Senior Cybersecurity Analyst / Cybersecurity Analyst

<p><strong>Job duties / responsibilities:</strong></p><ul><li><p>Understand industry best practice on cybersecurity and able to develop, implement and manage it subsequently</p></li><li><p>Ensure cybersecurity project can be delivered on time with good quality</p></li><li><p>Provide cybersecurity awareness training when required</p></li><li><p>Maintain and operate security tools such as firewalls, antivirus software, and SIEM systems.</p></li><li><p>Manage to monitor and investigate security alerts and events, mitigating security risks and responding to security incident.</p></li><li><p>Analysts identify vulnerabilities in systems and networks, assess the associated risks, and follow up with different parties.</p></li><li><p>Conduct regular security assessments and penetration tests to identify weaknesses and evaluate the effectiveness of existing security controls</p></li><li><p>Maintain and support Privilege Access Management (PAM) day-to-day operation.</p></li></ul><p></p><p><strong>Requirements:</strong></p><ul><li><p>Degree in computer science, engineering, information security or equivalent</p></li><li><p>Minimum of 2 years of experience in cybersecurity administration and operation</p></li><li><p>Basic knowledge in at least 2 of following security technologies: Security Information and Event Management (SIEM), Vulnerability Scanner, Data Loss Prevention (DLP), Web Application firewall (WAF), layer 3/layer 4/layer 7 Firewall, Web Proxy, SSLVPN, Email Gateway, Endpoint Detection and Response (EDR), Privilege Access Management (PAM).</p></li><li><p>Strong understanding of network protocols, operating systems (Windows, Linux, Mac), and cloud environments.</p></li><li><p>Enjoy team work and sharing of experience and knowledge and able to work independently.</p></li><li><p>Excellent analytical, problem-solving, and communication skills.</p></li><li><p>Professional IT related qualification (e.g. CISSP, CISM, CISA, CCSP, ISO27001, CEH, CCNA, CCNP, MCSE etc.) is an added advantage.</p></li><li><p>Curiosity on computer technology and keen to keep learning new skills and knowledge regularly.</p></li><li><p>Knowledge of frameworks such as NIST, ISO 27001, or CIS Controls.</p></li><li><p>Keep up with the latest cyber threats, security technologies, and industry best practices to ensure the organization's security posture remains effective</p></li><li><p>Good command of spoken and written English and Putonghua.</p></li></ul>