Published on www.allthetopbananas.com 25 Mar 2025
Key Responsibilities:
Incident Response Leadership:
Critical Coordination:
Serve as the pivotal point during major cyber security incidents. Spearhead response efforts with a clear containment strategy, ensuring that critical stakeholders receive timely situational updates. Stakeholder Liaison:
Act as the bridge between key stakeholders and all designated responder groups, ensuring clarity and unity during and after incidents. Incident Management and Oversight: Follow-Up & Remediation:
Oversee the full lifecycle of cyber security incidents by directing remediation actions. Ensure that every incident is thoroughly analyzed, addressed, and prevented in the future. Alert & Events Review:
Evaluate the handling of security alerts/events processed by L1/L2 Analysts to confirm adherence to playbooks and service level agreements. Advanced Threat Analysis: Root Cause Analysis:
Dive deep into threats to identify not just what happened, but why it happened. Formulate and execute strategies to neutralize the root causes effectively. Process & Playbook Management: Continuous Improvement:
Maintain, update, and refine the Cyber Security Incident Response processes along with scenario-based response playbooks, ensuring the practices stay ahead of emerging threats. Cross-Function Collaboration: Unified Standards:
Work seamlessly with various functions, technology teams, and cyber risk controls to ensure that guidelines, standards, and policies are applied consistently across the board. Leadership and Development: Personal Growth & Team
Building: Align your professional growth with the business objectives. Play an active role in transforming and pushing forward the capabilities of the team and department. Diversity & Inclusion:
Embrace and promote a culture of inclusivity, trust, and respect. Model collaboration and support cross-team engagements to foster a unified work environment. About You – Qualifications and Experience: Educational Background: A University Degree in Computer Science, Software Engineering, or a related discipline. Industry Certifications (at least one): Credentials such as CISSP, GIAC (Incident Handler or Intrusion Analyst), OSCP, or comparable certifications. Experience: A minimum of 15 years overall, with at least 8 years dedicated to cyber security in a regional or global capacity. Technical & Methodological Expertise: Solid understanding and experience with the NIST “Computer Security Incident Handling Guide” or an equivalent framework. Proficient in developing and using SIEM, SOAR, UEBA, and Threat Intelligence platforms. Extensive hands-on knowledge with security tools such as Splunk, XSOAR, Threat Intel Platforms, and UEBA technologies. Deep expertise in Windows and UNIX OS internals, along with TCP/IP and network fundamentals. Familiarity with cloud platforms including Amazon Web Services, Azure, Google Cloud Platform, Tencent Cloud, and Alibaba Cloud. In-depth understanding of frameworks and concepts such as MITRE ATT&CK & D3FEND, the Cyber Kill Chain, Incident Response methodologies, Threat Hunting, and the Threat Intelligence Lifecycle. Communication Skills: Outstanding verbal and written communication abilities. You should be able to translate highly technical topics into clear, understandable insights for both executive leadership and non-technical audiences. Additional Expertise: Experience in researching threat actors and critically assessing their risk levels. If this outstanding opportunity sounds like your next career move, please submit through "Apply Now" or send your resume in Word format to
Sedrick Chan
at
resume@pinpointasia.com
and put
Cyber Security Incident Manage
r in the subject header. Data provided is for recruitment purposes only.
______________________________________ ___________________ Headquartered in Hong Kong, Pinpoint Asia is the go-to Specialist Firm for Technology Recruitment We are a team of specialist tech recruiters (many of our recruiters come from an IT background) and we serve a wide range of clients, all the way from tech startups (especially FinTech) to some of the top Financial Institutions on Wall Street and several other large scale enterprises in other industries. Our significant market reputation and status as the leading search firm for many of our clients is a direct result of our strong industry relationships, intimate understanding of the marketplace and proven ability to deliver results. Our vision is
to help companies hire smarter and help job seekers get closer to their career aspirations. To see all our open jobs please reach out to us at
(EA License #75905) We are also seeking top-calibre candidates for the following exciting roles: 1) Cyber Security Engineering Lead 2) Senior Officer/Assistant Manager, Quality Assurance - Top Insurance Group 3) Senior Automation QA Engineer – Leading Financial Institution
Serve as the pivotal point during major cyber security incidents. Spearhead response efforts with a clear containment strategy, ensuring that critical stakeholders receive timely situational updates. Stakeholder Liaison:
Act as the bridge between key stakeholders and all designated responder groups, ensuring clarity and unity during and after incidents. Incident Management and Oversight: Follow-Up & Remediation:
Oversee the full lifecycle of cyber security incidents by directing remediation actions. Ensure that every incident is thoroughly analyzed, addressed, and prevented in the future. Alert & Events Review:
Evaluate the handling of security alerts/events processed by L1/L2 Analysts to confirm adherence to playbooks and service level agreements. Advanced Threat Analysis: Root Cause Analysis:
Dive deep into threats to identify not just what happened, but why it happened. Formulate and execute strategies to neutralize the root causes effectively. Process & Playbook Management: Continuous Improvement:
Maintain, update, and refine the Cyber Security Incident Response processes along with scenario-based response playbooks, ensuring the practices stay ahead of emerging threats. Cross-Function Collaboration: Unified Standards:
Work seamlessly with various functions, technology teams, and cyber risk controls to ensure that guidelines, standards, and policies are applied consistently across the board. Leadership and Development: Personal Growth & Team
Building: Align your professional growth with the business objectives. Play an active role in transforming and pushing forward the capabilities of the team and department. Diversity & Inclusion:
Embrace and promote a culture of inclusivity, trust, and respect. Model collaboration and support cross-team engagements to foster a unified work environment. About You – Qualifications and Experience: Educational Background: A University Degree in Computer Science, Software Engineering, or a related discipline. Industry Certifications (at least one): Credentials such as CISSP, GIAC (Incident Handler or Intrusion Analyst), OSCP, or comparable certifications. Experience: A minimum of 15 years overall, with at least 8 years dedicated to cyber security in a regional or global capacity. Technical & Methodological Expertise: Solid understanding and experience with the NIST “Computer Security Incident Handling Guide” or an equivalent framework. Proficient in developing and using SIEM, SOAR, UEBA, and Threat Intelligence platforms. Extensive hands-on knowledge with security tools such as Splunk, XSOAR, Threat Intel Platforms, and UEBA technologies. Deep expertise in Windows and UNIX OS internals, along with TCP/IP and network fundamentals. Familiarity with cloud platforms including Amazon Web Services, Azure, Google Cloud Platform, Tencent Cloud, and Alibaba Cloud. In-depth understanding of frameworks and concepts such as MITRE ATT&CK & D3FEND, the Cyber Kill Chain, Incident Response methodologies, Threat Hunting, and the Threat Intelligence Lifecycle. Communication Skills: Outstanding verbal and written communication abilities. You should be able to translate highly technical topics into clear, understandable insights for both executive leadership and non-technical audiences. Additional Expertise: Experience in researching threat actors and critically assessing their risk levels. If this outstanding opportunity sounds like your next career move, please submit through "Apply Now" or send your resume in Word format to
Sedrick Chan
at
resume@pinpointasia.com
and put
Cyber Security Incident Manage
r in the subject header. Data provided is for recruitment purposes only.
______________________________________ ___________________ Headquartered in Hong Kong, Pinpoint Asia is the go-to Specialist Firm for Technology Recruitment We are a team of specialist tech recruiters (many of our recruiters come from an IT background) and we serve a wide range of clients, all the way from tech startups (especially FinTech) to some of the top Financial Institutions on Wall Street and several other large scale enterprises in other industries. Our significant market reputation and status as the leading search firm for many of our clients is a direct result of our strong industry relationships, intimate understanding of the marketplace and proven ability to deliver results. Our vision is
to help companies hire smarter and help job seekers get closer to their career aspirations. To see all our open jobs please reach out to us at
(EA License #75905) We are also seeking top-calibre candidates for the following exciting roles: 1) Cyber Security Engineering Lead 2) Senior Officer/Assistant Manager, Quality Assurance - Top Insurance Group 3) Senior Automation QA Engineer – Leading Financial Institution
View all