Lead Security Analyst

Our Exciting Opportunity

We are looking for a Lead Security Analyst. The successful candidate should have advanced domain knowledge on information security and act as a point of contact for SOC L1 teams to deliver the security services effectively. This position will also be responsible for supporting security incident management, including coordinating all cybersecurity-related investigations and incident response in partnership with the respective stakeholders within Ericsson and/or customer organization and/or 3rd Party Providers. The professional will manage and work alongside a highly skilled, diverse team, ensuring that the information assets we are responsible for protecting are secured and adhere to customer policy and national security requirements.

You Will

• Assist in the real-time (24x7x365) security event monitoring.
• Perform quick analysis of attacks and threats based on real-time monitoring and follow the predefined process to address the associated risks.
• Assist the Security Technical Authority team (local and remote) to respond to and resolve security incidents effectively.
• Manage security incidents and escalations appropriately.
• Contribute towards continuous process improvements by providing input on the current processes and possible improvement opportunities.
• Ensure vulnerability and compliance scans, monitor results, and distribute reports timely.
• Perform After Actions Reviews and participate in Root Cause Analysis.
• Perform periodic reporting and when applicable, present to management.
• Effectively manage activities for Managed Security Services with respect to the SOC L1 Team, securing the operational processes required, delivery of required deliverables according to the Working Level Agreement (WLA) or project specifications, company and industry standards and guidelines, and specific KPIs.
• Manage the resources to plan, estimate and carry out the required activities to meet time and quality targets in accordance with company standards.
• Support the SOC for out-of-hours incidents and issues as needed.
• Ensure that resources are made available to undertake the agreed responsibilities and that they are properly utilized and accounted for.
• Act as an effective member of the Unit’s Extended Managed Services Leadership Team.
• Track all security incidents, SLAs & KPIs, providing appropriate escalation and taking action to resolve deviations and seek continuous improvement.
• Accountable for maintenance of technical and procedural documentation, ensuring it is up to date, complete, and accessible to all team members and management.
• Develop and maintain a high-performance culture, ensuring appropriate levels of competence and motivation within the department, and ensuring timely and high-quality delivery.
• Facilitate job rotation and knowledge sharing, making sure these actions support the team’s efficiency and development, and deliver on-the-job training/coaching for team members when necessary.
• Assist Incident Manager during major & critical incidents.
• Assist in the identification and pursuit of business opportunities that expand the solution capabilities.
• Handle escalations both within the team and from the customer side.
• Develop and report business-relevant metrics to measure the efficiency and effectiveness of the SOC Level 1 deliveries.

The Skills You Bring

Qualifications: • B. Eng/ B.Tech. in Telecommunication/ Network Security/ Cyber Security/IT Industry experience: • 3 - 5 years in Information/Network Security/Cyber Security/IT Key competencies: • CISSP, CISM, and ITIL certifications will be an advantage. • Very good knowledge and understanding of Managed Services delivery model and its processes, with special focus on Managed Security Services. • Basic domain knowledge on information security, security control frameworks, and Information Technology. • Experience with the interpretation of quality indicators to detect weaknesses and implement corrective action. • Proactive approach to minimize or eliminate the business-critical impacts. • End user orientation/customer orientation with excellent understanding of service providers/operators’ business requirements. • Basic knowledge of a Security Incident and Event Management System (SIEM), such as McAfee, Splunk, QRadar, Sentinel, etc. • Basic knowledge of a vulnerability scanning system such as Nessus, Tenable, Tripwire, etc. • Knowledge of both Linux-based and MS Windows-based systems with technical understanding and aptitude for analytical problem-solving, knowledge of IP networking. Non-technical competencies: • Language: Fluent in written and spoken English. Additional language skills are a plus. • Excellent communication/presentation skills including the ability to translate technical/security issues to business users. • Results oriented with good skills in leading and motivating people and conscious of responsibility. • A thorough and methodical approach to work; strong management of Processes. • Highly developed skills in knowledge sharing by actively contributing knowledge, experiences, and skills to create a learning culture. • Analytical approach to problems and innovative. • Ability to cope in a fast-changing environment; flexible and responsive to changing work patterns, balance multiple and conflicting demands & work constructively under pressure. Why join Ericsson? At Ericsson, you´ll have an outstanding opportunity. The chance to use your skills and imagination to push the boundaries of what´s possible. To build solutions never seen before to some of the world’s toughest problems. You´ll be challenged, but you won’t be alone. You´ll be joining a team of diverse innovators, all driven to go beyond the status quo to craft what comes next. What happens once you apply? Click Here to find all you need to know about what our typical hiring process looks like. Encouraging a diverse and inclusive organization is core to our values at Ericsson, that's why we champion it in everything we do. We truly believe that by collaborating with people with different experiences we drive innovation, which is essential for our future growth. We encourage people from all backgrounds to apply and realize their full potential as part of our Ericsson team. Ericsson is proud to be an Equal Opportunity Employer. learn more. We are committed to providing reasonable accommodations to all individuals participating in the application and interview process. If you need assistance or to request an accommodation due to a disability please reach out to Contact us . We are proud to announce Ericsson Malaysia has been officially Great Place to Work Certified in 2024. Every year, more than 10,000 organizations from over 60 countries partner with the Great Place to Work Institute for assessment, benchmarking, and planning actions to strengthen their workplace culture and this Certification acknowledges our employees value their employee experience and our workplace culture. Primary country and city: Malaysia (MY) || Bandar Sunway Req ID: 758734#J-18808-Ljbffr