Deskripsi Pekerjaan
Are you a proactive and highly skilled cybersecurity professional looking to elevate your career within a dynamic retail powerhouse? DFI Retail Group, a leading pan-Asian retailer, is seeking an Assistant Manager, Security Operations to join our robust IT Security team in Mandaluyong City. This pivotal role offers an exciting opportunity to be at the forefront of protecting our extensive digital assets and ensuring the resilience of our operations across the region.
In this critical position, you will play a central role in managing our security posture, from hands-on incident response to strategic enhancements. You will take ownership of security incidents from initial detection through to resolution, driving swift and effective mitigation strategies. A key aspect of your role will involve continuously enhancing our detection logic and security tools, ensuring we are always one step ahead of evolving cyber threats. Furthermore, you will be instrumental in identifying and implementing automation initiatives, streamlining our security operations processes for greater efficiency and effectiveness.
Working closely with the SOC Manager, you will contribute significantly to the daily operations of our Security Operations Center (SOC), providing expert guidance and technical leadership. This is more than just a managerial role; it's a chance to actively shape the cybersecurity landscape of a major retail group, making a tangible impact on our business continuity and customer trust. If you are passionate about cybersecurity, possess a strong analytical mindset, and thrive in a challenging yet rewarding environment, we invite you to explore this exceptional opportunity with DFI Retail Group. Join us in building a secure future.
Tanggung Jawab
- Lead and manage end-to-end security incident response, including detection, analysis, containment, eradication, recovery, and post-incident review.
- Develop, refine, and implement security detection logic, rules, and playbooks within SIEM and other security tools.
- Identify opportunities and drive automation initiatives to enhance SOC efficiency and effectiveness.
- Provide critical support to the SOC Manager in daily operations, strategic planning, and team leadership.
- Monitor and analyze security alerts, logs, and events from various security systems to identify potential threats.
- Participate in vulnerability management processes, including scanning, assessment, and remediation coordination.
- Contribute to the continuous improvement of security policies, procedures, and overall security posture.
- Mentor junior security analysts, fostering their growth and skill development.
Kualifikasi
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related technical field.
- Minimum of 3-5 years of experience in Security Operations, Incident Response, or a SOC environment.
- Strong understanding of cybersecurity principles, frameworks (e.g., NIST, ISO 27001), and best practices.
- Proficiency with security tools and technologies such as SIEM (e.g., Splunk, Microsoft Sentinel), EDR, firewalls, IDS/IPS, and vulnerability scanners.
- Experience with scripting languages (e.g., Python, PowerShell) for automation and analysis.
- Relevant industry certifications (e.g., CompTIA Security+, CEH, SANS GIAC certifications) are highly advantageous.
- Excellent analytical, problem-solving, and decision-making skills under pressure.
- Strong communication and interpersonal skills, capable of interacting effectively with technical and non-technical stakeholders.