Security Engineer

Key Responsibilities

• Lead the monitoring and analysis of security events across networks, applications, and systems.
• Oversee incident response activities, ensuring rapid containment, investigation, and remediation.
• Conduct advanced threat hunting and forensic analysis to identify sophisticated attacks.
• Develop and enforce security policies, standards, and procedures across the organization.
• Collaborate with IT, compliance, and business units to align security initiatives with organizational goals.
• Evaluate and recommend new security tools, technologies, and processes.
• Prepare and review reports on security posture, risks, and incident trends.
• Stay ahead of emerging threats, vulnerabilities, and regulatory requirements.
• Assist with security audits and assessments.

Qualifications

• Bachelor’s or Master’s degree in computer science, Cybersecurity, or related ffeld.
• 5–8 years of experience in cybersecurity.
• Strong expertise in SIEM platforms, intrusion detection/prevention, endpoint protection, and cloud security.
• In-depth knowledge of security frameworks (NIST, ISO 27001, CIS Controls) and regulatory standards (MAS TRM, PDPA and Cyber Hygiene).
• Proven experience in incident response, digital forensics, and threat intelligence.
• Excellent leadership, communication, and stakeholder management skills.
• Excellent analytical, problem-solving, and communication skills.

Preferred Skills

• Advanced certifications such as CISSP, CISM, OSCP.
• Fluent in Chinese and English.
• Experience with cloud security (AWS, Azure)
• Experience with security automation and orchestration (SOAR).
• Familiarity with DevSecOps practices and secure software development lifecycle.
• Ability to translate complex technical risks into clear business impacts.