Threat Analytics

General Responsibilities:

Conduct real-time monitoring of network activity using a threat detection system to detect suspicious anomalies.

Analyze security data and analyze log data from various sources (firewalls, endpoints, servers, applications) to identify potential attack patterns.

Evaluate emerging threats based on their severity, possible exploitation, and impact on bank operations.

Investigate reported security incidents, such as phishing, malware, or DDoS attacks, to determine the root cause and provide mitigation recommendations.

Conduct forensic analysis on the affected device or system to identify the attacker's traces and the attack methods used.

Prepare detailed reports related to security incidents and provide input to management for strategic decision-making.

Use thread intelligence sources (internal and external) to monitor global threat trends, such as ransomware or zero-day attacks.

Penetration Testing Work with other teams to conduct penetration tests on the bank's system to find security gaps before they are exploited by irresponsible parties.

Identify, assess, and mitigate vulnerabilities in bank systems or applications

Develop information security policies that are in line with industry standards (such as ISO 27001, PCI DSS) and local regulations.

Employee awareness training on trending cyber threats and how to identify and avoid them, such as phishing emails or fake websites.

Periodic Security Audits Ensure the bank's information systems comply with the security policies set through regular audits

Cooperation with IT Security Operations provides input to the SOC to improve the efficiency of threat detection and response.

Coordinate with IT Security Operation and Compliance Division for patch application and system repair, as well as with the compliance team to ensure compliance with regulations (OJK, BI, etc.).

Optimization of Security Technology, evaluating the effectiveness of the security tools and technologies used, and recommending updates or replacements if necessary.

Provide regular reports to management on threat trends, incidents handled, and system security status.

Provide strategic recommendations for investments in new security tools, training, or processes

Requirements:

Candidate should possess at least Bachelor degree (S1) in IT

Minimum 5 (five) years of working experience in Banking handling Threat Analytics

Experienced in developing and implementing new security systems, security programs, protocols and maintenance of existing systems

Deep knowledge of data communications and network experience of operating systems and tools

Have knowledge of information security solutions, including data loss prevention, intrusion detection and prevention, network security monitoring and vulnerability management

Strong leadership skill

Proficient in English both written and verbal

Preferably have Risk Management certification

Communicative and able to work both individually or together in a team

Detail-oriented, discipline, and strong integrity person

Able to work in a fast-paced environment with tight deadline(s)

Industries: Information Services

Function: Web Development