT cybersecurity projects.
- Provide cybersecurity related input to infrastructure and application projects.
- Develop, manage and be part of the Information Security Incident Response team.
- Maintain a good understanding of relevant cybersecurity standards and frameworks (such as CIS Controls, MITRE ATT&CK, NIST Cybersecurity Framework, ISO 27001, PDPA, etc).
Job Requirements
- Degree or diploma in IT related field (Cybersecurity, Computer Science, etc).
- With professional information security and network certification (CEH, Security+, CySA+, CCNA, etc) is an advantage.
- 2 years' of work experience in information security operations.
- Good communication, presentation and project management skill.
- Good understanding of cybersecurity standards and frameworks (such as CIS Controls, MITRE ATT&CK, NIST CSF, ISO 27001, PDPA, etc).
- Good understanding of IT cybersecurity technologies (such as firewall, secure web gateway, endpoint protection, vulnerability management, VPN, etc).
- Good understanding of network concepts (such as TCP/IP, switching, routing, NAT, DHCP, DNS, 802.1x, etc).
- Good understanding of identity technologies (Active Directory, SAML, OIDC, RADIUS, LDAPS, MFA, etc).
- Good understanding of cloud, web and application security.
- Good understanding of IT governance, risk management and compliance
