Assistant Vice President, GT-TSS, Cyber Threat Intelligence MY (SOC Tier 3 Threat Hunting)

CIMB

CIMB Group is the leading ASEAN Universal Bank and home for all your personal and business financial needs. Know more about our group here.

Job Purpose
Threat Hunting provides a proactive and iterative function for finding deep, persistent threats that may not be detected by traditional security stacks. This role functions in a team, but often will work independently to provide a constant stream of information to meet analyst cyber security requirements.

Key Responsibilities

1. Actively develop hunts, translate them into an iterative process, and deploy them in numerous EDR solutions.
2. Develop and mature new and existing solutions for threat hunting detection capabilities.
3. Fully document and communicate findings to an array of audiences which includes both technical and executive teams.
4. Support the investigation and contribution to large and small scale computer security breaches.
5. Characterize suspicious binaries and be able identify traits, C2, and develop network and host-based IOCs.
6. Identify potential malicious activity from memory dumps, logs, and packet captures.
7. Collaborate with Business Partners in Risk & Fraud on cases, providing technical investigative capabilities.
8. Through review and analysis of cyber threats, provide both internal & external parties key information to respond to threat.
9. Work with our Threat Intelligence team to develop IOCs for specific cyber threat actors or groups and to understand their tactics, techniques and procedures.
10. Monitor and analyze cybercrime threat reports for CIMB or APT groups to proactively create IOCs for Threat Hunting.
11. Collaborate with other cyber Threat Hunters based on developed SME area.
12. Collaborate with Cybersecurity and Incident Response team to provide targeted Threat hunting reports for ongoing engagements based on work performed on the client enterprise.
13. Use a wide variety of Threat Intelligence tools and websites, including the dark web.
14. Provide customized reports and research for cybersecurity services clients.
15. Provide targeted and actionable Threat Hunting reports for Group Technology.

Job Specification

Qualifications
(Basic Degree/Diploma etc)
Bachelor's Degree or Professional Qualification in the relevant discipline (IT / Computer Science).
Professional Qualification and/or Regulatory, Licensing requirements: Security certifications e.g. CISSP, EC-Council, SANS, etc are preferred. Network certifications e.g. CCNA, CCNP, etc are added advantages.

Relevant Work Experience: 6++ years of experience in IT security, preferably in IT/Cyber security monitoring, incident response, threat intelligence analysis role of a banking environment.

Required Competencies and Skills
Technical/Functional skills:

1. 4+ years of work experience in one or more of the following roles: SOC Analyst, Cyber Threat Hunter, Cyber Crime investigations, Cyber Threat Analysis, Cyber Threat Campaign Tracking.
2. Understanding of common operating systems and IT Infrastructure such as Windows, Unix/Linux, Active Directory, firewalls, proxies, etc.
3. Familiarity with automation concepts and proficiency in scripting languages such as Python, Perl, JavaScript, Powershell, etc.
4. Strong analytical skills and critical thinking skills.
5. Effective communication skills (both written and verbal).
6. Strong organization, prioritization, and rationalization skills.

Personal skills (Soft Competencies [Core/Leadership]):

1. Highly results-oriented and can work independently.
2. Ability to build relationships and interact effectively with internal and external parties.
3. Ability to plan, organize and prioritize tasks.
4. Ability to work effectively as a team.
5. Good analytical, technical, written and verbal communication skills.

#LI-AZ1

With operations that span 15 different markets across the region, the opportunity to expand your experience, test your capabilities, and exhibit your resilience is ample. #teamCIMB is always keen to welcome the ones who are ready to make that very special difference – for themselves and the bank.