Deskripsi Pekerjaan
Are you a proactive cybersecurity professional looking to elevate your career within a dynamic technical environment? USER Experience Researchers is seeking a highly skilled Security Operations Analyst to join our expanding team in Cyberjaya. In this pivotal role, you will be the frontline defense of our digital infrastructure, focusing on advanced vulnerability management and real-time security operations.
We are looking for a candidate who is passionate about threat mitigation, compliance, and process optimization. You will work closely with cross-functional teams to identify security gaps, monitor internal systems, and implement robust strategies that protect our organization’s assets from evolving cyber threats. If you thrive in a fast-paced environment and possess a deep analytical mindset, we want to hear from you.
Tanggung Jawab
- Monitor and analyze security alerts across the organization to identify potential threats or breaches.
- Execute end-to-end vulnerability management processes, including scanning, assessment, and remediation tracking.
- Conduct regular security audits and compliance checks to ensure alignment with industry best practices and internal policies.
- Collaborate with IT and development teams to resolve identified vulnerabilities and implement security hardening configurations.
- Support incident response efforts by assisting in the investigation, containment, and recovery of security incidents.
- Develop and maintain technical documentation, including security playbooks and operational reports.
- Stay current with emerging cyber threats, security trends, and new technologies to continuously improve our security posture.
Kualifikasi
- Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or a related field.
- Minimum 2-4 years of professional experience in Security Operations (SOC) or Vulnerability Management roles.
- Proficiency in using industry-standard vulnerability scanning tools (e.g., Nessus, Qualys, or Rapid7).
- Strong understanding of network security, cloud security principles, and common attack vectors (OWASP Top 10).
- Experience with SIEM tools (e.g., Splunk, Sentinel, or ELK) and incident response frameworks.
- Relevant professional certifications such as CompTIA Security+, CEH, GCIH, or CISSP are highly desirable.
- Excellent analytical, problem-solving, and communication skills, with the ability to articulate technical risks to non-technical stakeholders.