About the job
ResponsibilitiesDesign, develop, and maintain security and technology platforms, systems, and servicesensuring our service capabilities are operating sufficiently.
Lead initiatives to develop systems and tools to automate security within our Platform, Cloud services and platform services deployed on premise at our clients.
Understand product and technology roadmaps and assist in developing solutions that both align with the roadmaps and leverage opportunities from evolving and future technologies.
Translate complex domain and solution architectures into platform specific requirements anddesigns.
Manage expectations of key business stakeholders (including internal and external customers), drive change, and negotiate successful outcomes within complex environments.
Identify risks and issues in deploying system solutions and develop or recommend solutions to mitigate these risks and issues.
Develop and implement plans to ensure the system meets capacity, performance, and availability criteria.
Develop extensive knowledge of new and emerging systems, including leading industry (e.g.best of breed) and competitor solutions and contribute to the development and maintenanceof the corporate memory / database for the business and area of expertise.
Lead the technology onboarding and integration of new SOC clients into our service processesensuring the client is ready for SOC BAU.
Develop and maintain purple teaming methodology and framework and contribute to purpleteaming activities by performing offensive red hat activities as required.
Develop and maintain DevOps capabilities to aid in the automation requirements for our services ecosystem.
Skills & ExperienceKnowledge and skills:Excellent oral communication and presentation skills.
Comfortable dressing to make a professional impression whenever they represent Sekuro.
Previous experience managing short engagements and longer projects.
Able to confidently engage with both technical business and technology stakeholders.
Holds two or more contemporary GRC related certifications. Candidates actively studying toachieve a second certification will still be considered.
Experience:Minimum of 3-5 years of demonstrable applied experience in your GRC area of expertise.
6-10 years of experience in other relevant ICT and/or security domains.
Experience with common security standards and frameworks, with a specialist level ofexperience in one or more.
Experience with managing information/cyber security risks with a focus on managing businessimpacts.
Experience in writing professional reports to communicate complex problems and presentrecommendations for change.
What you bring with you:As an Engineer, you will innovate and engineer systems and tools that help maintain ourtechnology platform that enable our Managed Security Services and Security OperationsCentre.
You will partner and collaborate with a highly skilled, virtual group of technical resources todeliver solutions and platforms, ensuring any security concerns are addressed, while reducingfriction.
You will provide guidance and assist in making design decisions, perform risk assessments, and assess infrastructure & configuration for vulnerabilities and ensure our platform are up to date and functioning optimally.
Motivated, dynamic, hands-on and responsible mindset
Love of collaboration
Willingness to try new things.
Interest operating in a modern working environment.
Passion or strong interest for cyber security
Ability to advocate for Sekuro and what we seek to achieve.
Requirements added by the job poster• No need for visa sponsorship• Authorized to work in Philippines
About SekuroSekuro is a global cyber security leader. Over our journey we have helped many organisations of different sizes in improving their understanding of cyber security through uplifting their existing capability. We do this by reducing risk, building business resilience, and promoting continuous innovation.
Our Vision - To be the worlds most trusted security partner, enabling organisations to protect today and prepare for tomorrowOur Mission –We exist to secure organisations. Empowering them to thrive in a digital world.Our Values –We are braveWe raise the barWe tell it how it isWe own the outcomeWe care for all
Responsibilities:The ideal candidate will possess a minimum of three to five years of experience in security detection engineering and / or detection architecture.Demonstrated experience with detection as code concepts and the ability to lead a team developing these capabilities in languages such as SIGMA.Proven expertise in Splunk, LogScale and Cribl with a deep understanding of their operational aspects.Able to package Splunk / LogScale / Cribl add-ons to align custom log sources with a variety of different data taxonomies.Extensive knowledge and experience in threat research, including familiarity with various attack techniques and the ability to identify indicators of compromise (IOCs).Excellent written communication skills, with the ability to produce clear and concise security advisories and reports.Strong familiarity with the MITRE ATT&CK framework and its application in designing effective detection strategies.Proficiency in utilising other SIEM products, such as Microsoft Sentinel, Splunk, etc., is advantageous.Desirable: Familiarity with the SPEED (Security, Prevention, Education, Evaluation, Detection) use case framework and methodology for designing and developing detection use cases.Relevant industry certifications such as GCTI, GCIA, CISSP, or equivalent qualifications, which would be highly regarded.
What you bring with you:
Motivated, dynamic, hands-on, and responsible mindsetLove of collaboration and critical thinkingWillingness to try new thingsInterest operating in a modern working environment.Passion or strong interest for cyber securityAbility to advocate for Sekuro and what we seek to achieve.
ResponsibilitiesDesign, develop, and maintain security and technology platforms, systems, and servicesensuring our service capabilities are operating sufficiently.
Lead initiatives to develop systems and tools to automate security within our Platform, Cloud services and platform services deployed on premise at our clients.
Understand product and technology roadmaps and assist in developing solutions that both align with the roadmaps and leverage opportunities from evolving and future technologies.
Translate complex domain and solution architectures into platform specific requirements anddesigns.
Manage expectations of key business stakeholders (including internal and external customers), drive change, and negotiate successful outcomes within complex environments.
Identify risks and issues in deploying system solutions and develop or recommend solutions to mitigate these risks and issues.
Develop and implement plans to ensure the system meets capacity, performance, and availability criteria.
Develop extensive knowledge of new and emerging systems, including leading industry (e.g.best of breed) and competitor solutions and contribute to the development and maintenanceof the corporate memory / database for the business and area of expertise.
Lead the technology onboarding and integration of new SOC clients into our service processesensuring the client is ready for SOC BAU.
Develop and maintain purple teaming methodology and framework and contribute to purpleteaming activities by performing offensive red hat activities as required.
Develop and maintain DevOps capabilities to aid in the automation requirements for our services ecosystem.
Skills & ExperienceKnowledge and skills:Excellent oral communication and presentation skills.
Comfortable dressing to make a professional impression whenever they represent Sekuro.
Previous experience managing short engagements and longer projects.
Able to confidently engage with both technical business and technology stakeholders.
Holds two or more contemporary GRC related certifications. Candidates actively studying toachieve a second certification will still be considered.
Experience:Minimum of 3-5 years of demonstrable applied experience in your GRC area of expertise.
6-10 years of experience in other relevant ICT and/or security domains.
Experience with common security standards and frameworks, with a specialist level ofexperience in one or more.
Experience with managing information/cyber security risks with a focus on managing businessimpacts.
Experience in writing professional reports to communicate complex problems and presentrecommendations for change.
What you bring with you:As an Engineer, you will innovate and engineer systems and tools that help maintain ourtechnology platform that enable our Managed Security Services and Security OperationsCentre.
You will partner and collaborate with a highly skilled, virtual group of technical resources todeliver solutions and platforms, ensuring any security concerns are addressed, while reducingfriction.
You will provide guidance and assist in making design decisions, perform risk assessments, and assess infrastructure & configuration for vulnerabilities and ensure our platform are up to date and functioning optimally.
Motivated, dynamic, hands-on and responsible mindset
Love of collaboration
Willingness to try new things.
Interest operating in a modern working environment.
Passion or strong interest for cyber security
Ability to advocate for Sekuro and what we seek to achieve.
Reporting: MSS SOC Manager Location: Southeast Asia (SEA)
Overview
Sekuro is seeking a dedicated and experienced Mid-level Cyber Security Analyst to operate within our global virtual Security Operations Centre (SOC), a 24/7/365 operation. This role involves timely detection and response to security incidents. Conducting Exploratory Threat hunts, Research, and reporting. The ideal candidate is honest, motivated, and driven, with a solid background in, threat detection, investigation, threat hunting and Security research. You should be eager to learn, contribute to new processes and playbooks, and thrive in a dynamic, high-pressure environment.
Key Responsibilities• Monitoring & Triage: o Review and analyse alerts from SIEM platforms (e.g., Splunk, Logscale, Sentinel, or Elastic) in a timely manner.o Perform initial assessments and triage of security anomalies, escalating issues appropriately or investigating incidents using available resources.
• Incident Response & Threat Hunting: o Execute cloud incident response procedures, with strong working knowledge of AWS and Azure environments and service logs.o Conduct Proactive, Indicator and Exploratory threat hunting based on current threat intelligence and hypothesis development.o Perform incident response tasks to mitigate risks and limit potential damage.
• Process Improvement & Documentation: o Review and update detection rules, process documentation, and playbooks.o Collaborate with other teams to enhance understanding of customer environments and emerging threats.o Identify deficiencies in monitoring systems and propose improvements.
• Intelligence & Reporting: o Analyse regular intelligence briefs to stay updated on the evolving threat landscape.o Maintain and update dashboards, reports, and alerting mechanisms to ensure effective monitoring.o Contribute to continuous service improvements within the SOC.o Conduct
Skills and Experience • Technical Expertise: o Proven experience with SIEM platforms such as Splunk, Logscale, Sentinel, or Elastic.o Strong cloud incident response skills, specifically within AWS and Azure environments.o Prior experience in engineering, threat detection, and threat hunting.o Proficiency in scripting (e.g., Python, PowerShell, or similar languages) to automate tasks and analyse data.o Minimum of 2 years experience in a Cyber Security Operation Centre.
• Certifications (Preferred): o OSCP, PNPT, EJPT, BTL2, CDSA, or SANS GCIH.
• General Competencies: o Excellent analytical skills and attention to detail.o Ability to develop solutions to complex problems under pressure.o Understanding of best practices in network security, security operations, systems security, policy, and incident response.o Strong communication skills, both written and verbal.
• Education: o Tertiary education in information or cyber security and/or software development is highly desirable.
Why Join Us?
At Sekuro, you will work with cutting-edge security technologies in a collaborative environment where your expertise directly contributes to safeguarding critical infrastructures. We offer continuous professional development, certification support, and opportunities for career advancement within our growing SOC team.
