Show more filters
Banner image for Indivara Group
Job Type   /   Job Level
Full-time   /   Junior Executive
Company Location
Indonesia
  • Lead threat detection, analysis, and incident response activities across enterprise systems.
  • Monitor and investigate security alerts from SIEM (e.g., Splunk, QRadar, Sentinel, or Elastic).
  • Perform log analysis, network traffic inspection, and malware analysis to identify potential threats.
  • Collaborate with the Red Team to test and strengthen defensive mechanisms.
  • Develop and maintain detection rules, response playbooks, and automation scripts (SOAR).
  • Conduct vulnerability assessment and remediation tracking.
  • Manage and tune security tools (EDR, IDS/IPS, Firewall, Proxy, DLP, etc.).
  • Coordinate post-incident reviews and implement lessons learned.
  • Provide mentorship and technical guidance to junior analysts.
  • Stay updated with the latest threat intelligence, TTPs, and security trends (MITRE ATT&CK framework).

Education:

  • Bachelor’s degree in Information Security, Computer Science, or related field.
  • Master’s degree or equivalent experience is a plus.

Experience:

  • Minimum 5–8 years of experience in Cyber Security Operations or Blue Team roles.
  • Strong hands-on experience with incident response, threat hunting, and forensic analysis.
  • Proven experience with SIEM tools (Splunk, Sentinel, QRadar, ELK, etc.).
  • Solid understanding of network protocols (TCP/IP, HTTP, DNS, SMTP) and security architecture.
  • Experience with endpoint security (EDR/XDR) and cloud security monitoring (AWS, Azure, GCP).
  • Knowledge of scripting languages (Python, PowerShell, Bash) for automation and analysis.
  • Familiar with MITRE ATT&CK, NIST CSF, and ISO 27001 frameworks.
  • Strong analytical and investigative skills.
  • Excellent problem-solving and decision-making ability under pressure.
  • Strong teamwork, communication, and documentation skills.
  • High attention to detail and a proactive, defensive mindset.

Certifications (Preferred):

  • GCIA, GCIH, GCED, GNFA (GIAC certifications)
  • CEH (Certified Ethical Hacker) or CySA+ (CompTIA)
  • CISSP or CISM is a strong advantage
  • Azure / AWS Security Certifications (optional but valuable)

More jobs