Job Duties & Responsibilities:
- Monitor security tools for suspicious events and anomalous activity, triaging by criticality
- Provide first level response for security events
- Conduct proactive threat hunting
- Validate suspicious events and incidents by using open-source and proprietary intelligence
- sources
- Participate to continuous improvement, alert design and workflow management
- Dashboards creation and troubleshooting
- Deployment and configuration of various security tools (SIEM, SOAR, EDR, etc.)
- Provide technical expertise and high-level support to customers
- Handle customer operations relationship in mainland China (visits to client’ s office in
Shanghai is expected)
Technical environment:
- Systems: Windows/Linux/Mac
- Tools: XSOAR, Splunk, Tenable/Nessus, SentinelOne, Wiz, etc
The ideal candidate has:
- An Engineering/IT/Cybersecurity bachelor’s or master’s degree
- At least 1- 5 years of experience in cybersecurity
- Good knowledge of networks and systems protocols
- Strong grasp on IT Security methodologies and approaches
- Working knowledge of security issues, vulnerabilities, exploits, regulatory and legal changes,
- and security standards that may impact information security
- Ability to display superb listening, verbal, and written communication skills in English and Chinese
- Bonus: Crisis management/forensic experience
