Become a part of Thailand's no.1 Digital Service Provider, Who strives to provide best services that help people fulfil their dreams.

We are looking for potential candidates who are eager to learn and grow to join our young talent team.

Job Posting Location

Bangkok

Job Summary

Lead daily work of Security Operations Center Analyst team members in each shift and ensure the timely identification, response, investigation, and remediation of all security events and incidents.

Job Description

Responsibilities :

• Lead daily work of Security Operations Center Analyst team members in each shift
• Ensure the timely identification, response, investigation, and remediation of all security events and incidents.
• Review and confirm incident severity level
• Review daily and monthly reports of each customer
• Ensure appropriate monitoring is in place for each system
• Develop standard work and processes, build playbooks, and implement analysis logic supporting automation efforts using various techniques including scripting and coding
• Enrich and implement additional detective capabilities to enhance or improve incident identification and response
• Using SOAR techniques, automate and integrate workflows between SIEM, various IR platforms, and other solutions and technologies
• Work closely with Incident response team, Forensic team & Threat Analysis team in supporting the analysis and tuning of the effectiveness of solutions, configurations and processes
• Support the security infrastructure administration and operations function as required
• Provide input to the maintenance and enhancement of related policies, documentation, and procedures

Qualifications :

• Bachelor of Science/IT or related field, 5 years' experience with 2 years of management/project experience.
• Operational experience in 24x7 environment.
• Senior level experience in security operation center function supporting medium to large enterprises performing incident response
• Proven results developing and implementing methods, processes, and procedures for detecting, responding, and resolving computer security incidents
• Deep understanding of present-day cyber-threats, attacker techniques and behaviors, and effective methods to both detect & repel these threats for a large scale organization with a distributed enterprise IT environment
• Prior experience using automation tools leveraging custom development, scripting, and solution platforms
• Prior experience writing tools to automate tasks and integrate various systems in Python, Power shell, and other scripting languages
• Experience with writing interfaces utilizing, JSON, XML, and REST APIs are preferred
• Experience performing data normalization, correlations, and visualizations
• Experience with supporting security technologies such as firewalls, proxies, web and email filters, application whitelisting, sandboxing, SIEM, threat intelligence, vulnerability scanning, syslog, IDS/IPS, DLP etc.,
• Broad technology experience with enterprise-level IT technologies including networks, endpoints, virtualization, cloud, operating systems, email, storage, databases etc.

Recruiter

Supaporn Limsiritong (สุภาภรณ์ ลิมศิริธง)