security operation center analyst

Regular on-site 8x5 (beside national holiday)

• Follow advanced actions to investigate possible security incidents or perform incident response actions, including

escalating to othe supportgroups

• Ensure proper functioning of systems in the Security Operations Centre.

• Enhance and Build Cyber threat detection use cases and assist in analyzing & reducing false positive

• Execute daily ad hoc tasks or lead projects as needed

• Conduct thorough analysis of security incidents escalated from the L1 SOC Analyst team

• Utilize advanced security tools and techniques to identify the root cause of security issues

• Coordinate and execute incident response plans to contain, eradicate, and recover from security breaches

• Support the development and enhancement of SOC incident response capabilities

• Perform threat hunting activitles to proactively identify and mitigate potential threats

• Collaborate with other security teams (e.g., Incident Response, Vulnerability Management) to ensure effective remediation of security incidents

• Develop and maintain playbooks, runbooks, and other documentation to guide the incident response process

• Provide guidance and mentorship to the L1 SOC Analyst team

• Participate in the continuous improvement of the organizations security monitoring and incident response capabilities

• Minimum Qualifications: Minimum 2 years experience in a SOC or security operations role

  • Common knowledge on TCP/IP, OSI Layer, routing switching and IP addressing
  • Understanding basic security concept, common attach vectors and technique
  • Demonstrated expertise in security monitoring, incident response, and threat hunting
  • Proficiency in the use of security tools and platforms (e.g., SIEM, threat intelligence, endpoint detection)
  • Familiar with SIEM tools (QRadar)
  • Strong analytical and problem-solving skills with the ability to think critically
  • Excellent communication and collaboration skills to work effectively with cross-functional teams
  • Fine-tuning usecase and playbook
  • Have certification preferred (CEH, Cysa, CHFI, or related)

PGI Data is a boutique house providing Digital Transformation through end-to-end data solutions with its presence in Singapore & Indonesia. We believe in a holistic approach to support business decisions and build a top-quality and cost-effective strategy for businesses to operate successfully.

Information :

• Company : PGI Data
• Position : security operation center analyst
• Location : Jakarta
• Country : ID