Cybersecurity Engineer (Bangkok)

freeC's Client

1/ Position Overview

We are seeking a skilled and proactive Cybersecurity Engineer to join our Blue Team. In this critical role, you will act as the frontline defender of our organization's digital infrastructure, monitoring for potential threats, detecting security incidents, and responding promptly to attacks. This role focuses on ensuring the resilience and security of our systems and networks against evolving cyber threats.

2/ Key Responsibilities

*Threat Monitoring

• Continuously monitor network activity, system logs, and security tools to identify suspicious behavior and potential intrusions.
• Maintain situational awareness by leveraging advanced monitoring tools and techniques.

*Incident Response

• Investigate security incidents by analyzing logs (App, Gateway, Infra), alerts, and other relevant data.
• Execute containment, eradication, and recovery actions to mitigate the impact of security breaches.
• Document and report incident details, findings, and lessons learned.

*Vulnerability Management

• Identify and prioritize vulnerabilities in systems and applications.
• Work with relevant teams to implement patches and mitigations to prevent exploitation.

*Security Configuration Management

• Ensure systems and applications are configured in alignment with security best practices.
• Conduct regular audits of system configurations to identify and address misconfigurations.

*SIEM Analysis

• Utilize Security Information and Event Management (SIEM) tools to collect, analyze, and correlate security data from various sources.
• Develop and refine detection rules to identify advanced threats.

*Threat Intelligence Gathering

• Stay updated on emerging cyber threats, trends, and tactics, techniques, and procedures (TTPs) used by threat actors.
• Use threat intelligence to proactively identify and address potential risks.

3/ Required Skills and Qualifications:

• Min 2-3+ years of experience as a CyberSecurity Engineer
• Strong understanding of network protocols and security technologies (e.g., firewalls, Cloudflare, endpoint security).
• Proficiency with log analysis, SIEM tools, and security event management platforms.
• Knowledge of threat actors and their TTPs to anticipate and respond effectively to attacks.
• Ability to analyze complex security incidents and respond efficiently.
• Strong troubleshooting skills to identify and address vulnerabilities and misconfigurations.
• Experience with scripting and automation tools (e.g., Python, PowerShell, Bash) for security-related tasks and processes.
• Ability to work closely with red teams and other security teams to improve the organization's overall security posture.

*Preferred Certifications:

• GIAC Certified Incident Handler (GCIH)
• Certified Ethical Hacker (CEH)
• CompTIA Security+
• Certified Information Systems Security Professional (CISSP) 

• Employee Support: Assistance with accommodation, living expenses, and work visa procurement for all staff.
• Home Visit Support: Financial assistance for employees to visit home fourth a year.
• Competitive Salary: A salary package that reflects your skills, experience, and contributions to the company.
• Essential Equipment: Provision of necessary work equipment, including a MacBook and iPhone.
• Development: Continuous development of hard and soft skills through work and professional training.
• Holiday Bonus: A holiday and New Year bonus to recognize your hard work and dedication.
• Inclusive Environment: A professional, dynamic, and inclusive workplace culture that fosters collaboration and innovation.
• Life experience: Enjoy the new culture, living environment in Thailand.