Browse
···
Log in / Register
Summary: The Junior Security Engineer/Analyst supports security operations, incident response, identity management, and security engineering functions. Highlights: 1. Supports security operations, incident response & identity management 2. Focuses on alert triage, investigation support & secure implementation 3. Works with SOC, infrastructure, network, cloud, and application teams Job description: Role is based in Malaysia. Must be willing to relocate to Malaysia. RESPONSIBILITIES Role Purpose The Junior Security Engineer / Analyst (IR / SecOps / SecDevOps) supports the organisation’s security operations, incident response, identity management, and security engineering functions. The role focuses on alert triage, investigation support, security tooling operations, and secure implementation, while building strong foundational skills across enterprise security domains. This position works closely with the SOC, infrastructure, network, cloud, and application teams to help maintain and continuously improve the organization’s security posture across on premises, cloud, SaaS, and endpoint environments. Operations Monitor, triage, and validate security alerts, incident response from SOC And SIEM platforms. Perform incident analysis, evidence gathering, and impact assessment. Escalate security incidents in accordance with incident response playbooks and SLAs. Assist senior engineers during incident containment, remediation, and recovery. Support alignment to MITRE ATT&CK techniques during investigations. Manage Cyber functions: o CrowdStrike EDR o Zscaler o IAM/PAM o M365 Security o Azure SecOps o Vulnerability Management Program DevSecOps integration into developer pipelines. Tracking incident, service request and change against SLA inline with incident and change management processes. Pro-actively evaluate for threats, vulnerabilities, exposures and gaps in security controls. Design and Implementation Assist with Security Governance. Design for security controls and functions within the security scope. Develop Playbooks for cyber scenarios. Leverage AI to develop security capabilities. Perform security assessments of applications and services. Engage with the business units to understand requirements and translate into technology solutions. Maintain accurate: o Designs and as-builts o Configuration records. o Policy and controls. o Risk register. Assist with BOM validation and license tracking. Drive the vulnerability management program. Threat Modeling and Threat informed defense for security control Requirements . IDEAL CANDIDATE SKILLS Applicants MUST meet these key skills: 3+ years of experience in a Cyber Security Ops role 1+ years of experience in designing and implementing security controls And working with stakeholders. Experience with incident detection, incident response, and forensics. Including working with IOC’s and threat intel. Knowledge in Firewalls (functionality and maintenance); Microsoft 365 Security; Virtualization security; System security both Linux and Windows; Endpoint Security; SIEM; WAF; IPS/IDS; Cloud Security. Experience working with secure solutions in Azure (VM, MicroServices, Containers) aligning to Azure ‘Well Architected Framework’. Experience working with NIST CSF, MITRE ATT&CK Framework, STRIDE Treat Model. Experience with some of these solutions: Cisco, Meraki, Fortinet, Palo Alto, Zscaler, CrowdStrike, Privilege Access Management, Vulnerability Management. Supporting skills: Awareness of cybersecurity trends and hacking techniques. Experience with Trust Zone Segmentation and Zero Trust methodology. Regular office hours and on call during non-business hours support. IaC, Automation, API integration, coding e. g. Python. Beneficial certifications: o Cisco Network and Security related certification (CCNA/CCNP) o Fortinet FCA/FCP o Zscaler ZDTA o Azure AZ-900 o Azure AZ 500 o CrowdStrike CCFA o GIAC/SANS Exposure to AI Security fundamentals or programs. Understanding of Risk Frameworks like FAIR. Experience working under ITIL
