IT Security
OCBC Indonesia
Job Description
We are seeking a talented individual to join our IT Security team. This role offers an exciting opportunity to work on-site in BSD and gain hands-on experience in maintaining the cyber security posture of our organization.______________________________________________________________________________
Blue Team (L1 Shifting)Act as Incident first responder for a 24/7 SOC OperationsMonitor security sensors and review logs to identify network anomalies or intrusionsPerform initial analysis of security alertsEscalate security incidents using established policies and procedures in a timely manner
Blue Team (SOC Analyst - L2)Detect, investigate & respond to cyber threats as part of the defensive (Blue) team. Own incident analysis, threat hunting, and remediation coordination.
Key Responsibilities:Analyze & triage high-fidelity alerts (SIEM/EDR/IDS)Conduct deep-dive investigations using logs, network traffic, and endpoint dataHunt for hidden threats using MITRE ATT&CK & threat intelContain incidents & coordinate remediation with IT/opsTune detection rules to reduce false positivesDocument incidents & contribute to reportsMentor L1 analysts; solve the complex cases
Minimum QualificationsBachelor's degree in Cyber Security, Computer Science, Information Technology, or related field.Have 5+ years of working experience as SOC AnalystProficient in SIEM (Splunk, Sentinel, QRadar), EDR (CrowdStrike, Defender)Solid grasp of TCP/IP, Windows/Linux, attack tactics (MITRE ATT&CK)Certs: CompTIA Security+, CySA+, or equivalent (preferred)Scripting (Python/PowerShell) a plus
______________________________________________________________________________
Yellow Team [CLOSED]As a Security Architect - Create and enhance security architectureAssessing complex IT environments and mapping the data flow of the through systems/applications and organizational functions.Architecting and designing cybersecurity solutions for multi-tenant managed security services environmentDesigning shared services / cloud infrastructure environmentActing as an expert in cyber defense activities, and building of substantial experience in design, implementation and validation phases for security monitoring projects (SIEM architecture design, IDSP deployment)Facilitating architecture sessions to develop enterprise security architecture that fits within clients existing environment
Green Team (Security Compliance) [CLOSED]Conduct Risk Assessments: Regularly evaluate network security measures and conduct vulnerability assessments to identify weaknessesDocumentation and Reporting: Maintain documentation of network security policies, procedures, and incidents, providing detailed reports to managementConduct Security Awareness
Red Team [CLOSED]Deliver Red Team ExercisesConduct state-of-the-art penetration testing against web applications, network infrastructures, user workstations, network appliances and other devices and technologies.Manual and automated security testing of Web applications, APIs, and Mobile Applications.Do code reviewStatic and Dynamic testing (SAST & DAST) of thick applicationsDevelop Proof-of-Concept (PoC) for the identified vulnerabilities.Provide remediation guidance to identified vulnerabilities.Develop and execute security testing project plans
______________________________________________________________________________General QualificationsBachelor's degree in Cyber Security, Computer Science, Information Technology, or related field.Strong interest in cybersecurity with a desire to learn and grow in the field.Familiarity with security tools such as SIEM, IDS/IPS, antivirus, and firewalls.Ability to work in a fast-paced environment and adapt to changing priorities.Excellent problem-solving and communication skills.Familiar with code review and any programming languages e.g Go, Java (for Red Team)*Available for shift work (for Blue Team L1)*Willing to work onsite in OCBC Space (BSD City, Tangerang)
Preferred Qualifications:Relevant certifications such as CompTIA Security+, CEH, or CISSP.Experience with incident response and security operations.Understanding of industry compliance standards (e.g., PCI DSS, HIPAA, GDPR).Knowledge of scripting languages (e.g., Python, PowerShell) for automation.
______________________________________________________________________________
Join our dynamic team and take the first step towards a rewarding career in IT security. If you are ready to embrace new challenges and contribute to cyber-safeguarding our organization, apply now!
- Only shortlisted candidates will be contacted.