Endpoint Security & Threat Hunting Specialist
Crypto.com
- Kuala Lumpur
- Permanent
- Full-time
- Threat Monitoring Investigations - deep dive into Tier 1 & Tier 2 security operations escalations, performing incident triage and root cause analysis.
- Proficient in performing investigations using open source and proprietary tools, including but not limited to - EPP/EDR/XDR software, Digital Forensics tools/software, SIEM platforms, etc.
- Threat Hunting - Proficient in Threat Hunting methodologies. Able to plan and execute Threat Hunts using available data sources and security tools.
- Incident Response - Proficient in end-to-end Incident Response. Able to take the lead and provide guidance during investigations and incidents to pivot the investigation, drive containment, mitigation and other security outcomes.
- Security Projects - Lead projects and initiatives that may involve - Endpoint Security enhancements, Threat Hunting, Compromise Assessments, Network/Endpoint security reviews, etc. Endpoint Security - support the deployment, configuration and maintenance of Endpoint Security Software/Tools - including but not limited to - EPP/EDR/XDR software, Digital Forensics tools/software, SIEM/log collection agents, etc.
- Leadership - Be comfortable with cross-functional leadership and stakeholder management. Be willing to lead and nurture a small team of junior security specialists.
- 5-7 years of experience in Information Security, with technical hands-on experience in Security Operations, Digital Forensics, Incident Response, Endpoint Security or Cloud Security.
- Working Experience with SIEM, EPP/EDR/XDR, SOAR, Cloud Security (CSPM, Container Security, etc), Digital Forensics software & tools.
- Working experience with Cloud environments like AWS and Azure.
- Experience in using scripting languages to automate tasks and manipulate data or programming experience is a bonus.
- Management experience is a bonus.
- Highly self-motivated, attention to detail and outcome driven.
- Proficiency in verbal and written English.
- On-call is required.