Responsibilities:

• A key person to support Project Manager to prepare precondition work for the SOC formation
• Support day-to-day operations of the SOC, focusing on monitoring, analysis, incident response, and issue management
• Work with internal and external parties to provide SOC requirements, test security cases, tune configurations and document operational procedures
• Monitor and review event indications, warnings and system logs, and notify the related parties with Security Operations Procedures (SOPs)
• Review and remediate security threats and incidents, participation in the escalation process and produce incident reports

Requirements:

• Bachelor’s degree holder in Computer Science or Information Technology or related disciplines
• With minimum 3 years of IT security experience, experience in Security Operations or SOC are preferred
• With experience in SOC formation tasks and activities (hardware and software set-up requirements, incident handling techniques/tools and incident management processes)
• Working knowledge of defensive security operations and techniques, e.g.
  • Perimeter defense
  • Endpoint management
  • Data loss protection
  • Insider threat
  • Kill chain analysis
  • Security metrics and dashboard
• Experience in writing the full security incident report
• Experience in one or more IT disciplines, such as Infrastructure, Networking, Software Development is a plus
• Strong knowledge base in IT operations, enterprise security networking, operating systems and database security is a plus
• With knowledge in security tool skills is a plus e.g. Splunk Enterprise Security, Demisto, DarkTrace, IronPort, Tripwire, Tenable, AppSpider and CarbonBlack
• Familiar with security and control for technologies / enterprise applications: Linux, Windows, Firewall, IPS and IDS.
• Good communication skills in both English and Chinese