Security Operations Center
PT SOLNET INDONESIA
Nama Perusahaan : PT SOLNET INDONESIA
Jl. Perahu Dendang No.1. Batam Center, Batam 29464, IndonesiaPersyaratan:
- Strong knowledge of:
- CP/IP networking, routing, firewalls, Linux/Windows operating systems, and core cybersecurity concepts.
- Security tools such as SIEM, firewalls, Antivirus/EDR, IDS/IPS, WAF, HIDS/HIPS, and web proxies.
- Threat detection techniques, attacker methodologies (TTPs), privilege escalation paths, and vulnerability exploitation techniques.
- Security best practices, system hardening, and SOC L1/L2 incident handling processes.
- Active Directory (AD) security, including user and group management, GPO enforcement.
- Have a good Sysadmin and Security Background
- Hands-on experience with:
- Firewall configuration and management
- Endpoint protection tools
- Security event correlation and log analysis
- SIEM tuning and rule creation
- API-based integration between security tools
- Infrastructure asset management
- Windows Event Logs and Active Directory auditing
- Scripting skills in Python, Bash, or PowerShell for automation tasks are highly desirable.
Soft Skill :
- Growth mindset, strong enthusiasm, and passion for cybersecurity.
- Curiosity and a desire for continuous learning and professional development.
- Strong analytical thinking, critical problem-solving skills, and attention to detail.
- Excellent verbal and written communication skills (in Indonesia & English).
- Positive attitude, fast learner, and open to feedback and improvement.
- Willingness to explore and learn new security technologies to stay updated with industry trends.
Nice to Have :
- Familiarity with threat hunting, threat intelligence platforms, and MITRE ATT&CK Framework.
- Experience with SIEM, SOAR, Automation tools.
- Exposure to Cloud platforms such as Proxmox, Openstack for security monitoring and management.
- Familiarity with log forwarding agents like Syslog, Beats, Ossec, PacketBeat Logstash, or Filebeat.
Job Descriptions :
- Build, configure, manage, and fine-tune security systems and infrastructures such as firewalls, SIEM, IDS/IPS, endpoint protection platforms, Active Directory, and network security devices.
- Monitor and analyze security alerts generated by multiple data sources including SIEM, IDS/IPS, firewalls, network devices, and endpoint protection systems.
- Perform initial triage, investigation, and incident response for security events and potential threats.
- Manage and document infrastructure asset inventory and scope.
- Develop, maintain, and continuously improve incident response playbooks, access control matrix, and SOC operational documentation.
- Conduct system hardening, vulnerability remediation coordination, and proactive improvements to overall security posture.
- Participate in project deployment lifecycles including requirement gathering, system design, implementation, and post-deployment support.
- Integrate and automate security tools using API scripting and automation frameworks.
- Proactively research emerging threats, attacker techniques (TTPs), and recommend enhancements for SOC capabilities.
- Collaborate with Cloud Operations and Network Engineering teams, especially in areas like cloud security, routing, firewall management, Internet Exchange Point (IXP) operations, and infrastructure security.
- Be willing to participate in 24x7 SOC standby on a rotational basis.
Submit your CV, cover letter, and other supporting documents by accessing "Apply for Job" below.
by accessing https://shorturl.at/x8Z67
This vacancy is valid until 31 July 2025
Silahkan Login Terlebih Dahulu !!