Assistant Lead Engineer - Incident Response (Detect & Respond)

Position Overview

We are seeking a highly skilled and motivated Cybersecurity Analyst specializing in Incident Response to join our dynamic team. The ideal candidate will be responsible for identifying, investigating, and responding to cybersecurity incidents to protect our organization's information systems and data.

Role & Responsibilities

• Incident Detection and Response: Monitor security systems and logs for indications of potential cybersecurity incidents. Quickly respond to and investigate escalated security alerts, assessing the severity and potential impact. Proven track record in handling and managing real-world cybersecurity incidents.
• Threat Analysis: Analyze malicious events, threats, and vulnerabilities to determine the root cause and provide recommendations for mitigation.
• Forensic Analysis: Conduct digital forensic investigations to uncover evidence of cyber incidents and support legal and regulatory requirements.
• Containment and Mitigation: Develop and implement strategies to contain and mitigate security breaches, minimizing potential damage.
• Problem-Solving Mindset: Proactive approach to identifying potential security issues and implementing preventative measures.
• Documentation and Reporting: Strong attention to detail and ability to document incidents and responses meticulously. Create detailed reports and documentation of security incidents, findings, and resolutions. Maintain an incident response log for future reference. Assist with the development of incident response plans, playbooks, and other relevant documentation.
• Collaboration: Work closely with other teams such as IT, legal, and compliance teams to ensure coordinated responses to cybersecurity incidents. Experience working in cross-functional teams and with external vendors or partners during incident response activities. 
• Understanding of Regulatory Requirements: Familiarity with regulations such as Cybersecurity Act, PDPA, and other data protection laws that may impact incident response procedures.
• Continuous Improvement: Conduct post-incident reviews to identify lessons learned and recommend improvements to the incident response process and security controls. Stay up-to-date with the latest cybersecurity trends and threat intelligence.
   

Requirements

• Education: Bachelor’s degree or diploma in Computer Science, Information Technology, Cybersecurity, or a related field.
• Experience: 3 years of experience in cybersecurity, with a focus on incident response and threat analysis.
• Certifications: Relevant certifications such as GCIH, CEH, CISSP, CISM,  are highly desirable.
• Willingness to be on standby outside regular business hours, including evenings and weekends, as necessary to respond to incidents.
• Availability to be on-call for emergency response situations.

Technical Skills: 

• Proficiency in using security information and event management (SIEM) tools.
• Experience with intrusion detection and prevention systems (IDPS).
• Strong knowledge of network protocols, firewalls, and endpoint security solutions.

Soft Skills: 

• Excellent problem-solving and analytical abilities.
• Strong communication and interpersonal skills with ability to effectively communicate technical information to non-technical stakeholders, including executive leadership.
• Ability to work effectively under pressure and manage multiple priorities.
   

Apply Now

NOTE: It only takes a few minutes to apply for a meaningful career in HealthTech - GO FOR IT!!

#LI-SYNX13

#1525