Cyber Security Engineer
PT Bumi Amartha Teknologi Mandiri
- Contract
- On-site • Tangerang Selatan
- Negotiable
No Sign Up Required!
Job Description
- Design, deploy, and fine-tune SIEM solutions such as IBM QRadar, Splunk, Wazuh, ArcSight, and Elastic SIEM.
- Manage log ingestion pipelines, develop correlation rules, and continuously optimize alerting mechanisms.
- Lead and coordinate incident response activities based on industry frameworks (MITRE ATT&CK, NIST IR, Cyber Kill Chain).
- Integrate and operationalize threat intelligence feeds to enhance detection and response capabilities.
- Conduct threat hunting to identify and mitigate advanced persistent threats.
- Develop automation workflows using Python, PowerShell, or Bash to streamline security operations.
- Operate and manage SOAR platforms such as Cortex XSOAR, Splunk Phantom, or IBM Resilient.
- Perform digital forensics, memory analysis, and root cause investigation of complex security incidents.
- Collaborate with IT and SOC teams to implement effective mitigation strategies and security improvements.
- Create and maintain comprehensive technical documentation, playbooks, and reports.
- Mentor and provide guidance to Tier 1 and Tier 2 SOC Analysts.
- Stay current with emerging security trends, threats, and technologies through continuous learning.
Requirements
- Bachelor's degree of Computer Science or related field
- +4 years of experience in SOC with a focus on SIEM Engineering and Incident Response.
- Expertise in SIEM solutions (IBM QRadar, Splunk, Wazuh, ArcSight, Elastic SIEM, etc.).
- Experience in log ingestion management, correlation rule development, and SIEM fine-tuning.
- Strong knowledge of threat intelligence integration and threat hunting.
- Proficiency in Python, PowerShell, or Bash for automation & scripting.
- Familiarity with MITRE ATT&CK, Cyber Kill Chain, and NIST Incident Response Framework.
- Hands-on experience with SOAR platforms (Cortex XSOAR, Splunk Phantom, IBM Resilient).
- Experience in digital forensics and memory analysis.
- Strong analytical and troubleshooting skills for security incidents and SIEM optimization.
- Ability to develop effective mitigation strategies for advanced cyber threats.
- Excellent communication and collaboration skills with SOC teams and IT staff.
- Ability to train and mentor SOC Analysts (Tier 1 & Tier 2).
- Strong technical documentation skills.
- Preferred certifications: GCIA, GSOC, GCIH, Splunk Architect, IBM QRadar, CISSP, CEH.
- Commitment to continuous learning and staying updated on cybersecurity trends.
Tips Menjaga Diri
Perusahaan dan Lowongan di Dealls tidak meminta data pribadi, informasi rekening, atau pungutan ketika melamar. Hindari juga lowongan Google Form / Grup Telegram tanpa keabsahan yang jelas.
Bumi Amartha Teknologi Mandiri or “AMARTEK” was established to provide information technology solutions. Our mission from the very first day has been to cultivate professional relationships with our clients to provide effective and reliable information technology solutions for their needs. The team at "AMARTEK" is equipped with a highly developed skillset developed over decades of experience not only in information technology but also in business processes across a range of industry sectors. This business experience makes us uniquely positioned to offer solutions promising greater operational efficiency, productivity gains and cost savings for each of our clients, regardless of their industry. As an established technology-intensive company, we pride ourselves on providing a comprehensive suite of solutions comprising of Infrastructure Consultancy, on/offsite services, Custom software and web development, Talent Augmentation, and enterprise architecture consulting. Our team consistently delivers state-of-the-art solutions in various areas including, but not limited to: integrated business solutions, system applications, product development and professional services. At "AMARTEK", we guarantee rapid, reliable and robust information technology solutions that work.
