We are seeking a SecOps (Security Operations) Engineer to support daily security operations, including monitoring security systems, responding to incidents, maintaining security tools, and ensuring compliance with security policies. The role involves working closely with IT, network, and application teams to maintain a secure enterprise environment.

---

Key Responsibilities

Security Monitoring & Incident Response

• Monitor security alerts and logs from SIEM, EDR, and other security platforms.

• Investigate and respond to security incidents based on defined procedures and playbooks.

• Perform root cause analysis and document findings for continuous improvement.

Security Tools & Infrastructure Maintenance

• Maintain and optimize security tools including IPS, endpoint protection, DLP, CASB, PAM, and NAC.

• Ensure logging and alerting systems are functioning correctly and tuned for accuracy.

• Assist in onboarding new systems into the security monitoring environment.

Policy Compliance & Reporting

• Ensure compliance with internal security policies and regulatory requirements.

• Generate security reports covering incident trends, operational metrics, and security posture.

• Support internal and external audits by providing required documentation.

Collaboration & Support

• Work closely with IT, network, and application teams to ensure secure operations.

• Provide security guidance during system upgrades, deployments, and BAU activities.

• Participate in security awareness and training initiatives.

Continuous Improvement

• Recommend improvements to security tools, processes, and controls.

• Stay updated on emerging threats, vulnerabilities, and cybersecurity best practices.

---

Requirements

Education

• Bachelor’s degree in Computer Science, Information Security, IT, or related field.

Experience

• 3–5 years of experience in IT security operations or cybersecurity roles.

• Hands-on experience with SIEM tools (Microsoft Sentinel, Splunk, QRadar).

• Experience with EDR platforms, firewalls, and intrusion prevention systems (IPS).

• Exposure to DLP, CASB, and vulnerability management tools.

• Experience in enterprise or hybrid IT environments preferred.

• Familiarity with security frameworks such as ISO 27001, NIST, or regulatory standards (e.g., Bank Negara Malaysia RMiT, PDPA).

---

Technical Skills

• Strong knowledge of network security, identity & access management, and endpoint protection.

• Experience in log analysis, incident response, and threat detection.

• Knowledge of Windows and Linux security hardening.

• Familiarity with cloud security (Azure, Microsoft 365 Defender).

• Basic scripting knowledge (PowerShell or Python) is an advantage.

---

Certifications (Preferred)

• CompTIA Security+

• Certified Ethical Hacker (CEH)

• Microsoft Certified: Security Operations Analyst Associate

• GIAC Security Essentials (GSEC)