Nityo Connect
JD-20249
5 - 10 Years
IT
Permanent
Malaysia
Responsibilities: • Develop and maintain honeypots and supporting infrastructure and be SME on honeypots and honeypot infrastructure • Develop and maintain threat analysis lab virtual machines, cyber ranges and supporting infrastructure and be SME on lab machines and supporting infrastructure • Develop and maintain open source or in-house tools, scripts, automation and systems as needed to support threat intelligence and incident response tasks • Conduct ad hoc and periodic compromise assessments of Maybank networks and systems and report on findings • Support the Security Operations Center in validating daily security alerts by investigating the malicious artefacts and binaries when additional coverage is needed • Support IT Security by threat hunting on Maybank systems and networks and creating proactive and reactive rules to alert on threat activity • Analyse code (binaries, scripts, web scripts) and malspam emails to determine malicious intent • Analyse artefacts and logs to determine malicious intent and/or scope of incident • Report and document results of analysis and recommend follow up actions, remediations and security control gaps to IT Security, application owners and other stakeholders • Perform threat hunting on Maybank systems and networks to identify undetected threat activity and breaches • Create rules to detect adversary TTP on Maybank systems and networks
Requirements: • Bachelor’s Degree in Computer Science or Information Technology majoring in Cybersecurity, Networking or any related field • Certifications an advantage - SANS GIAC Certified Incident Handler / SANS GIAC Reverse Engineering Malware / Certified Ethical Hacker (CEH) • CompTIA CySA+. • Job experience in DFIR an advantage
Nityo Connect
I am Nityo Infotech’s virtual assistant. How can I help you today?