Cybersecurity SOC Analyst (0016 Mar 2026)

Job Purpose

The Cybersecurity SOC Analyst is responsible for monitoring and analyzing security events within the Security Operations Center (SOC) to detect, investigate, and respond to potential cybersecurity threats. This role ensures timely identification and escalation of security incidents, supports containment and mitigation efforts, and contributes to the development of security monitoring strategies and playbooks.

Duties and Responsibilities

• Ensure Compliance to Rules and Regulations
• Ensures compliance with all Company standards and relevant industry standards during all aspects of work.
• Ensures adherence to the Company’s Code of Conduct, Internal Rules, and Regulations at all times.

General Job Functions

• Monitor: Watch Security Information and Event Management (SIEM) systems and other security tools for suspicious activity. 
• Triage: Analyze security alerts to determine their severity, validity, and potential impact.
• Escalate: Report incidents to the IT Security Manager or appropriate teams according to established procedures.
• Document: Record security events and incidents, including relevant technical details and forensic analysis.
• Mitigate: Perform basic incident containment and initial mitigation activities.
• Develop: Contribute to the creation and maintenance of security monitoring playbooks and Standard Operating Procedures (SOPs).
• Research: Stay up-to-date on the latest global security threats, zero-day vulnerabilities, and TTPs (Tactics, Techniques, and Procedures).
• Train: Participate in security awareness training and red-team/blue-team exercises.
• Collaborate: Work with other security team members to continuously improve the organization's overall security posture. 

Perform any other tasks as assigned by management.

Education: Bachelor’s Degree in Computer Science, Information Security, or a related field (or equivalent professional experience).

Experience: Minimum 1 year of experience in security monitoring or IT support, with foundational knowledge of security incident response procedures.

Technical Skills: * Hands-on experience with SIEM tools (e.g., Splunk, QRadar, AlienVault, or Microsoft Sentinel).

Familiarity with common security technologies including Firewalls, IDS/IPS, EDR/Antivirus software, and WAFs.

Fundamental understanding of computer networks, networking concepts, and protocols (e.g., TCP/IP, DNS, HTTP/S, SSH).

Preferred Skills: * Relevant certifications such as CompTIA Security+, Network+, or CySA+.

Knowledge of scripting languages (e.g., Python, Bash, or PowerShell) for automation.

Soft Skills: Strong analytical and problem-solving skills, with the ability to work effectively both independently and within a team environment.

Chan Chee Meng

EA 07C3069

R1110620