Assistant Vice President, Threat Detection and Response (Job ID: 10068311)
Full-time
Junior Executive
1 day ago
Job Responsibilities:
Responsible for security incident handling of cyber security incidents in the APAC region. Lead the Incident Response procedu..
Job Responsibilities:
- Responsible for security incident handling of cyber security incidents in the APAC region. Lead the Incident Response procedures to allow timely response in the event of an incident to facilitate recovery and minimize impact to the Bank.
- Carry out threat mitigation and response using existing security defence systems, to pre-emptively block advancement of threats based on threat intelligence sources
- Conduct threat hunting in MUFG environment to identify presence of advanced persistent threats, based on the collection of Techniques, Tactics and procedures documented in global knowledge base such as MITRE ATT&CK framework
- Be proficient in Cyber Security tools such as Web proxy / isolation, Email security gateway, anti-malware solutions, SIEM and EDR.
- Detect abnormal patterns in systems being monitored to identify potential threat and unauthorized access to systems.
- Assist the team in daily security event monitoring for various cyber threats such as advanced malware threats, vulnerability exploits, denial of service and other forms of cyber-attacks. Work in partnership with Global SOC in triaging the security alerts.
- Able to review network intrusion, vulnerability exploits and denial of service attempts to mitigate the risk of cyber-attacks.
- Analyse cyber threat intelligence to identify indicators of compromise, threat artefacts and attributes from different sources.
- Influence multi-disciplinary teams in managing cyber security controls
- Establish, maintain and develop monitoring use cases, and incident handling playbook
- Initiate appropriate malware triage processes to assess threat types, severity impact, and occurrence likelihood based on current controls and environment.
- Perform investigation of suspicious emails originating from Internet or 3rd parties to ensure that malicious content of malware, spam, phishing and other threats are adequately blocked.
- Review the team’s internal practices to optimise and drive improvements for the process optimisation
Job Requirements:
- Minimum 5 years of relevant experience in Cyber Security Operation with incident handling responsibilities.
- Experience in cybersecurity tools, technologies and standards (OWASP, NIST Cyber Framework, NIST Incident Response Framework)
- Experience in cyber security technologies (TIPS, SIEM, SOAR, VA, EDR)
- Possess security certifications such as SANS GCIH / GCIA / GCDA / GMON or any Cyber security specialty is an added advantage.
- Proven and strong analytical skills
- Consistently demonstrates clear and concise written and verbal communication
- Good stakeholder management skills to collaborate with other departments
We regret to inform that only shortlisted applicants will be notified.
Job ID: 10068311
Official account of Jobstore.