Develop, maintain, and enhance incident response framework. Run regular training and drills to improve response effectiveness and team readiness.
Lead the investigation and response to security incidents, including containment, eradication, recovery, and root cause analysis. Drive the implementation of necessary improvements.
Set priorities and monitor progress. Maintain incident and forensic records. Provide regular and post-mortem reports to stakeholders.
Partner with IT teams, business units, and external parties to coordinate communications and incident response efforts.
Collaborate with Security Operation Center to develop continuous improvements. Inform teams on emerging cyber threats and trending security risks.
Perform other cybersecurity duties as directed by supervisor.
Requirements
Degree holders with keen interest in cybersecurity or technology.
Minimum 10 years’ experience in technology industries with at least 5 years in related security roles.
Self-motivated and able to work independently. Strong problem solving, project management, communication and interpersonal skills
Good command of written and spoken English and Chinese.
Certification in cybersecurity such as Certified Information Systems Security Professional (CISSP), Computer Hacking Forensic Investigator (C|HFI), Certified Incident Handler (ECIH), GIAC Certified Incident Handler (GCIH), or GIAC Certified Forensic Analyst (GCFA) preferred.
Hands-on experience in security operations and incident response is highly preferred.