Cybersecurity Analyst

Job Overview

We are seeking a proactive and technically strong Security Analyst to manage security operations and respond to cybersecurity incidents across the organization. This role focuses on monitoring threats, handling incidents, improving detection capabilities, and strengthening overall security posture.

The ideal candidate has hands-on experience with security tools, incident response processes, and risk management practices.

Key Responsibilities

1. Security Monitoring & Incident Response

• Monitor and investigate security alerts from internal systems or SOC providers
• Lead or assist in responding to incidents such as malware, ransomware, phishing, insider threats, and data loss events
• Coordinate containment, remediation, and recovery activities with IT teams
• Perform root cause analysis and recommend corrective improvements

2. Vulnerability & Patch Coordination

• Conduct vulnerability assessments and evaluate associated risks
• Prioritize remediation activities based on business impact
• Work with infrastructure and application teams to manage patching
• Track remediation progress and report risk exposure

3. Security Platform Administration

• Manage and maintain enterprise security tools including SIEM, SOAR, EDR/XDR, DLP, CASB, email and web security platforms
• Fine-tune detection rules to improve accuracy and reduce false positives
• Support integration of security platforms with enterprise systems
• Experience with platforms such as Sentinel or Securonix is advantageous

4. Threat Intelligence & Risk Monitoring

• Monitor emerging threats, vulnerabilities, and attack techniques
• Assess relevance to the organization and recommend mitigation strategies
• Convert threat intelligence into actionable detection or preventive controls

5. Governance, Risk & Compliance

• Support compliance initiatives aligned with ISO 27001, NIST, SOC 2, PDPA, GDPR
• Participate in internal risk assessments and audit activities
• Maintain security policies, procedures, and documentation
• Assist in vendor and third-party security assessments

6. Advisory & Awareness

• Provide cybersecurity guidance to IT teams, developers, and business stakeholders
• Support awareness initiatives such as phishing simulations
• Act as an internal subject matter resource on cybersecurity topics

7. Continuous Improvement

• Identify security gaps and propose enhancements
• Recommend automation initiatives to improve efficiency
• Track and report security KPIs and operational metrics

Requirements

Education

• Degree in Computer Science, Information Technology, or related discipline

Experience

• Minimum 3 years of experience in IT or cybersecurity
• Understanding of network infrastructure, server environments (Windows/Unix), and endpoint platforms

Technical Skills

• Hands-on experience with security solutions such as endpoint protection, SIEM platforms, vulnerability scanners (e.g., Tenable), privileged access management tools (e.g., CyberArk)
• Familiarity with platforms such as Sentinel or Securonix
• Strong analytical and problem-solving skills

Certifications (Preferred)

• QISP
• CISSP
• CompTIA Security+
• Cybersecurity Nexus or equivalent

Please send your detailed resume in MS Word format to [email protected] with

• Education Level
• Working experiences
• Each employment background
• Reason for leaving each employment
• Last drawn salary
• Expected salary
• Date of availability