Role Objective

We are seeking a motivated and hands-on Information Security Operations Engineer to join our dynamic IT team. In this role, you will be responsible for various security operations, including monitoring and responding to security threats, as well as developing tools and processes to uphold global security standards. You will also play an integral part in supporting and contributing to cybersecurity projects that enhance our security operations as we advance our digital transformation. Success in this role requires prior experience in the security field, particularly in managing incident response within a Security Operations Center (SOC) or Cybersecurity Incident Response Team (CIRT). You will need to be proactive, adaptable to changing environments, and comfortable engaging and collaborating with teams across different functions and locations.

Key Responsibilities

• Network and Security Infrastructure: Monitor, maintain and fine-tune existing network & security infrastructure solutions (e.g. Endpoint Security, Anti-Virus, Data Loss Prevention (DLP), Vulnerability Scanner, Microsoft 365 Security and Compliance, Email Security.)
• Incident Response: Work closely with cross-functional teams (e.g. infrastructure, application and other departments) to monitor, analyze and response to information security incidents
• Documentation: Prepare documentation on security hardening standards, procedures and guidelines for security practices within the internal IT team, engineering and/or within the operational technology (OT) environment, security incident response plan & playbook
• Security Tests: Conduct external and internal vulnerability scans, network penetration tests and application security tests as required
• Reporting: Generate reports from security tools, write incident reports, assessment-based findings, outcomes and propositions for further security system enhancement with minimum supervision
• Security Activities: Support security activities, including but not limited to security awareness programs and security software deployments. Collaborate with IT, engineering, production and QA team to ensure security practices are integrated into all systems and applications
• Standards and Practices: Provide recommendations on security standards and practices for the Next Generation Firewall (NGFW), network proxy gateways, etc.
• Projects: Contribute to projects and initiatives involving IT systems - provide sound technical advice to ensure security principles are adhered to and support as needed
• IT Compliance: Report on security KPIs, vulnerabilities, non-compliance and other security exposures, including misuse of information assets
• Emerging Technologies: Conduct research, perform proof of concept (PoC) to evaluate new and emerging technologies and maintain an up-to-date understanding of the latest threats, vulnerabilities, mitigation, industry best practices and regulations
• Support other ad-hoc tasks assigned

Requirements

• Bachelor’s degree in computer science or related fields
• Minimum 2 years of experience as Information Security Engineer or equivalent roles in security operations centre (SOC) or cyber security incident response team (CIRT)
• Proficient in English and Mandarin to effectively communicate and collaborate with teams internationally
• Hands-on experience with security technologies (e.g. Next Generation Firewall (NGFW), Endpoint Security, Data Loss Prevention (DLP), Proxy, Secure Email Gateway, Active Directory, Identity and Access Management (IAM), Microsoft 365)
• Hands-on experience with the implementation, configuration, fine-tune, operations, and maintenance of security tools
• General knowledge of industry best practice in security hardening, OWASP, network security, security risk and management frameworks, national cybersecurity standards, ISO27001, etc
• Experience in solutioning, architecting and implementing security solutions
• Ability to learn and understand new concepts quickly to keep up with new and emerging technologies
• Good communication, interpersonal and consultative skills. Comfortable engaging with stakeholders and facilitating discussions and coordinating security related training. Prior experience in workshop facilitation is a plus
• Proactive attitude, with the ability to adapt quickly to changes and prioritize effectively to manage multiple priorities in a fast-paced and dynamic environment
• Team player with ability to understand the dynamics of international teamwork, collaborate in a diverse and multicultural environment to achieve the organization’s security objectives
• Analytical mindset with data-driven approach to problem-solving and process improvement
• Security certifications (e.g. CEH, CCNA Security, GSEC, GCIH, CCOA, SSCP) or other relevant certifications from institutions such as ISACA, ISC2 or GIAC is a plus