VP-Head of Security Command Center

Head Quarter - Jakarta

Senior Manager and Above

Permanent

IT, Operation

16 February 2024

• Continuously monitor and identify security events and incidents that arise from the organizations cloud/IT/Telco platforms, applications, servers, and endpoints.
• Analyzing and investigating these incidents, as well as providing a response. Responsible for leading the entire incident response process, including initial analysis and scoping, coordinating response actions with various IT, Telco and cloud teams, documenting forensic evidence, and making recommendations to improve detection and response capabilities against emerging threat vectors.
• Minimize any disruption to the business and prevent data loss by swiftly containing security incidents, while also strengthening the resilience of the IOH infrastructure against similar attacks.

Continuous security monitoring and management

• Ensure the continuous monitoring and examination of security risks within the organizations cloud environments, applications, and ICT infrastructure to promptly identify any malicious activities.
• 24x7 real-time monitoring, detection and alert analysis of security events across cloud platforms and ICT landscapes.

Incident Detection and response Operation

• Take charge of the entire process of containing, eliminating, and recovering from cloud and ICT security incidents by following well-established guidelines.
• Comprehensive post-incident analysis reports (detailing incident timeline, problems observed in response process, steps to enhance future response capabilities)

Digital Forensic Analysis

• Perform forensic data collection and analyze threats to ascertain the extent and root cause of incidents, enabling effective recovery and preventing future occurrences.
• Maintain updated incident response plans. Forensic data collection procedures in line with infrastructure and threat landscape changes.

Threat Intelligence Analysis

• Stay informed about the latest cyber threats through threat intelligence sources. Use threat intelligence to enhance proactive detection capability for any anomaly for any potential security incidents.
• Regular updates on emerging cyber threats and their potential impact.

Cyber Security SLA monitoring

• Implement security operational metrics to assess the effectiveness of incident response and track the progress in restoring the integrity of infrastructure and business services following security events.
• Operational report through metrics like threats detected, false positives, time to investigate & contain incidents, severity distribution.

Qualification:

• Minimum bachelor’s degree in relevant field (Information Technology / Electrical Engineering /Telecommunication Engineering, Cybersecurity, Computer Science, Communications, Information Security or a related field).
• 10+ years responsible professional experience in incident response
• Proficiency in using forensic tools and analysist techniques.
• Strong knowledge of Application Security. Have in-depth understanding related to application security concepts, principles, and best practices.
• Proficiency in security protocols, cryptography, authentication, authorization, security vulnerabilities, and remediation techniques. Familiarity with programming languages and frameworks is a plus.
• Proficient in: LINUX, Windows Servers, Unix.
• Ability to analyze and identify actions to be taken.
• Excellent time management skills and ability to multi-task and priorities work
• Working well under pressure
• Good communication and influence skill
• Strong understanding of all Information Security Domains
• Sound understanding of businesses supported and security principles and policies.
• Knowledge of network, system, and application monitoring technologies

Related Experience:

• Demonstrated experience in information security and proficiency in configuring and managing security technologies such as firewalls, IDS/IPS, proxy, email-GW, AV for Servers, APT
• Experience in developing and implementing security configurations for Infrastructure security to minimize vulnerabilities and attack surfaces.
• Incident Response Experience. Practical experience in developing and executing incident response plans, including system/devices forensics and post-incident reporting.
• Familiarity with integrating threat intelligence feeds into security solutions for proactive threat detection
• Having excellent communication abilities for effectively explaining intricate security ideas to individuals who are not technically inclined as well as to leaders.
• Regulatory Compliance Knowledge: Awareness and understanding of relevant data protection laws, regulations, and industry compliance standards.
• Previous roles involved risk assessment, vulnerability management, and implementation of proactive security measures to mitigate identified risks.

Skills:

• Information System Management
• Operational Management
• Enterprise Risk Management
• Software Engineering
• ICT Security Management
• Telco Knowledge
• Strong verbal and written communication skills (fluency in English is required)
• Strong interpersonal and communication skills with a proven ability to collaborate with cross-functional teams, including IT, Security, Compliance, and Legal.
• Strong analytical skills to identify security risks, assess their potential impact, and devise effective solutions.
• Good communication skills both writing and verbally to be able to work together with all employees in the company.
• Ability to convey message in clear, concise and simple way to various employees in the company.
• Ability to deliver and develop presentation in front of different audience and answering their questions.
• Have integrity, confidentiality, and independence.
• Collaboration and Teamwork: Ability to collaborate with cross-functional teams, especially with development and IT teams, to integrate security into the software development life cycle.
• Project Management: Project management skills to plan, execute, and monitor security initiatives effectively.