Assistant Vice President, GT-TSS, Cyber Threat Intelligence MY (SOC Tier 3 Threat Hunting)

Job Purpose *

Threat Hunting provides a proactive and iterative function for finding deep, persistent threats that may not be detected by traditional security stacks. This role functions in a team, but often will work independently to provide a constant stream of information to meet analyst cyber security requirements.

Key Responsibilities  *
•    Actively develop hunts, translate them into an iterative process, and deploy them in numerous EDR solutions.
•    Develop and mature new and existing solutions for threat hunting detection capabilities.
•    Fully document and communicate findings to an array of audiences which includes both technical and executive teams.
•    Support the investigation and contribution to large and small scale computer security breaches
•    Characterize suspicious binaries and be able identify traits, C2, and develop network and host-based IOCs.
•    Identify potential malicious activity from memory dumps, logs, and packet captures
•    Collaborate with Business Partners in Risk & Fraud on cases, providing technical investigative capabilities.
•    Through review and analysis of cyber threats, provide both internal & external parties key information to respond to threat.
•    Work with our Threat Intelligence team to develop IOCs for specific cyber threat actors or groups and to understand their tactics, techniques and procedures
•    Monitor and analyze cybercrime threat reports for CIMB or APT groups to proactively create IOCs for Threat Hunting
•    Collaborate with other cyber Threat Hunters based on developed SME area
•    Collaborate with Cybersecurity and Incident Response team to provide targeted Threat hunting reports for ongoing engagements based on work performed on the client enterprise
•    Use a wide variety of Threat Intelligence tools and websites, including the dark web
•    Provide customized reports and research for cybersecurity services clients
•    Provide targeted and actionable Threat Hunting reports for Group Technology
 

Job Specification *

Qualifications 
(Basic Degree/Diploma etc)
    Bachelor's Degree or Professional Qualification in the relevant discipline (IT / Computer Science)
Professional Qualification and/or Regulatory, Licensing requirements      •     Security certifications e.g. CISSP, EC-Council, SANS, etc are preferred.
•     Network certifications e.g. CCNA, CCNP, etc are added advantages

Relevant Work Experience     •    6++ years of experience in IT security, preferably in IT/Cyber security monitoring, incident response, threat intelligence analysis role of a banking environment
Required Competencies and Skills *

Competencies/Skills 
(Essential to succeed in this job)
    Technical/Functional skills
•    4+ years of work experience in one or more of the following roles: SOC Analyst, Cyber Threat Hunter, Cyber Crime investigations, Cyber Threat Analysis, Cyber Threat Campaign Tracking.
•    Understanding of common operating systems and IT Infrastructure such as Windows, Unix/Linux, Active Directory, firewalls, proxies, etc.
•    Familiarity with automation concepts and proficiency in scripting languages such as Python, Perl, JavaScript, Powershell, etc.
•    Strong analytical skills and critical thinking skills
•    Effective communication skills (both written and verbal)
•    Strong organization, prioritization, and rationalization skills.
Personal skills (Soft Competencies [Core/Leadership])
•    Highly results-oriented and can work independently.
•    Ability to build relationships and interact effectively with internal and external parties.
•    Ability to plan, organize and prioritize tasks.
•    Ability to work effectively as a team.
•    Good analytical, technical, written and verbal communication skills.

#LI-AZ1
 

With operations that span 15 different markets across the region, the opportunity to expand your experience, test your capabilities, and exhibit your resilience is ample.  #teamCIMB  is always keen to welcome the ones who are ready to make that very special difference – for themselves and the bank.