3,218 Cybersecurity Specialist jobs in Indonesia

• Monitor security alerts and events from various security tools (SIEM, IDS/IPS, EDR).
• Analyze security incidents, determine their scope and impact, and initiate response actions.
• Perform threat hunting activities to proactively identify malicious activities.
• Respond to security incidents according to established playbooks and procedures.
• Contribute to the development and improvement of security monitoring rules and alerts.
• Assist in the investigation of security breaches and provide forensic analysis.
• Stay updated on the latest cybersecurity threats, vulnerabilities, and mitigation techniques.
• Collaborate with IT and security teams to implement security controls and remediate vulnerabilities.
• Document security events, investigations, and incident response actions.
• Participate in on-call rotations as required.

• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
• 1-3 years of experience in cybersecurity operations, SOC analysis, or incident response.
• Familiarity with SIEM, IDS/IPS, EDR, and other security monitoring tools.
• Understanding of common attack vectors, network protocols, and operating systems.
• Strong analytical and problem-solving skills.
• Excellent written and verbal communication skills.
• Ability to work independently and effectively in a team environment.
• Relevant security certifications such as CompTIA Security+, CEH, or GIAC are a plus.

• Monitor security alerts and events from various security tools (SIEM, IDS/IPS, EDR).
• Investigate and analyze security incidents, determine root causes, and implement remediation steps.
• Develop and maintain incident response playbooks and procedures.
• Conduct vulnerability assessments and penetration testing.
• Implement and manage security controls and technologies.
• Stay current with the latest cybersecurity threats, vulnerabilities, and trends.
• Participate in security awareness training initiatives.
• Collaborate with IT teams to ensure security best practices are followed.
• Manage and maintain security infrastructure.
• Perform security audits and compliance checks.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of 3 years of experience in cybersecurity operations, incident response, or security analysis.
• Strong knowledge of networking protocols, operating systems (Windows, Linux), and common attack vectors.
• Hands-on experience with SIEM tools (e.g., Splunk, QRadar), IDS/IPS, firewalls, and endpoint security solutions.
• Familiarity with security frameworks such as NIST or ISO 27001.
• Excellent analytical and problem-solving skills.
• Ability to work independently and as part of a team.
• Strong communication skills, both written and verbal.
• Relevant security certifications (e.g., CompTIA Security+, CEH, CISSP) are a significant advantage.
• A passion for cybersecurity and a commitment to continuous learning.

• Monitor network activity for security breaches, suspicious activities, and potential vulnerabilities using various security tools (e.g., SIEM, IDS/IPS).
• Analyze security alerts and logs to identify and investigate security incidents.
• Implement and maintain security measures, including firewalls, VPNs, intrusion detection/prevention systems, and endpoint security solutions.
• Develop and execute incident response plans to mitigate the impact of security breaches.
• Conduct regular vulnerability assessments and penetration testing on network infrastructure.
• Recommend and implement security enhancements to protect against evolving threats.
• Stay up-to-date with the latest cybersecurity threats, trends, and technologies.
• Collaborate with IT operations teams to ensure security is integrated into all network infrastructure.
• Develop and maintain security documentation, policies, and procedures.
• Provide technical guidance and support to other IT staff on security matters.
• Perform security audits and ensure compliance with relevant regulations and standards.
• Participate in security awareness training for employees.
• Evaluate and recommend new security technologies and tools.
• Assist in the development and testing of disaster recovery and business continuity plans.
• Respond to forensic investigations related to security incidents.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of 3-5 years of experience in network security, cybersecurity analysis, or a similar role.
• Strong knowledge of network protocols (TCP/IP, DNS, HTTP), network architecture, and security principles.
• Experience with security tools such as SIEM (e.g., Splunk, ELK), IDS/IPS, firewalls, and endpoint protection.
• Familiarity with vulnerability scanning and penetration testing methodologies.
• Excellent analytical and problem-solving skills.
• Ability to work independently and manage time effectively in a fully remote environment.
• Strong written and verbal communication skills.
• Relevant security certifications such as CompTIA Security+, CEH, CISSP are a plus.
• Experience with cloud security concepts (AWS, Azure, GCP) is beneficial.
• Understanding of threat intelligence and incident response procedures.
• Ability to multitask and prioritize tasks in a fast-paced environment.
• Proactive approach to identifying and mitigating security risks.
• This role is crucial for maintaining the security of our extensive network infrastructure, particularly for our operations in the Bandar Lampung, Lampung, ID region.

• Monitoring network traffic and security logs for suspicious activities and potential breaches using SIEM tools (e.g., Splunk, ELK Stack).
• Conducting vulnerability assessments and penetration testing to identify weaknesses in the network infrastructure.
• Implementing and managing firewalls, intrusion detection/prevention systems (IDS/IPS), VPNs, and other security technologies.
• Developing and enforcing security policies, standards, and procedures.
• Responding to and investigating security incidents, including malware outbreaks, phishing attacks, and unauthorized access.
• Configuring and maintaining endpoint security solutions, including antivirus and endpoint detection and response (EDR) tools.
• Assisting in the development and delivery of security awareness training for employees.
• Staying up-to-date with the latest cybersecurity threats, trends, and technologies.
• Collaborating with IT teams to ensure secure system configurations and deployments.
• Participating in security audits and compliance checks.
• Developing incident response plans and disaster recovery strategies.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• 3+ years of experience in information security, with a focus on network security.
• Hands-on experience with network security tools such as firewalls (Palo Alto, Cisco ASA), IDS/IPS, VPNs, and WAFs.
• Strong understanding of TCP/IP networking, routing protocols, and network security principles.
• Experience with SIEM tools and security log analysis.
• Knowledge of common attack vectors and mitigation techniques.
• Relevant certifications such as CompTIA Security+, Network+, CISSP, or CEH are highly desirable.
• Excellent analytical and problem-solving skills, with meticulous attention to detail.
• Effective communication and documentation abilities.
• Ability to work both independently and as part of a team in a hybrid work environment.

• Monitor network security infrastructure, including firewalls, IDS/IPS, VPNs, and SIEM systems, for suspicious activity.
• Analyze security alerts and logs to identify and investigate potential security breaches and incidents.
• Respond to security incidents, conducting root cause analysis and implementing containment and eradication strategies.
• Develop and maintain network security policies, procedures, and guidelines.
• Configure and manage network security devices and technologies.
• Conduct vulnerability assessments and penetration testing to identify weaknesses in the network.
• Collaborate with IT teams to implement security controls and best practices across the network.
• Stay up-to-date with the latest security threats, vulnerabilities, and countermeasures.
• Prepare regular reports on security status, incidents, and recommendations for improvement.
• Provide security awareness training to employees as needed.

• Bachelor's degree in Information Security, Computer Science, IT, or a related field.
• Minimum of 3 years of experience in information security, with a strong focus on network security.
• Hands-on experience with firewalls (e.g., Palo Alto, Cisco ASA), IDS/IPS, and SIEM solutions (e.g., Splunk, QRadar).
• Knowledge of network protocols (TCP/IP, DNS, HTTP/S) and common network attack vectors.
• Experience with vulnerability scanning tools (e.g., Nessus, OpenVAS) and penetration testing methodologies.
• Understanding of security frameworks and best practices (e.g., ISO 27001, NIST).
• Excellent analytical and problem-solving skills.
• Strong communication and interpersonal skills, with the ability to explain technical concepts to non-technical audiences.
• Relevant security certifications such as CompTIA Security+, CCNA Security, or CISSP are a plus.

Responsibilities:

1. Perform continuous security monitoring in a 24/7/365 shift rotation.

1. Analyze and triage information security aerts from various monitoring tools.

2. Identify, investigate and escalate high priority information security incident.

4. Prepare and deliver regular SOC reports.

5. Provide first-level incident response and remediation support.

1. Conduct scheduled Vulnerability Management activities.

7. Recommend improvements for detection rule fine-tuning to minimize false positives.

8. Research and stay up to date on the latest cybersecurity threats, trends, and attack techniques.

1. First level support for customer related to information security incidents.

Qualifications

1. Passion for cybersecurity and continuous learning.

1. Effective communication skills for coordination with team members and supervisors.

2. Basic knowledge of Operating System (Windows and Linux).

3. Basic knowledge of Networking (OSI Layer, TCP/IP, Routing).

4. Basic knowledge of IT Security (Malware, Hacking, Social Engineering, Penetration Test, Hardening, Threat Intelligence).

6. Familiarity with security monitoring tools (SIEM, EDR, IDS/IPS, Firewall, WAF, ect).

1. Have information security certification (CompTIA Security+, ISC2 CC, CEH, ect) is a plus.

2. Have scripting skills (Python, Bash, PowerShell) for automation and analysis is a plus.

Job Description

• Analyst would be part of 24x7 Cyber Security Operations function to perform security monitoring and incident response, data loss prevention, vulnerability management.
• Perform monitoring, research, assessment and analysis on alerts from various security tools, including IDPS tools, SIEM, Anomaly detection systems, firewalls, antivirus systems, user behavior analytics tools, endpoint inspection, and proxy devices.
• Follow pre-defined actions to investigate possible security incidents or perform incident response actions, including escalating to other support groups.
• Ensure proper functioning of systems in the Security Operations Centre.
• Enhance and Build Cyber threat detection use cases and assist in analyzing & reducing false positive.
• Support the development and enhancement of SOC incident response capabilities.
• Respond to inbound Change Requests (CRs), Service Requests (SRs), Queries for handling Incident Management.
• Execute daily ad hoc tasks or lead projects as needed.

Requirement

• Minimum 1 years of working experience in IT environment.
• Diploma/Degree in Information System/Information Security from a recognized institution. Strong knowledge on TCP/IP, Networking, Operating Systems and Cyber Security Concepts.
• Strong level of experience with and understanding of firewalls, Antivirus and endpoint detection.
• Good working knowledge of Linux including the ability to run command lines, editing files and scripting.
• Knowledge of commonly-accepted information security principles and practices, as well as techniques attackers would use to identify vulnerabilities, gain unauthorized access, escalate privileges and access restricted information.
• Solid understanding of threats reported by various data sources such as IDS/IPS, AV, HIDS/HIPS, WAFs, firewalls, and web proxies.
• Excellent communication skills.
• Experience in Scripting with Python, Bash or PowerShell is an advantage.
• Willing to work with 24x7 shift pattern that includes weekend work and also extend shift hours if required.
• Willingness to be on standby for maintaining 24x7 SOC shifts.
• Hold one or more tech certification (e.g. MCP, MSCE, CCNA Security, CEH, Security+, CSA )

1. Perform continuous security monitoring in a 24/7/365 shift rotation.

1. Analyze and triage information security aerts from various monitoring tools.

2. Identify, investigate and escalate high priority information security incident.

4. Prepare and deliver regular SOC reports.

5. Provide first-level incident response and remediation support.

1. Conduct scheduled Vulnerability Management activities.

7. Recommend improvements for detection rule fine-tuning to minimize false positives.

8. Research and stay up to date on the latest cybersecurity threats, trends, and attack techniques.

1. First level support for customer related to information security incidents.

Qualifications

1. Passion for cybersecurity and continuous learning.

1. Effective communication skills for coordination with team members and supervisors.

2. Basic knowledge of Operating System (Windows and Linux).

3. Basic knowledge of Networking (OSI Layer, TCP/IP, Routing).

4. Basic knowledge of IT Security (Malware, Hacking, Social Engineering, Penetration Test, Hardening, Threat Intelligence).

6. Familiarity with security monitoring tools (SIEM, EDR, IDS/IPS, Firewall, WAF, ect).

1. Have information security certification (CompTIA Security+, ISC2 CC, CEH, ect) is a plus.

2. Have scripting skills (Python, Bash, PowerShell) for automation and analysis is a plus.

Qualification :

1. S1 Cyber Security/IT
2. Memiliki pengalaman minimal 2 tahun di Information Security
3. Siap Contract OS

Job Description :

1. Ensure that security programs comply with relevant laws, regulations and policies to minimize or eliminate risk and audit findings.
2. Manage security incidents and events to protect corporate IT assets, including intellectual property, regulated data and the company's reputation.
3. Keep abreast of information security issues and regulatory changes.
4. Liaise with project team to ensure alignment between information security and its initiatives/ project including ensure the third party/ vendor (if any) fulfilled the information security requirements
5. Provide continuous improvement to the Information Security function with implementation of security tools or control processes

Benefits :

Competitive Salary