**Location**: Head Quarter - Jakarta **Level**: Managerial **Employment Status**: Permanent **Field of Work**: IT, Engineering **Posted Date**: 15 February 2024 **Job Summary**: - Analyzing and investigating these incidents, as well as providing a response. Leading the entire incident response process, including initial analysis and scoping, coordinating response actions with various IT and cloud teams, documenting forensic evidence, and making recommendations to improve detection and response capabilities against emerging threat vectors. - Minimize any disruption to the business and prevent data loss by swiftly containing security incidents, while also strengthening the resilience of the IT infrastructure against similar attacks. **Continuous security monitoring and management** - 24x7 real-time monitoring, detection and alert analysis of security events across cloud platforms and IT landscapes. **Incident Detection and response Operation** - Take charge of the entire process of containing, eliminating, and recovering from cloud and IT security incidents by following well-established guidelines. - Comprehensive post-incident analysis reports (detailing incident timeline, problems observed in response process, steps to enhance future response capabilities) **Digital Forensic Analysis** - Perform forensic data collection and analyze threats to ascertain the extent and root cause of incidents, enabling effective recovery and preventing future occurrences. - Maintain updated incident response plans. Digital Forensic data collection procedures in line with infrastructure and threat landscape changes. **Threat Intelligence Analysis** - Stay informed about the latest cyber threats through threat intelligence sources. Use threat intelligence to enhance proactive detection capability for any anomaly for any potential security incidents. - Regular updates on emerging cyber threats and their potential impact. **Cyber Security SLA monitoring** - Implement security operational metrics to assess the effectiveness of incident response and track the progress in restoring the integrity of infrastructure and business services following security events. - Operational report through metrics like threats detected, false positives, time to investigate & contain incidents, severity distribution. **Job Requirements**: **Qualification**: - Minimum bachelor’s degree in relevant field (Information Technology / Electrical Engineering /Telecommunication Engineering, Cybersecurity, Computer Science, Communications, Information Security or a related field). - 7+ years responsible professional experience in incident response - Proficiency in using forensic tools and analysist techniques. - Proficiency in security protocols, cryptography, authentication, authorization, security vulnerabilities, and remediation techniques. Familiarity with programming languages and frameworks is a plus. - Proficient in: LINUX, Windows Servers, Unix. - Ability to analyze and identify actions to be taken. - Excellent time management skills and ability to multi-task and priorities work - Working well under pressure - Good communication and influence skill - Strong understanding of all Information Security Domains - Sound understanding of businesses supported and security principles and policies. **Related Experience**: - Experience in developing and implementing security configurations for Infrastructure security to minimize vulnerabilities and attack surfaces. - Incident Response Experience. Practical experience in developing and executing incident response plans, including system/devices forensics and post-incident reporting. - Familiarity with integrating threat intelligence feeds into security solutions for proactive threat detection - Having excellent communication abilities for effectively explaining intricate security ideas to individuals who are not technically inclined as well as to leaders. - Regulatory Compliance Knowledge: Awareness and understanding of relevant data protection laws, regulations, and industry compliance standards. - Previous roles involved risk assessment, vulnerability management, and implementation of proactive security measures to mitigate identified risks. **Skills**: - Information System Management - Operational Management - Enterprise Risk Management - Software Engineering - IT Security Management - Telco Knowledge - Strong verbal and written communication skills (fluency in English is required) - Strong interpersonal and communication skills with a proven ability to collaborate with cross-functional teams, including IT, Security, Compliance, and Legal. - Strong analytical skills to identify security risks, assess their potential impact, and devise effective solutions. - Good communication skill both writing and verbally to be able to work together with all employees in the company. - Ability to convey message in clear, concise and simple way to various employees in the company. - Ability to deliver and de