Senior Cyber Security Manager（SOC）

Security Operations Security Operations Center (SOC) • Oversee daily operations of the monitoring and response function, ensuring continuous threat detection and timely incident handling. • Define and maintain SOC processes, including triage workflows, escalation paths, and integration of threat intelligence. • Lead incident response activities, conduct root‑cause investigations, and drive long‑term corrective actions. • Collaborate with SOC analysts to streamline processes, reduce detection and response times, and enhance operational efficiency. • Conduct regular performance reviews aligned with SLAs and KPIs, ensuring high‑quality incident management and reduced false positives. • Support the organization’s broader incident management framework, ensuring clear communication and timely escalation to group‑level cybersecurity teams. • Align closely with group cybersecurity leadership on standards, policies, and coordinated response strategies. • Provide reporting on key metrics, incident insights, and participate in group‑wide security exercises. • Oversee endpoint, data protection, and network security initiatives to maintain strong defensive posture. DevSecOps Engineering • Integrate security controls throughout the development lifecycle, including code analysis, vulnerability assessment, and compliance validation using industry‑standard tools and methodologies. • Champion secure‑by‑design principles in Infrastructure as Code (IaC) practices to ensure resilient and scalable cloud environments across major cloud platforms. • Partner with development, operations, and security teams to strengthen secure coding habits and infrastructure hardening practices. Security Tools Management • Ensure optimal configuration, maintenance, and performance of core security technologies, including detection, prevention, and protection systems across the environment. • Manage relationships with external security service providers, evaluate service quality, and drive continuous improvement while ensuring cost‑effectiveness. • Monitor service provider performance against SLAs and security expectations, addressing gaps and escalations proactively. • Oversee enterprise security solutions and technical policies across network, endpoint, cloud, email, and web security domains. • Continuously assess the effectiveness of security tools and recommend enhancements to strengthen overall security posture. Security Infrastructure Posture & Enhancement • Collaborate with IT Infrastructure and Operations teams to secure networks, endpoints, and cloud environments. • Review and validate infrastructure designs from a security perspective, supporting teams in identifying and mitigating vulnerabilities.

• Strong knowledge of vulnerability management, penetration testing, and compliance assessment tools. • Hands‑on experience with CI/CD platforms and version control systems. • Proficiency with major cloud platforms and their native security capabilities. • Expertise in IaC frameworks and containerization technologies. • Scripting proficiency for automation and tooling. • Deep passion for cybersecurity and continuous improvement. • 5–7 years of relevant experience and a bachelor’s degree in Computer Science, Information Security, or related fields. • Advanced security certifications are highly advantageous. • Familiarity with SIEM, SOAR, endpoint protection, firewalls, and email/web security technologies. • Strong understanding of networking, security architectures, and industry best practices. • Excellent communication, collaboration, and interpersonal skills. • Ability to thrive in a fast‑paced environment and manage multiple priorities effectively. • Proficiency in English and Mandarin

公司介绍

职位描述

职位要求

Shawn Cong