Save Job Back to Search Job Description Summary Similar Jobs Own end-to-end cybersecurity incident response Drive real impact on business risk About Our Client A prominent multilateral financial institution based in Asia, the organization focuses on supporting sustainable development and infrastructure investment across its member countries. We are currently looking for a Cybersecurity Operations & Incident Response Consultant to support the institution's Information Security team, focusing on security event monitoring, threat detection, and incident response activities.***Contractor形式合作,长期稳定,1年1签 Job Description 1. Cybersecurity Operations:Perform daily real time monitoring review and analysis of cybersecurity alerts/signals from multiple sources.Triage security incidents including social engineering attacks, malware, hacking, unauthorized access, data breach, business email compromise etc.Ensure incident documentation and handling is completed accurately within the case management system.Refine current use cases implemented on the security stack to reduce/minimize false positives.Create and maintain corresponding cybersecurity incident handling booksSupport the improvement of related cybersecurity operations technologies2. Digital Forensics and Incident Response:Act as a first point of contact for cybersecurity incidents escalated by the Managed Security Services vendor and take responsibility end-to-end for incident investigation and response activitiesConduct forensic analysis to determine cause and extent of breach (where applicable)Work together with various IT and business stakeholders to restore business operations with minimal impact efficiently.Recommend remediation/recovery plansPrepare timely, detailed and accurate incident report update3. Reporting:Participating in the development, editing and reviewing various IT Security reports such as weekly and monthly security reports, business supporting reports, regular cybersecurity reports, threat alerts etc.Provide post-incident reports for management and stakeholders encompassing easy to understand details on risk and impact, containment, remediation and threat actors etc.4. Other agreed cybersecurity related assignmentPerforms other duties and responsibilities as assigned or required. The Successful Applicant REQUIRED QUALIFICATION AND EXPERIENCEProven domain expertise in cyber defense with intensive hands-on experience.Knowledge of security protection for digital workspace, hybrid cloud and business applications such Microsoft 365, Azure, AWS etc.Knowledge of security and monitoring products such as firewall, EDR, IDS/IPS, Sandbox, Anti-Malware, SIEM, DLP, etc.Familiar with popular operating systems such as Windows, Linux, macOS, etc.Bachelor's degree or higher in Computer Science, Information Technology, Computer Programming, Information Security, etc. Equivalent combination of education and experience is acceptable.Familiar with programming or scripting languages such as Python, Power Shell, Unix Shell, SQL etc. is a plus.At least three (3) years' experience in cyber security operations, digital forensics and incident response and/or cyber security engineering.Excellent problem-solving and analytical skills, with the ability to quickly identify security issues and propose security solutions.Self-starter with the ability to work both independently and as a team player.Must be able to write thorough, concise, and user-friendly documentation in English.Strong interpersonal communication skills in English, both verbal and written. What's on Offer Long-term role starts from 1-year contractGlobal exposureReal incident ownershipCritical decision-making Contact Hao Zheng Quote job ref JN-062026-7029463 Phone number +86 10 5969 0622 Job summary Function Technology Specialisation Security What is your area of specialisation? Financial Services Location Beijing Contract type Temporary Consultant name Hao Zheng Consultant phone +86 10 5969 0622 Job Reference JN-062026-7029463