Cyberthreat Prevention Analyst (Endpoint Security)

Role: Cybersecurity Engineer - 12 months Renewable contract

Experience: Minimum of 5 years

Location : CBD

Job Responsibilities:

• Develop, implement, and manage security controls to block and mitigate security threats across the IT infrastructure.
• Understanding of perimeter and endpoint security solutions and able to create policies based on requirements.
• Evaluate and perform analysis of the business risks and control environment to identify weaknesses and design the control to operate effectively.
• Regularly review and fine-tune existing policies to ensure they remain effective and up to date with the evolving latest security threats and best practices.
• Collaborate with other teams to ensure policies are aligned with organizational goals and compliance requirements.
• Troubleshooting policies if they are not working as intended.
• Monitor and Analyze Security Events: Continuously monitor security events and alerts, analyze potential threats, and take appropriate actions to prevent security incidents.
• Policy Development: Develop and maintain security policies, procedures, and guidelines to ensure compliance with industry standards and best practices.
• Incident Response: Collaborate with the incident response team to investigate and respond to security incidents, providing expertise on security controls and mitigation strategies.
• Reporting and Documentation: Maintain detailed documentation of security controls, configurations, and incidents. Prepare regular reports on the effectiveness of security controls.
• Training and Awareness: Provide training and guidance to other team members and stakeholders on security controls and best practices.

Skillset (Must have)

• Possess a degree in Computer Science/Information Technology or related fields.
• Experience: Work experience in cybersecurity, with a focus on policy creation, monitoring, and incident response.
• Technical Skill: Skilled in managing NDR, EDR, WAF, email security, and DLP policies. Strong understanding of endpoint/network security, threat detection, and incident response. Proficient in SIEM data querying and analysis.
• Analytical Skill: Excellent analytical and problem-solving skills, with the ability to analyze complex security issues and develop effective solutions.
• Communication Skill: Strong written and verbal communication skills, with the ability to convey technical information to non-technical stakeholders.
• Team Player: Ability to work collaboratively with cross-functional teams and build strong working relationships.
• Accountability and Responsibility: Take ownership of assigned tasks and projects, ensuring they are completed on time and to the highest standards. Proactively identify areas for improvement and take the initiative to address them.
• Critical Thinking: Apply critical thinking skills to analyze complex security issues, evaluate potential solutions, and make well-informed decisions.
• Independently perform tasks and responsibilities with minimal dependency and guidance, while continuously learning and adapting to evolving technologies.

Skillset (Good to have)

• Project Management: Experience in managing cybersecurity projects, including planning, execution, and monitoring. This helps in ensuring that security initiatives are completed on time and within budget.
• Regulatory Knowledge: Understanding of legal and regulatory requirements related to cybersecurity, such as data protection laws and industry-specific regulations. This can help in ensuring compliance and avoiding legal issues.
• Programming and Scripting: Knowledge of programming languages (such as Python) and scripting languages (such as PowerShell) can be beneficial for automating security tasks and developing custom security tools.
• Cloud Security: Familiarity with cloud security principles and practices, including securing cloud environments and managing cloud-based security tools.