Assistant Lead Engineer - SecOps (Central IT Security)

Position Overview

This healthcare programme consolidates and provides data to serve health needs and support healthcare professionals to serve their patients better. The programme is part of a healthcare ecosystem and supports the digitization and connection with other healthcare programme. 

As Part of the Security Operations department, the incumbent will review and conduct the technical security risk checks. SecOps is also aligned to GCSOC for incident management handling, reporting and investigation.

Role & Responsibilities

•    Work closely with internal and external stakeholders to manage the technical risk, security operation and SOC.
•    Act as IT security expert for department in the areas of cyber security assessments, PAM, Database, WAF, Firewall and EPP/EDR.
•    Perform risk assessment and identify mitigation controls for the risk area identified.
•    Enhance and build cyber threat detection user cases and assist in analyzing and reducing false positive.
•    Identify infection/compromise in the company utilizing threat intelligence and indicators of compromise (IOCs) from different threat Intel sources and regulators.
•    Ensure all compliance and security control functions are performed timely and orderly.
•    Drive continuous improvement of procedures and processes related to cybersecurity process and operations monitoring.
•    Track, monitor and valid security-related and risk issues, provide an action plan to rectify the issues and prevent recurrence.
•    Generate security reports and metrics as required.
•    Provide timely and periodic update to managements on its security matters.
•    Stay current on the latest Cyber threats, Attacks and vulnerabilities etc.
 

Requirements

•    Good diploma or degree in Computer Science, Digital Forensic or Engineering preferred.
•    Preferred minimum of 6 years of relevant work experience in IT security auditing or security operation role.
•    Strong knowledge in internet infrastructure, networking technology and security (i.e. DNS, DHCP, Firewall, WAF, IDS, IPS, VPN, APT and TCP/IP protocols)
•    Working experience with major SIEM will be advantage
•    Strong practical experience in Cyber security: Cyber kill chain, TTP, threat intelligence, malware triages.
•    Demonstrated ability to multitask and is detail-oriented with inquisitive mind during case investigation.
•    Good team player with strong communication skills with project teams, stakeholders, senior management, and contractors including both technical and non-technical personnel.
•    Professional security related qualification (e.g. CEH, ECIH/GCIH, and ITIL) will be favorable although not mandatory technical skills.
 

Apply Now

NOTE: It only takes a few minutes to apply for a meaningful career in HealthTech - GO FOR IT!!

#LI-SYNX13
#1741