Senior Incident Response Specialist, Cyber Security

Cygnify

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia permanent

Posted: January 17, 2026

Required Skills

Job Description

Role Mission

The Senior Analyst – Cyber Security Incident Response is responsible for monitoring, detecting, and analyzing cybersecurity incidents through the Security Operations Centre (SOC) platform. The role supports the end-to-end incident lifecycle — including triage, investigation, containment, and closure — ensuring timely response to security events and maintaining cyber resilience. This role acts as the Level 2 (L2) Incident Responder, bridging SOC analysts and Incident Response management by performing deep technical analysis and coordinating with internal teams for resolution.

Accountabilities:

• Perform end-to-end incident triage and investigation of security alerts escalated from L1 SOC analysts.
• Ensure timely incident analysis, containment, and escalation aligned with MTTD and MTTR goals.
• Support the SIEM platform (Elastic Stack) by fine-tuning existing rules and suggesting new detections.
• Conduct log analysis and correlation across multiple data sources (network, endpoint, and cloud).
• Create and maintain incident documentation, reports, and lessons learned.
• Support incident response playbook execution during containment and recovery phases.
• Collaborate with IT, network, and application teams for incident remediation and root cause analysis.
• Provide insights for use case improvements and participate in use case validation and testing.
• Escalate confirmed incidents to CSIRT / Assistant Manager – Incident Response for further action.
• Participate in post-incident reviews, contributing to process and detection improvements.

• Monitor alerts generated from the SOC/SIEM and perform initial to intermediate-level investigations.
• Review and validate security events from multiple log sources and identify legitimate threats.
• Perform deep-dive investigations for incidents involving malware, phishing, insider threats, and cloud breaches.
• Assist in detection rule creation and tuning under the guidance of senior incident responders.
• Use frameworks like MITRE ATT&CK for mapping and improving detection quality.
• Conduct threat hunting using Elastic Stack and related tools.
• Collaborate with MSSP, CSIRT, and IT infrastructure teams to ensure timely incident handling.
• Support incident response reporting, evidence collection, and documentation for compliance and audit.
• Contribute to automation opportunities in detection and response workflows.
• Participate in training sessions, simulations, and tabletop exercises to enhance readiness.
• Responsible for the log source onboarding and managing the continuous logs availability on the SIEM platform.

Requirements:
• Monitor alerts generated from the SOC/SIEM and perform initial to intermediate-level investigations.
• Review and validate security events from multiple log sources and identify legitimate threats.
• Perform deep-dive investigations for incidents involving malware, phishing, insider threats, and cloud breaches.
• Assist in detection rule creation and tuning under the guidance of senior incident responders.
• Use frameworks like MITRE ATT&CK for mapping and improving detection quality.
• Conduct threat hunting using Elastic Stack and related tools.
• Collaborate with MSSP, CSIRT, and IT infrastructure teams to ensure timely incident handling.
• Support incident response reporting, evidence collection, and documentation for compliance and audit.
• Contribute to automation opportunities in detection and response workflows.
• Participate in training sessions, simulations, and tabletop exercises to enhance readiness.
• Responsible for the log source onboarding and managing the continuous logs availability on the SIEM platform.

Why Apply Through MisuJob?

AI-Powered Job Matching: MisuJob uses advanced artificial intelligence to analyze your skills, experience, and career goals. Our matching algorithm compares your profile against thousands of job requirements to find positions where you have the highest chance of success. This saves you hours of manual job searching and ensures you only see relevant opportunities.

One-Click Applications: Once you create your profile, applying to jobs is effortless. Your resume and cover letter are automatically tailored to highlight the most relevant experience for each position. You can apply to multiple jobs in minutes, not hours.

Career Intelligence: Beyond job matching, MisuJob provides valuable career insights. See how your skills compare to market demands, identify skill gaps to address, and understand salary benchmarks for your experience level. Make data-driven decisions about your career path.

Frequently Asked Questions

How do I apply for this position?

Click the "Register to Apply" button above to create a free MisuJob account. Once registered, you can apply with one click and track your application status in your dashboard.

Is MisuJob free for job seekers?

Yes, MisuJob is completely free for job seekers. Create your profile, get matched with jobs, and apply without any cost. We help you find your dream job without any hidden fees.

How does AI matching work?

Our AI analyzes your resume, skills, and experience to understand your professional profile. It then compares this against job requirements using natural language processing to calculate a match percentage. Higher matches mean better fit for the role.

Can I apply to jobs in other countries?

Absolutely. MisuJob features jobs from companies worldwide, including remote positions. Filter by location or look for remote opportunities to find jobs that match your preferences.

Ready to Apply?

Join thousands of job seekers using MisuJob's AI to find and apply to their dream jobs automatically.

Interested in this position?