Security Analytics Specialist

Division/Department: Enterprise Data Management, Information Security
Job Location: True Digital Park, Sukhumvit Road, Phra Khanong, Bangkok. THAILAND Assistant Director – Enterprise Data
Report to: Management & Security Analytics

Job Purpose:

To perform data aggregation and creation of cyber risk use cases captured from various cyber data sources, e.g. network sensors, system monitoring tools, audit logs, etc., into SIEM platform to provide notification of cyber activities. The job role also includes design, development, operations and maintenance of the Information Security Department’s data and analytic solutions which consist of reporting database, data analytic platform and web portal.
Remark: SIEM = Security Information and Event Management, SOAR = Security Orchestration, Automation and Response, SOC = Security Operation Center, EDM = Enterprise Data Management and FSD = Full Stack Developer.

Duties & Responsibilities:

SIEM data aggregation and cyber risk use cases
 Participate with SOC Lead to ...
 understand the enterprise cyber information and related system environments,
 specify the data requirements, e.g. source systems, file format, metadata etc. for data ingestion
into SIEM and,
 define cyber risk use cases.
 Coordinate with IT Infra team to setup the environment for data pipeline
 Build and test data pipeline, data normalization and data aggregation into SIEM
 Build and test cyber risk use cases on SIEM as request by the SOC Lead
Information Security reporting system
 Participate with SOC and EDM Leads to understand requirements for report / dashboard
 Specify data requirements and collaborate a cross-functional team, e.g. data provider, vendor,
user, etc., to agree on the process for collecting the data and delivering the report / dashboard
 Develop, administrate and maintain the reporting databases
 Build, test and maintain the reports / dashboards
 Collaborate with the FSD for maintaining the reporting web portal
 Provide the reporting web portal user training and support
 Perform other data-and-reporting related assignments given

Required Qualifications:

 Bachelor’s Degree in Information Security, Computer Science, Statistics or relevant field
 A minimum of 3 years of progressive data engineer and / or data analytics experience
 Advanced level experience with databases using PostgreSQL, MongoDB or similar tools
 Advanced level experience with data analytics using Tableau, Google Data Studio or similar tools
 Advanced level experience with scripting automation using Python, ElasticSearch or similar tools
 Demonstrated ability to think strategically about business, product, and technical challenges while
implementing tactical solutions.
 Experience researching and evaluating available technologies and standards to meet requirements
 Strong communications, presentation and interpersonal skills
 Great attention to details and strong problem solving skills
 Organizational skills and analytical mind
 Intermediate level of English proficiency

Advantage Qualifications:

 Implementation experience with SIEM / SOAR, e.g. Splunk, Rapid7 or similar tools
 Knowledge of Identity and Access Management, SSO, SAML, OAUTH, MFA, and PKI/Certificate
 Knowledge of networking including Azure/AWS nuances and emerging technologies in the
Software Defined Networking space
 Familiarity with compliance of regulatory security standards (NIST, ISO, SOC, OWASP, CIS, SOX)
and frameworks
 Familiarity with compliance of Personal Data Protection Act and data management frameworks



Upload your CV
(.pdf / .word / .page : 15MB)

True Digital Group Co., Ltd.

True Digital Park, Griffin Building, 9-12 Fl, 101 Sukhumvit Rd,   Bangchak, Phra Khanong, Bangkok 10260, Thailand

Tel: +66 2-021-0200

@ True Digital Group Limited All rights reserved.

Get In Touch