Senior Security Consultant
Arvato
- Kuala Lumpur
- Permanent
- Full-time
- Perform real-time proactive security monitoring, detection and response to security events and incidents within the protected environment from the various SOC entry channels (SIEM, Tickets, Email and Phone).
- Manage incident response including incident detection, analysis, containment, eradication, recovery, and chain of evidence/ forensic artifacts required for additional investigations.
- Conduct thorough checklist-based investigation of security events generated by detection mechanisms such as SIEM, IDS/IPS, and AV.
- Categorize the events and raise necessary incidents after a thorough quality check of the event.
- Utilize advanced network and host forensic tools to triage and scope an incident.
- Perform investigation and analytics of network, host-based payloads and artifacts concerning the incident.
- Correlate additional context from the Threat Intelligence (TI) team for the incident during investigation and analysis.
- Participate in Vulnerability Management processes.
- Create recommendations and requirements for content detection and response, SOC processes, procedures and systems.
- Provide technical support for forensics services to include evidence seizure, computer forensic analysis and data recovery, in support of computer crime investigation.
- Work as part of a team to ensure that corporate data and technology platform components are safeguarded from known threats.
- Demonstrates a broad awareness of cybersecurity events and threat actors, including trends and emerging systemic risks.
- Good understanding of basic security principles including malware analysis, cryptography, threats and vulnerabilities, access control, application, data, and host security.
- Basic understanding of Operating Systems, Virtualization technologies, Network Devices, Cloud computing concepts, Web Proxies, Firewalls, Intrusion Detection/Prevention Systems, Antivirus Systems, Data Loss Prevention, and Vulnerability Assessment tools.
- Strong understanding of security incident management, malware management and vulnerability management processes.
- Ability to follow through on all phases of the incident response and identify attacks, determine initial vectors, and complete the scope of incidents.
- Knowledge of TCP/IP Protocols, network analysis, network/security applications and common Internet protocols and applications.
- Experience in troubleshooting in a technical environment as well as basic forensics tools and web history tools.
- Excellent English written and verbal skills.
- Proficient in Microsoft Office applications, case management and ticketing systems.
- Security monitoring experience with SIEM technologies (e.g. IBM QRadar, Splunk, Sentinel)
- Innovative and eager to learn in a rapidly evolving field.
- Personality traits, work habits, communication, and social skills are necessary to work effectively within a dynamic and highly operational environment.
- Exemplary personal and professional integrity and demonstrate strong interpersonal skills.
- Excellent analytical and problem-solving skills with strong attention to detail.
- Ability to manage multiple tasks, priorities, and operational assignments in a high-pressure environment.
- Must have good time management skills with a demonstrated ability to complete assignments in a timely, high-quality manner.
- Shift work and/or Stand-by/on-call availability required.
- Shift work required
- On-call/stand-by availability required
- Travel: n/a – possibly rarely
- Security Operation Center positions require employees to obtain and maintain a security clearance
- Innovate Fearlessly: We fearlessly challenge the status quo. Innovation runs deep within our core, and we're continually seeking groundbreaking solutions. Your ideas matter, and we offer the platform for them to flourish.
- Invest in Growth: We prioritize your professional development with diverse learning, mentorship, and resources nurturing your growth through ample training opportunities.
- Work-Life Harmony: At our company, we prioritize work-life harmony, championing flexibility, and support to ensure your welfare. Your mental wellness is our priority. We're committed to fostering a healthy balance between work and personal life for a happier, healthier you.
- Attractive Benefits: Our flexible benefits package is designed to cater to your individual needs, complemented by exclusive perks such as Birthday Leave, Family Care Leave, and sponsored meals.
- Collaboration over Competition: Teamwork isn't just an idea here - it's our way of life.
- Thriving on Diversity: Embracing unique viewpoints and backgrounds, we ensure Equity and Inclusivity are at the heart of our success.
- Celebrate Success: From big wins to small victories, every achievement deserves its moment in the spotlight. From project milestones to personal goals and team triumphs, we're all about raising the flag high for success!
- Wellness & Well-being are Fundamental: We view wellness as more than personal health - it's the foundation of our caring, connected community. This emphasis on well-being drives our culture of rapid exploration and learning, propelling us forward together.
- Uniting through Fun: From annual company trips to quarterly team outings, we build trust and camaraderie by engaging in enjoyable activities together.
- Giving Back: Rooted in our values, we actively engage in initiatives supporting meaningful causes that benefit society. Our commitment to Corporate Responsibility is the cornerstone of our journey toward excellence.
- Comprehensive IT solutions for retail, manufacturing, and media industries as well as for utility companies and the public as well as the healthcare sector · Long-term experience in Digital Transformation
- Competence in key areas like Artificial Intelligence, Cloud Computing, IT-Security, Customer Experience, E-Commerce, and Business Process Management
- Know-how in robust technologies and a strong partner ecosystem including companies like Amazon Web Services, Google, Microsoft, and SAP
- A broad spectrum of infrastructure Services, including Managed Services, and an according Application Management