What Jobs are available for Security Operations in Malaysia?

At Roche you can show up as yourself, embraced for the unique qualities you bring. Our culture encourages personal expression, open dialogue, and genuine connections, where you are valued, accepted and respected for who you are, allowing you to thrive both personally and professionally. This is how we aim to prevent, stop and cure diseases and ensure everyone has access to healthcare today and for generations to come. Join Roche, where every voice matters.
**The Position**
Group Safety, Security, Health and Environment (SHE) at Roche is a people-focused, expert-driven organization that supports global operations by enabling patient outcomes without harming the planet. Operating through a role-based matrix of expert Chapters and outcome-driven Networks, Group SHE fosters collaboration and innovation to deliver sustainable, impactful solutions for both the business and the wider community.
**The Opportunity:**
As a Security Operations Specialist within Group SHE at Roche, you will support the execution of global strategies in security, emergency management, business continuity, and product crime across your region. Operating in a 24/7 "follow-the-sun" model, you will monitor threats, assist in incident response, and provide operational support to enhance resilience and safeguard Roche's assets.
+ Continuously assessing and mitigating regional risks by identifying security gaps and improvement opportunities.
+ Analyzing and connecting multiple data sources to link incidents, identify emerging threats, and analyze evolving trends.
+ Preparing and delivering reports on regional security risks, incidents, and mitigation efforts to Group SHE and stakeholders.
+ Providing operational and technical support, offering subject matter expertise and guidance to regional teams and business units.
+ Enhancing security awareness and preparedness through training programs and fostering stakeholder collaboration.
+ Participating in post-incident reviews to improve future preparedness.
+ Supporting the adoption of digital tools for better communication, coordination, and case support.
**Who You Are:**
+ Holding a Bachelor's degree or equivalent in a relevant field, with advanced studies or training in security or emergency services seen as an advantage
+ Bringing 4+ years of experience in global security, crisis management, or enterprise resilience in either the public or private sector is preferred
+ Certified or familiar with programs like CPP, PSP, or other professional designations in security or risk management are highly desirable
+ Proven experience implementing security, emergency management, BCM, and/or product crime strategies for large global organizations.
+ Strong analytical, crisis management, and project management skills; ability to work autonomously with minimal supervision.
+ Team player with excellent influencing skills and networking ability within a global matrix organization.
+ Fluent in English with additional language skills as an advantage
+ **This role has 2 positions available.**
**In exchange we provide you with:**
+ Development opportunities: Roche is rich in learning resources. We provide constant development opportunities, free language courses & trainings, the possibility of international assignments, internal position changes and the chance to shape your own career.
+ Excellent benefits & flexibility: competitive salary and cafeteria package, language allowance (if the position requires extra language), annual bonus, Private Medical Services, Employee Assistance Program, coaching / mentoring opportunity, buddy program, team buildings, holiday party. We create the opportunity for freedom in working, where your corporate and private life coexist in harmony.
+ A global inclusive community, where we learn from each other. At Roche, we cooperate, debate, make decisions, celebrate successes and have fun as a team. Our leadership is very focused on people, creating a strong, inclusive culture, so you always have the chance to share your opinion.
_Please read the Data Privacy Notice for further information about how we handle your personal data related to the recruitment process:_ _ we are**
A healthier future drives us to innovate. Together, more than 100'000 employees across the globe are dedicated to advance science, ensuring everyone has access to healthcare today and for generations to come. Our efforts result in more than 26 million people treated with our medicines and over 30 billion tests conducted using our Diagnostics products. We empower each other to explore new possibilities, foster creativity, and keep our ambitions high, so we can deliver life-changing healthcare solutions that make a global impact.
Let's build a healthier future, together.
**Roche is an Equal Opportunity Employer.**

Job ID
32567
**Security Operations Center Lead**
Regular
Lisbon, Portugal ( Bollate, Italy Barcelona, Spain ( Bangkok, Thailand Oldbury, United Kingdom of Great Britain and Northern Ireland ( Kingdom of Great Britain and Northern Ireland) Prague, Czechia Warsaw, Poland ( Bucharest, Romania Seremban, Malaysia ( My candidate profile
Syensqo is all about chemistry. We're not just referring to chemical reactions here, but also to the magic that occurs when the brightest minds get to work together. This is where our true strength lies. In you. In your future colleagues and in all your differences. And of course, in your ideas to improve lives while preserving our planet's beauty for the generations to come.
**We are looking for:**
+ Security Operations Center Lead
**We count on you for:**
+ Strategic Product Leadership:
+ Develop and implement the overall SOC & VOC strategy, aligning them with the organization's security needs and business service goals.
+ Create a strategic products roadmap, prioritizing initiatives based on their potential impact on security operations efficiency and security posture improvement.
+ Strategic planning:
+ Develop and implement security policies, standard operating procedures and incident response plans
+ Provide expertise in designing, implement and maintaining security measures for organization
+ Maintain a constant technological and threats watch to adapt to changes in security threats and technologies
+ Cross functional team collaboration:
+ Collaborate with cross functional teams to integrate and remediate security threats and vulnerabilities
+ Product Performance Monitoring:
+ Define and report key performance indicators (KPIs) for SOC & VOC services, monitoring their success in enhancing security operations
+ Use data analytics to generate insights into product usage, effectiveness, and areas for improvement.
+ Risk Management and Regulatory Compliance:
+ Ensure all implementation comply with relevant cybersecurity regulations and standards
+ Implement risk management strategies to mitigate potential security vulnerabilities within products.
**You can count on us for:**
+ Be part of and contribute to a once-in-a-lifetime change journey
+ Join a dynamic team that is going to tackle big bets
+ Have fun and work at a high pace
**You will bring:**
+ Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
+ Minimum of 8-10 years of experience in a similar role preferably in a multinational complex setting.
+ Experience with SIEM solutions such as Splunk, Sentinel, Chronicle
+ Experience with EDR solutions such as Crowdstrike, Sentinel, Microsoft Defender
+ Experience with SOAR solutions implementation
+ Proven track record of successfully designing and implementing Identity and Access management strategies for large user bases.
+ Experience in managing complex technology migrations and lifecycle management.
+ Project management skills to plan and execute cloud Identity-related projects, ensuring they are delivered on time and within budget
+ Certifications related to product management, cybersecurity (e.g., CISSP, CISM)
+ Agile or other project management methodologies experience is a plus
+ Fluent in English
+ Result orientation, influence & impact
+ Empowerment & accountability
+ Team spirit, building relationships, collective accountability
+ Strong leadership capability, executing as appropriate in the areas of responsibility
+ Excellent oral and written communication skills, including the ability to explain technology solutions in business terms, establish rapport and persuade others
**You will get:**
+ Competitive salary and benefits package
+ 16, or more, weeks of maternity/paternity and co-parenting leave, according to local regulations
+ Training platform for all employees
+ Free language courses (24 languages available)
+ Free well-being sessions (physical and psychological)
**Additional information:**
+ Smart working flexibility
+ Subbmit your application in English
About us
+ Syensqo is a science company developing groundbreaking solutions that enhance the way we live, work, travel and play. Inspired by the scientific councils which Ernest Solvay initiated in 1911, we bring great minds together to push the limits of science and innovation for the benefit of our customers, with a diverse, global team of more than 13,000 associates. Our solutions contribute to safer, cleaner, and more sustainable products found in homes, food and consumer goods, planes, cars, batteries, smart devices and health care applications. Our innovation power enables us to deliver on the ambition of a circular economy and explore breakthrough technologies that advance humanity.
+ At Syensqo, we seek to promote unity and not uniformity. We value the diversity that individuals bring and we invite you to consider a future with us, regardless of background, age, gender, national origin, ethnicity, religion, sexual orientation, ability or identity. We encourage individuals who may require any assistance or accommodations to let us know to ensure a seamless application experience. We are here to support you throughout the application journey and want to ensure all candidates are treated equally. If you are unsure whether you meet all the criteria or qualifications listed in the job description, we still encourage you to apply.
+ As you may already know, Syensqo is the newly established standalone company resulting from the recent spin-off of Solvay. While both organizations are in the process of finalizing the transition, some email communications related to your recruitment process may continue to come from Solvay.
#LI-FM1
#LI-Hybrid
#senior

At Roche you can show up as yourself, embraced for the unique qualities you bring. Our culture encourages personal expression, open dialogue, and genuine connections, where you are valued, accepted and respected for who you are, allowing you to thrive both personally and professionally. This is how we aim to prevent, stop and cure diseases and ensure everyone has access to healthcare today and for generations to come. Join Roche, where every voice matters.
**The Position**
Group Safety, Security, Health and Environment (SHE) at Roche is a people-focused, expert-driven organization that supports global operations by enabling patient outcomes without harming the planet. Operating through a role-based matrix of expert Chapters and outcome-driven Networks, Group SHE fosters collaboration and innovation to deliver sustainable, impactful solutions for both the business and the wider community.
**The Opportunity**
As a Senior Security Operations Specialist within Group SHE at Roche, you will play a critical role in implementing global strategies related to security, emergency management, business continuity, and product crime across your assigned region. Operating in a 24/7 "follow-the-sun" model, you will provide subject matter expertise to strengthen the organization's resilience and ensure preparedness for any operational disruptions.
+ Maintaining and implementing regional risk mitigation, preparedness, and recovery plans aligned with Group SHE standards.
+ Assessing and connecting multiple data sources to link incidents, identify emerging threats, and analyze evolving trends.
+ Acting as a key liaison between global teams and local stakeholders to integrate security, emergency management, business continuity, and product crime into strategic planning and operations.
+ Leading swift and coordinated responses to regional emergency, business continuity, and security incidents within a 24/7 follow-the-sun model.
+ Preparingand delivering detailed reports on regional security risks, incidents, and mitigation actions to Group SHE and stakeholders.
+ Conducting and contributing to post-incident reviews to provide insights and recommendations for continuous improvement.
+ Supporting the development and delivery of training programs to build local team capabilities on security, emergency management, business continuity, and product crime.
**Who you are:**
+ Holding a Master's degree or equivalent in a relevant field is preferred, with additional training in security, risk management, or emergency services considered a strong advantage
+ 7 + years of experience in global security management, crisis response, or related fields such as military, law enforcement, or enterprise resilience is preferred
+ Certified or experienced in professional programs such as CPP, PSP, or regional equivalents in security, business continuity, or investigations are highly desirable
+ Demonstrating a successful track record in leading security and resilience programs across large multinational organizations
+ Skilled at influencing without authority and collaborating effectively across global, cross-functional, and multicultural teams
+ Proactive, adaptable, and calm under pressure, with balance of strategic thinking and hands-on execution in high-stakes, 24/7 operational environments
+ Fluent in English with additional language skills as an advantage
In exchange we provide you with:
+ Development opportunities: Roche is rich in learning resources. We provide constant development opportunities, free language courses & trainings, the possibility of international assignments, internal position changes and the chance to shape your own career.
+ Excellent benefits & flexibility: competitive salary and cafeteria package, language allowance (if the position requires extra language), annual bonus, Private Medical Services, Employee Assistance Program, mentoring opportunity, buddy program, team buildings, holiday party.
+ A global inclusive community, where we learn from each other. At Roche, we cooperate, debate, make decisions, celebrate successes and have fun as a team. Our leadership is very focused on people, creating a strong, inclusive culture, so you always have the chance to share your opinion.
_Please read the Data Privacy Notice for further information about how we handle your personal data related to the recruitment process:_ _ we are**
A healthier future drives us to innovate. Together, more than 100'000 employees across the globe are dedicated to advance science, ensuring everyone has access to healthcare today and for generations to come. Our efforts result in more than 26 million people treated with our medicines and over 30 billion tests conducted using our Diagnostics products. We empower each other to explore new possibilities, foster creativity, and keep our ambitions high, so we can deliver life-changing healthcare solutions that make a global impact.
Let's build a healthier future, together.
**Roche is an Equal Opportunity Employer.**

In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day and we need you as a **Datacenter Security Operations Manager.**
As a Datacenter Security Operations Manager in CO+I Physical Security, you will be part of a global team dedicated to delivering the most trustworthy security program to protect the personnel, infrastructure, data, and confidential information foundational to the Microsoft Cloud. You will be accountable for physical security operations at datacenters and other related facilities within your applicable region and will collaborate with the vendor security guarding staff to meet collective security requirements and provide security capabilities, anticipate site specific insecurity and security disruption (e.g., life safety, business operations, reputation) and lead discussions on developing strategies for mitigating risks and responding to residual risks. You will communicate risk analysis findings and root cause analysis reports to internal and external stakeholders and leaders. This opportunity will allow you to accelerate your career growth, develop deeper physical security acumen and global security program management. The Datacenter Security Operations Manager must be located in the applicable region and will work from an agreed upon datacenter location.
Microsoft's Cloud Operations & Innovation (CO+I) is the engine that powers our cloud services. As a Datacenter Security Operations Manager you will perform a key role in delivering the core infrastructure and foundational technologies for Microsoft's online services including Bing, Office 365, Xbox, OneDrive, and the Microsoft Azure platform. As a group, CO+I is focused on the personal and professional development for all employees and offers trainings and growth opportunities including Career Rotation Programs, Diversity & Inclusion trainings and events, and professional certifications.
Our infrastructure is comprised of a large global portfolio of more than 200 datacenters in 32 countries and millions of servers. Our foundation is built upon and managed by a team of subject matter experts working to support services for more than 1 billion customers and 20 million businesses in over 90 countries worldwide.
With environmental sustainability and optimization at the forefront of our datacenter design and operations, we continue to grow and evolve as we meet the ever-changing business demands that hold Microsoft as a world-class cloud provider.
Do you want to empower billions across the world? Come and join us in CO+I and be at the forefront of the action!
**Responsibilities**
**Responsibilities:**
**Security Program Management**
+ Oversee the implementation of physical security policies and procedures at applicable datacenters, ensuring Microsoft's physical security vendor guard force has the resources and information to deliver physical security services that meet Microsoft and customer requirements to protect people, information, and critical infrastructure.
+ With minimal assistance, performs analysis to detect security threats, alerts, or risks and escalates to critical incident response team and/or external authorities, if necessary. With minimal assistance, implements security protocols to support the physical protection of company personnel and assets. With minimal assistance, delivers and maintains security programs in areas of responsibility.
+ Partner with datacenter operations, security systems and other Microsoft stakeholders to ensure secure and continuous operations while maintaining a One Team, One Microsoft environment.
+ Continuously improve the efficiency and maturity of the overall physical security program at Microsoft datacenters, seeking data and recommending strategies and ideas to reduce churn, optimizing resources including budget management and forecasting, implement creative solutions to problems, scale, automate and simplify process whenever possible.
**Security Leadership**
+ Receive escalations/notifications of physical security and business impacting events and appropriately triage, ensure that regional leadership is kept informed through regular communication as appropriate and that the necessary personnel for managing an incident respond effectively.
+ On-call 24x7x365 and will travel periodically as planned or unplanned within or outside of assigned city/metropolitan area.
+ With minimal supervision, contributes to collaborative efforts with stakeholders to support security capabilities. Supports risk identification for datacenter insecurity and security disruption (e.g., life safety, business operations, reputation) to assist decision-makers in mitigating risks and responding to residual risks. With minimal supervision, summarizes and reports risk analysis to internal stakeholders and leaders.
**Other**
+ Embody our culture and values .
**Qualifications**
**Required Qualifications:**
+ 4+ years' experience in Security Program or Program Management or related field
**Background Check Requirements:**
Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings:
+ Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
_While not required, we look for the following_ **Preferred Qualifications:**
+ Bachelor's Degree in Business Risks or related field AND 8+ years' experience in Security Program or Program Management
+ OR equivalent experience.
+ Industry security certifications such as CPP, PSP, or other relevant security certification
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations ( .

**Cybersecurity Incident Response Analyst, L2**
The Dell Security & Resiliency organization manages the security risk across all aspects of Dell's business. You will have an excellent opportunity to influence the security culture at Dell and further develop your career.
**Join us as a** **Cybersecurity Incident Response Analyst, L2** **on our** **Cybersecurity Incident Response** **team in** **Cyberjaya, Malaysia** **to do the best work of your career and make a profound social impact. **
**What you'll achieve**
As a Cyber Incident Response Analyst L2, this role is responsible for investigating and reporting of security incidents supporting all Dell Business Units.  This role requires experience in all phases of Cybersecurity incident response including preparation, analysis, notification, response, recovery, and post-mortem activities.  This role interacts with all levels of the organization and is viewed as a subject matter expert on all Incident Response activities.   
The focus of the role is primarily responding to security incidents, managing and consistently maturing the security incident response process to meet the needs of Dell, and building the Global Incident Response Team's technical investigative capabilities (process & technology).  
**You will:**
+ Serve as a global escalation point and work with the Incident Response Team members on tickets to manage / prioritize queue assignments 
+ Perform technical cyber security investigations on security incidents, root cause analysis, recommend and mitigate the effects caused by an incident  
+ Participate in After Actions Reports creation based on Lessons Learned from critical cybersecurity incidents 
+ Investigate/analyze large and unstructured data sets, malicious artifacts, and EDR tools to identify trends and anomalies indicative of potential threats  
+ Liaison with stakeholders and internal CSIRT teams to serve as a Cyber Security Champion to help implement best security practices and mature the Security Incident Response process to meet the needs of the business. 
**Take the first step towards your dream career**
**Every Dell Technologies team member brings something unique to the table. Here's what we are looking for with this role:**
**Essential Requirements**
+ 3-5 years hands-on experience with focus in areas such as systems, network, application, and information security
+ Exceptional ability to conduct cybersecurity investigations, analyze and distill relevant findings and determine root cause  
+ Strong knowledge of security and web technologies such as SIEM, full packet capture, Firewall/NGFW, IDS/IPS, EDR, DLP, UEBA, networking protocols, Microsoft Windows and Linux/Unix platforms and tools with related experience in corporate infrastructures  
+ Strong technical experience and familiarity of various types and techniques of cyber-attacks, with the incident response and threat hunting lifecycles
+ Excellent analytical thinking, time management and coordination skills and excellent command in English (both written and verbal)
**Desirable Requirements**
+ Industry recognized certification (CISSP, SANS GCIH, GCIA, GNFA, GREM, etc.)  
+ Knowledge and experience in: Digital Forensics, reverse malware tools, and scripting languages
**Who we are**
We believe that each of us has the power to make an impact. That's why we put our team members at the center of everything we do. If you're looking for an opportunity to grow your career with some of the best minds and most advanced tech in the industry, we're looking for you.
Dell Technologies is a unique family of businesses that helps individuals and organizations transform how they work, live and play. Join us to build a future that works for everyone because Progress Takes All of Us.
Dell Technologies is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. Read the full Equal Employment Opportunity Policy here ( .
**Job ID:** R

**Make an impact with NTT DATA**
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion - it's a place where you can grow, belong and thrive.
**Key Responsibilities:**
+ Lead and manage complex security incidents, acting as a key contact for stakeholders.
+ Perform deep analysis of security alerts to identify, mitigate, and remediate threats.
+ Conduct forensic investigations on compromised hosts, networks, and cloud environments.
+ Proactively hunt for adversarial activity and anomalous behaviors across large datasets.
+ Analyze malware samples (basic level) to determine functionality, impact, and mitigation strategies.
+ Develop and refine detection rules, improving alert fidelity and response workflows.
+ Contribute to threat intelligence gathering, analyzing attack patterns, and enhancing defensive strategies.
+ Participate in red teaming or penetration testing activities to identify and remediate vulnerabilities.
+ Provide strategic recommendations for improving the organization's security posture.
+ Create detailed incident reports, threat intelligence assessments, and executive summaries.
+ Mentor and provide guidance to junior analysts, fostering continuous improvement in IR methodologies.
**Knowledge and Attributes:**
+ Ability to communicate and work across different cultures and social groups.
+ Ability to plan activities and projects well in advance, and takes into account possible changing circumstances.
+ Ability to maintain a positive outlook at work.
+ Ability to work well in a pressurized environment.
+ Ability to work hard and put in longer hours when it is necessary.
+ Ability to apply active listening techniques such as paraphrasing the message to confirm understanding, probing for further relevant information, and refraining from interrupting.
+ Ability to adapt to changing circumstances.
+ Ability to place clients at the forefront of all interactions, understanding their requirements, and creating a positive client experience throughout the total client journey.
**Academic Qualifications and Certifications:**
+ Bachelor's or Master's degree in Computer Science, Cybersecurity, or a related field.
+ Minimum of 5 years of experience in cybersecurity, with at least 2 years in incident response, threat hunting, or forensic analysis.
**Required experience:**
+ Extensive experience responding to targeted attacks from APT groups, cybercriminals, and nation-state actors.
+ Strong forensic analysis skills across Windows, Linux, and macOS systems.
+ Expertise in network forensics, traffic analysis, and packet inspection (Wireshark, Zeek).
+ Proficiency in SIEM platforms (Splunk, Sentinel, QRadar) and EDR solutions (CrowdStrike, Microsoft Defender ATP).
+ Knowledge of malware analysis techniques, including static and dynamic analysis.
+ Familiarity with cloud security investigations (AWS, Azure, GCP).
+ Strong scripting skills in Python, PowerShell, or similar languages for automation.
+ Understanding of security architecture, authentication mechanisms, and enterprise IT operations is a plus.
+ Experience with vulnerability management, red teaming, or penetration testing is a plus.
+ Familiarity with MITRE ATT&CK framework and various cyber threat intelligence methodologies.
**Preferred Certifications:**
+ GIAC (GCFA, GNFA, GCIH, GCIA, GREM)
+ CISSP (Certified Information Systems Security Professional)
+ CEH (Certified Ethical Hacker)
+ OSCP (Offensive Security Certified Professional)
+ Cloud Security Certifications (AWS Security Specialty, Microsoft Azure Security)
**Key Competencies:**
+ Strong analytical and problem-solving skills in high-pressure situations.
+ Ability to manage multiple investigations efficiently while meeting deadlines.
+ Excellent verbal and written communication skills, with the ability to convey technical details to varied audiences.
+ Strong team collaboration and leadership skills, with a proactive approach to knowledge sharing.
+ Ability to work in a fast-paced environment and adapt to evolving threats and challenges.
#LI-APAC
**Workplace type** **:**
**About NTT DATA**
NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.
**Equal Opportunity Employer**
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

At Roche you can show up as yourself, embraced for the unique qualities you bring. Our culture encourages personal expression, open dialogue, and genuine connections, where you are valued, accepted and respected for who you are, allowing you to thrive both personally and professionally. This is how we aim to prevent, stop and cure diseases and ensure everyone has access to healthcare today and for generations to come. Join Roche, where every voice matters.
**The Position**
A healthier future. It's what drives us to innovate. To continuously advance science and ensure everyone has access to the healthcare they need today and for generations to come. Creating a world where we all have more time with the people we love. That's what makes us Roche
The Global Security, Monitoring and Incident Response (MIR) team at Roche strives to keep our networks and users safe from constantly evolving threats. As a Cybersecurity Analyst, you will help protect proprietary information, patient data, keep computer systems clean, and provide a safe information environment for our users. All analysts are responsible for monitoring security information, identifying threats, and taking actions to defend all Roche information systems.
**This is an On-Site position based in Kuala Lumpur, and part of a round robin on-call schedule to cover weekends.**
**The Opportunity:**
As a Cybersecurity Analyst in the Monitoring and Incident Response team, you will partner with other security experts to proactively identify areas of improvement, design and validate preventative and detective controls, as well as design response strategies within a global enterprise. You will use your knowledge, technical abilities and creativity, to navigate a diverse set of security related logs and telemetry. In addition to hunting, you will work to identify and address visibility and logging deficiencies within the network.
**You will be:**
+ You have experience responding to incidents in cloud environments as well as Network and Endpoint security monitoring experience in a large sophisticated environment.
+ Demonstrated ability to analyze, triage, and escalate information security incidents as well as being familiar with various defensive and offensive security tool sets.
+ Experience with Google Workspace, Microsoft Office 365, Entra ID, Sharepoint Online, PAN XDR, Splunk, BigQuery and threat intel platforms such as MISP, OpenCTI
+ You are proficient in English.
+ Industry relevant certifications such as BTL1/2, GMON, GCIH, GCFA, GREM, are appreciated but not mandatory.
+ You triage and investigate reported security incidents. Refine incident management processes and response processes.You maintain awareness of emerging threats, vulnerabilities, and security trends to proactively identify and address potential risks, impacting all members of the Roche group; address questions of end users related to IT security topics through our communication channels.Manage and coordinate incidents across the APAC region, serving as the single point of contact (SPOC) for all related matters.
**Who you are:**
+ You hold a Bachelor's degree, and have +5 years of work experience in the cybersecurity field.
+ You have experience driving threat hunting, incident response, or data protection missions and have a solid understanding of the most common security vulnerabilities and attack vectors, as well as their respective mitigation strategies.
+ Proficiency with scripting or programming languages such as Python, Powershell/C#, Bash.You are proficient in clearly articulating technical findings and recommendations to both technical and non-technical stakeholders, and the capability to work independently or as part of a team.
+ You are comfortable challenging the status quo, to improve the security posture of the Roche group and have the ability to work within security frameworks and methodologies (e.g. ATT&CK, STRIDE).
+ You have problem-solving skills, you can identify issues and develop effective solutions promptly and efficiently.You have a critical thinking mindset, and you have the ability to analyze and evaluate information to guide decision-making and solve complex problems.
+ You are proficient in English and you have a passion for the field of computer and network security.
**Who we are**
A healthier future drives us to innovate. Together, more than 100'000 employees across the globe are dedicated to advance science, ensuring everyone has access to healthcare today and for generations to come. Our efforts result in more than 26 million people treated with our medicines and over 30 billion tests conducted using our Diagnostics products. We empower each other to explore new possibilities, foster creativity, and keep our ambitions high, so we can deliver life-changing healthcare solutions that make a global impact.
Let's build a healthier future, together.
**Roche is an Equal Opportunity Employer.**