cyber security operation engineer.

• Continuously monitor alerts and outputs from various security tools, to identify potential security events, false positives, and suspicious activities.
• Lead technical investigations of security threats and incidents, ensuring thorough analysis, effective containment, and comprehensive remediation.

Security Tools management

• Ensure the proper configuration, regular updates and optimal functioning of all security tools, including intrusion detection and prevention systems, email protection, antivirus software, firewalls, and SIEM solutions
• Manage & operate security solutions & technical policies – firewalls, email & web security, Endpoint, cloud security & solutions. Actively monitor, track, and resolve incidents while continuously enhancing the setup and deployment of these tools.
• Regularly assess the effectiveness of security tools, propose enhancements, and implement improvements to strengthen the overall security posture.

Security Infrastructure posture management and Enhancement

• Work closely with the IT Operations team to secure IT infrastructures, including networks, endpoints, and cloud environments.
• Contribute to and validate the IT Infrastructure designs from a security perspective and assist operational teams in identifying and implementing appropriate measures for discovered vulnerabilities.
• Drive the adoption of cutting-edge technologies and innovative solutions to enhance the company’s security service arsenal. Lead the evaluation and implementation of modern security tools on our platforms

Leadership and Mentorship

• Provide cybersecurity expert guidance and mentorship to more junior & less experienced IT team members.
• Actively collaborate with the global SOC team to share knowledge, develop best practices, and continuously improve security processes and protocols.

skills and experience required.

• A genuine passion for technical cybersecurity, and a deep desire to learn and drive change.
• A positive & solution-oriented mindset (so crucial in the security context)
• An outstanding team spirit
• Bachelor’s degree in Computer Science, Information Security, or a related field.
• Advanced certifications (e.g., CISSP, CISM, CEH, CompTIA Security +) are a strong plus.
• Minimum of 5-7 years of experience in a SOC team or similar environment.
• Strong knowledge of security tools and technologies, including SIEM, SOAR, firewalls, antivirus & EDR software, and Web & email protection systems.
• Deep understanding of networking protocols, security technologies, and best practices
• Extensive experience with cloud security solutions and endpoint protection.
• Proficiency in monitoring, incident response, and security operations.
• Strong analytical and problem-solving skills.
• Excellent communication, collaboration & interpersonal skills.
• Ability to work collaboratively in a fast-paced environment and effectively prioritize and manage multiple tasks and projects.
• Fluency in English and Mandarin.