B2C SOC Support (English, Mandarin/Cantonese)

Role : B2C SOC Support (English, Mandarin/Cantonese)

Salary : Open

Skills Security / Network Monitor & Cantonese /Mandarin language

Experience : 3-5 Years

Key Responsibilities :

• 24/7 alert Dashboard Monitor
• Perform initial triaging of security alerts.
• Follow Runbook to Perform the investigation.
• Escalate the alert to the SME team as required.
• Availability and Health check monitoring of SIEM platform
• Document and registration of security incident in ITSM tool
• Update knowledge base and KEDB articles for reference
• Determine, document, and report false positives events/alerts.
• Tracking the incident to closure based on the updates received from stakeholders.
• Develop handover procedures to ensure consistency is maintained for incidents during shift changes.
• Create and send daily reports to respective stakeholders.
• Knowledge on IAM tools and attacks related to user account compromise.
• Should have experience on WAF.
• Knowledge of ITIL disciplines such as Incident, Problem and Change.
• Knowledge on PCIDSS.
• Understanding of OWASP concepts.
• Experience on Threat Hunting.

Key Responsibilities :

• Investigate, identify Root Cause and resolve Cyber Security Incidents escalated by Level 1 team and reduce Incident volumes where possible.
• Provide daily/weekly/monthly reporting (Excluding SLA and KPI) and carry out daily, monthly, quarterly routine tasks.
• Forward Incidents that cannot be resolved at Level 2 to the SME (L3) team / individual IT Asset owners for resolution.
• Track, manage and Deploy permanent Fixes for recurring Cyber Security Incidents via Problem Management
• Engage Third Party vendors/partners for Problem escalation/resolution, where necessary
• Implement Best Industry Practice s/recommend hardening and alignment of SOC functions in accordance to ASDA adopted standards
• Develop process management documentation & playbooks/runbook.
• Regularly review and update playbooks to ensure they are kept up to date to respond to known emerging Threats.
• Knowledge on IAM tools and attacks related to user account compromise.
• Understanding of SSO authentication mechanism.
• Should have experience on WAF and use case creation in WAF.
• Knowledge of ITIL disciplines such as Incident, Problem and Change.
• Knowledge on PCI Compliance.
• Understanding of OWASP concepts.
• Creation of use cases based on Threat Hunting conducted.

Qualifications / Experience:

• 3 to 5 Years Experience
• Airline Domain Knowledge Preferable