The Senior Cyber Defense role is responsible for leading advanced cyber defense initiatives across the SCBX Group. This position covers strategic, operational, and tactical levels of cyber defense, with a primary focus on Attack Surface Management (ASM) and Cyber Threat Intelligence (CTI), covering Digital Risk Protection (DRP) and Supply Chain Intelligence (SCI).

As part of the SCBX Cyber Center of Excellence (CCOE), this role drives the organization’s cyber defense strategy, enhancing resilience while working in close collaboration with the SOC and security incident response teams in a highly challenging environment with all subsidiaries various business industries.

Key responsibilities with these requirements, but not limited to:

• Monitor and detect security incidents, and develop comprehensive security incident response plans.
• Provide expert consultancy services as a SME (Subject Matter Expert) in Group security operations to support the SOC and Cyber Defense solutions.
• Stay abreast of the latest cyber threats and trends, and define system security requirements
• to ensure the protection of the organization with end-to-end.
• Manage the seamless integration of subsidiary systems into the overall security operations.
• Configure, maintain, and troubleshoot cyber security components to ensure optimal performance
• Develop, document, and maintain standard operating procedures and protocols for SOC operations.
• Manage and handle customer change requests on Managed assets in a timely and efficient manner.
• Manage 3rd party vendor relationships for the building and delivery of Cyber Defense solutions.

For Specific Feature:

• CTI: Analyze threat intelligence from the multiple platforms to identify the tactics, techniques, and procedures (TTPs) of threat actors relevant to our industry and organization.
• ASM: Identify and prioritize vulnerabilities, misconfigurations and Shadow IT discovered on the attack surface.
• DRP: Track brand abuse, phishing/fake domains, and fraudulent mobile applications. Manage the takedown request process for malicious contents.
• SCI: Utilize the platform to monitor and assess the security posture of third-party vendors and partners. Analyze supply chain-related data breaches and evaluate their potential impact on the organization
• Intelligence Reporting and Dissemination: Produce and disseminate intelligence reports tailored to various stakeholders.

Requirements with these requirements, but not limited to:

To be successful in this role, you should have experience in most of the following:

• 5-8 years’ experience in similar Group environments. If you worked in financial industry will be plus score.

• Strong knowledge of cybersecurity principles, practices, security threats, and attack countermeasures.

• Understanding of the Intelligence Cycle and key frameworks such as MITRE ATT&CK, Pyramid of Pain.

• Knowledge of advanced analytical frameworks such as the Diamond Model and the Cyber Kill Chain is highly desirable.

• Experience with a variety of cyber security tools and technologies.
• Experience applying analytical and problem-solving skills, with the ability to connect seemingly disparate pieces of information.
• Strong communication skills, capable of explaining complex technical concepts to both technical and non-technical audiences.
• A proactive, curious, and self-starting mindset.
• Ability to work effectively under pressure, both independently and as part of a team.
• Experience in vendor management is a plus

• (Highly preferred) Prior hands-on experience with CTI/DRP, ASM, or SCI platforms.

Join our team as Senior Cyber Defense and contribute to ensuring the availability and efficiency of our Cyber Defense strategy. Apply today to play a crucial role in safeguarding our organization's security.