Overview
Security Operations Centre Lead Jobs in Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia at bp
Title: Security Operations Centre Lead
Company: bp
Location: Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia
Job Family Group:IT&S Group
Job Description:At BP, we are playing to win!bp Technology is the home to some of bp’s brightest digital specialists who partner with the business to advance our strategy using leading technology for today and tomorrow.
Security Operations Center (SOC) is the front-line detection and response service that provides; monitoring, recognition and appropriate escalation of significant information security events to protect the confidentiality, integrity, and availability of the BP information technology enterprise for the BP Group and its people everywhere. We operate, 24x7x365.
TheSecurity Operations Centre Leadwill head our SOC and Automation Systems Security Operations (AS-SO) centralizeddigitalsecurity servicein Malaysiaby developing detailed operational process and procedures, developing team capability, driving process automation which in turn will allow the team to appropriately analyse, call out and assist in remediation of critical information security incidents.
Although primarily a Monday-Friday role, as team lead you will be available on call 7 days to support critical issues. This role will also involve 4 weeks of training in the UK upon commencement.About the Role:
Lead a designated team of SOC and AS-SO analysts, ensuring appropriate monitoring, response up to date processes and capability.
Support the bp SOC and ASSO teams drive day-to-day operations.
Lead technical investigations for security incidents and act as point of escalation for analysts
Coordinate process improvements/automation and drive implementation of new capabilities in coordination with other Digital Security teams.
Responsible for running security systems, including the Firewalls, Windows AD event logs, syslog, anti-virus, file integrity, and vulnerability scanners for security events.
Act as an ambassador for Digital Security by providing education and learning to the business.
Remain current on cyber security trends and intelligence (both open-source and commercial)
About You:
Demonstrated experience in a similar leadership role with a solid understanding of Security Operations, Incident Analysis, Incident Handling and vulnerability management, log analysis, intrusion detection and IT infrastructure management.
Deep technical understanding and experience handling Firewalls and Network infrastructures.
Understanding of the threat environment faced by multi-national corporations.
Dedication to developing knowledge of security technologies and products.
Experience with TCP/IP protocol suite, security architecture, and remote access security techniques and products desired.
Hands-on experience with SIEM technologies, IDS/IPS network and host based firewall technologies and anti-virus solutions
Demonstrable ability to think beyond the immediate situation and use critical thinking, context and judgment in the analysis of complex data sets and events. Actions will vary but most often will require development of a course of action or response to identified threats.
Ability to navigate crisis situations while maintaining a high degree of attention to detail.
Ability to quickly learn and adapt to new technologies and processes in a constantly evolving environment.
SANS Global Industrial Cyber Security Professional or completion of the ICS/Cert ICS Training is highly desirable but not mandatory.
Excellent written and oral communication skills and experience responding to customer requests including s…
