Officer - Assistant Threat Detection and Response Specialist - IT
Tasks
- Analyze escalated security incidents
- Coordinate incident containment eradication and recovery
- Correlate telemetry logs and threat intelligence
- Design AI enabled security process improvements
- Determine incident impact scope and root cause
- Execute incident response using playbooks
- Improve alert triage and investigation efficiency
- Investigate security events
- Maintain threat intelligence and detection effectiveness
- Perform threat hunting using telemetry and logs
- Provide 724 incident on call support
- Use AI and large language models to enhance SOC workflows
Perks/Benefits
Skills/Tech-stack
AI | Cybersecurity | Detection engineering | Incident Response | Language Models | Large Language Models | Log Analysis | MITRE D3FEND | Mitre Attack | SIEM | SOAR | Security analytics | Security operations | Threat Intelligence | Threat hunting
Related jobs
-
Lead Security Architect HKD 104K-140KAI Security | Active Directory | Agentic AI | Agentic AI security | Amazon Web ServicesSenior-level Full TimeHong Kong, Manulife Tower2d ago
-
Access Management | CIS Hardening | Change Management | CyberArk | Cybersecurity24x7 shift rotation | Weekend and holiday rotationSenior-level Full TimeHong Kong, HK, HK6d ago
-
Security Operations Engineer HKD 300K-300KAI Agents | Alert rules | Device Compliance | ELK | GrafanaEducation subsidy | Healthcare Scheme | L and D programs | Wellness and meal allowancesMid-level Full TimeHong Kong, Hong Kong SAR7d ago
-
Automation | Cloud Security | Correlation rules | Detection engineering | EDRSenior-level Full TimeVictoria, AU10d ago
-
Assistant Vice President, Security Operations HKD 267K-360KBusiness Continuity | Crisis Communication | Crisis management | Disaster Recovery | Emergency responseExecutive-level Full TimeHK-ONE ES 23/F, Hong Kong15d ago
-
Senior Security Platform Engineer – Cybersecurity HKD 134K-162KAWS | AWS Config | Access Management | CI/CD | CSPMSenior-level Full TimeHong Kong (SAR)15d ago
-
AWS | Access Control | Ansible | Application Firewall | AutomationExecutive-level Full TimeHong Kong21d ago
-
Mid-level Full TimeHong Kong, HK, HK22d ago
-
Cybersecurity Specialist (Financial Services Consulting) HKD 312K-312KApplication Security | Attack Simulation | Blockchain | Compliance | Cybersecurity5-day work week | Birthday leave | Dental insurance | Life insurance | Marriage leaveMid-level Full TimeHong Kong, Hong Kong1mo ago
-
Security Consultant II HKD 300K-300KAPI Security | Application Security | Network Security | Project Management | SIEMCareer development opportunities | Exploratory recruiter call | Mentoring | Training programsMid-level Full TimeHong Kong1mo ago
-
Alert development | Aruba | Correlation rules | Dashboard Development | Detection rulesMid-level Full TimeHong Kong, HK, HK1mo ago
-
API | AWS | Agile | Alicloud | Artificial IntelligenceSenior-level TemporaryCental, Hong Kong1mo ago
-
Cyber Risk | Cyber Risk Management | Cyber Security | Cyber Security Policy | Cyber ThreatMid-level TemporaryCentral, Hong Kong1mo ago
-
Alert investigation | Cybersecurity | Network Security | SIEM | SoCMid-level Full TimeKwun Tong, Kowloon1mo ago
-
Associate - Information Security Governance - IT HKD 312K-312KAccess reviews | Automation | Cloud Security | Compliance | Control AssuranceMid-level Full TimeHK-TKO 5/F, Hong Kong1mo ago
-
Access Control | CCTV | Incident Management | Information Management | Mass notificationMid-level Full TimeHKG - HKDL - Hong Kong …1mo ago
-
Cybersecurity Engineer HKD 300K-300KBash | Event analysis | Incident Response | Password Management | PowershellMid-level Full TimeHong Kong, Hong Kong1mo ago