IT Security - Tangerang - OCBC Indonesia

Deskripsi

We are seeking a talented individual to join our IT Security team. This role offers an exciting opportunity to work on-site in BSD and gain hands-on experience in maintaining the cyber security posture of our organization.

______________________________________________________________________________

Blue Team (L1 Shifting)

• Act as Incident first responder for a 24/7 SOC Operations
• Monitor security sensors and review logs to identify network anomalies or intrusions
• Perform initial analysis of security alerts
• Escalate security incidents using established policies and procedures in a timely manner

Blue Team (SOC Analyst - L2)

Detect, investigate & respond to cyber threats as part of the defensive (Blue) team. Own incident analysis, threat hunting, and remediation coordination.

Key Responsibilities:

• Analyze & triage high-fidelity alerts (SIEM/EDR/IDS)
• Conduct deep-dive investigations using logs, network traffic, and endpoint data
• Hunt for hidden threats using MITRE ATT&CK & threat intel
• Contain incidents & coordinate remediation with IT/ops
• Tune detection rules to reduce false positives
• Document incidents & contribute to reports
• Mentor L1 analysts; solve the complex cases

Minimum Qualifications

• Bachelor's degree in Cyber Security, Computer Science, Information Technology, or related field.
• Have 5+ years of working experience as SOC Analyst
• Proficient in SIEM (Splunk, Sentinel, QRadar), EDR (CrowdStrike, Defender)
• Solid grasp of TCP/IP, Windows/Linux, attack tactics (MITRE ATT&CK)
• Certs: CompTIA Security+, CySA+, or equivalent (preferred)
• Scripting (Python/PowerShell) a plus

______________________________________________________________________________

Yellow Team [CLOSED]

• As a Security Architect - Create and enhance security architecture
• Assessing complex IT environments and mapping the data flow of the through systems/applications and organizational functions.
• Architecting and designing cybersecurity solutions for multi-tenant managed security services environment
• Designing shared services / cloud infrastructure environment
• Acting as an expert in cyber defense activities, and building of substantial experience in design, implementation and validation phases for security monitoring projects (SIEM architecture design, IDSP deployment)
• Facilitating architecture sessions to develop enterprise security architecture that fits within clients existing environment

Green Team (Security Compliance) [CLOSED]

• Conduct Risk Assessments: Regularly evaluate network security measures and conduct vulnerability assessments to identify weaknesses
• Documentation and Reporting: Maintain documentation of network security policies, procedures, and incidents, providing detailed reports to management
• Conduct Security Awareness

Red Team [CLOSED]

• Deliver Red Team Exercises
• Conduct state-of-the-art penetration testing against web applications, network infrastructures, user workstations, network appliances and other devices and technologies.
• Manual and automated security testing of Web applications, APIs, and Mobile Applications.
• Do code review
• Static and Dynamic testing (SAST & DAST) of thick applications
• Develop Proof-of-Concept (PoC) for the identified vulnerabilities.
• Provide remediation guidance to identified vulnerabilities.
• Develop and execute security testing project plans

______________________________________________________________________________

General Qualifications

• Bachelor's degree in Cyber Security, Computer Science, Information Technology, or related field.
• Strong interest in cybersecurity with a desire to learn and grow in the field.
• Familiarity with security tools such as SIEM, IDS/IPS, antivirus, and firewalls.
• Ability to work in a fast-paced environment and adapt to changing priorities.
• Excellent problem-solving and communication skills.
• Familiar with code review and any programming languages e.g Go, Java (for Red Team)*
• Available for shift work (for Blue Team L1)*
• Willing to work onsite in OCBC Space (BSD City, Tangerang)

Preferred Qualifications:

• Relevant certifications such as CompTIA Security+, CEH, or CISSP.
• Experience with incident response and security operations.
• Understanding of industry compliance standards (e.g., PCI DSS, HIPAA, GDPR).
• Knowledge of scripting languages (e.g., Python, PowerShell) for automation.

______________________________________________________________________________

Join our dynamic team and take the first step towards a rewarding career in IT security. If you are ready to embrace new challenges and contribute to cyber-safeguarding our organization, apply now

*Only shortlisted candidates will be contacted.