2,630 Security Operations jobs in Indonesia

Protect the organization by managing access, identifying issues, improving security, and performing hands-on security assessments.

Job Requirements

Diploma or Bachelor's Degree in Computer, Informatics or related fields.

At least 3 months - 1 years of experience in a IT Security or related field.

Knowledge of IT security principles, practices, and problem-solving.

Experience in security system monitoring and response (SIEM).

Comfortable working in shifting schedules for SOC L1.

Employment will be on a project based.

Preferably can join immediately (ASAP) and willing to be placed at ASYST Office (Soekarno-Hatta Airport Area).

Job Descriptions:

• Protect the organization by managing access, identifying security issues, improving security measures, and performing hands-on security assessments.
• Monitor and respond to security system alerts and incidents.
• Conduct regular security assessments and audits.
• Collaborate with IT teams to implement and improve security protocols.
• Maintain up-to-date knowledge of security trends and threats.

Qualifications:

• Diploma or Bachelor's Degree in Management Information Systems, Computer Science, IT, or related fields.
• Minimum 1 year of experience in a related field (fresh graduates are welcome).
• Knowledge of IT security principles, practices, and problem-solving.
• Experience in security system monitoring and response.
• Understanding of advanced security protocols and standards.
• Familiarity with software and security architecture.
• Excellent analytical and problem-solving skills.
• Preferably can join immediately (ASAP) and willing to be placed at ASYST Office (Soekarno-Hatta Airport Area).
• Willing to be placed as outsource under one of the subsidiaries of Garuda Indonesia.
• Comfortable working in shifting schedules for SOC L1.

About the role

At Alpha Code Technologies (the cybersecurity and technology arm of PT Akraya International), we are seeking a highly skilled L1 Security Analyst to join our talented team.

As a Level 1 SOC Analyst, you will be the first line of defense in identifying and responding to potential security threats. This is an excellent opportunity for someone with a passion for cybersecurity and strong communication skills to grow in a dynamic and fast-paced environment.

What you'll be doing

• Monitoring and analysing security logs and alerts to detect, investigate, and respond to potential security incidents
• Triage security events, categorize incidents, and escalate based on severity
• Performing vulnerability assessments and risk analysis to identify and mitigate security vulnerabilities
• Collaborate with L2, L3 & DevSecOps and assist in the deployment and configuration of security tools and technologies
• Documenting security processes and contributing to the continuous improvement of our security practices
• Providing first-line support and guidance to end-users regarding security-related inquiries and concerns
• Participate in daily SOC stand-ups and shift handovers

What we're looking for

• Minimum 2+ years of experience in a security analyst or security operations role
• Strong understanding of security principles, best practices, and industry standards
• Proficiency in monitoring and analysing security logs, alerts, and events using security information and event management (SIEM) tools
• Familiarity with vulnerability management, risk assessment, and incident response processes
• Good analytical and problem-solving skills, with the ability to quickly identify and resolve security-related issues
• Excellent communication and collaboration skills to work effectively with both technical and non-technical stakeholders

What we offer

At Alpha Code Technologies, we are committed to providing a work environment that fosters professional growth, work-life balance, and job satisfaction. As an L1 Security Analyst, you can expect:

- Competitive salary and benefits package

- Opportunities for career advancement and skill development

- Supportive and collaborative team environment

- Comprehensive health and wellness programs

About us

Alpha Code Technologies - the cybersecurity and technology arm of PT Akraya International is committed to advancing Indonesia towards future technologies. As a forward-thinking technology partner, we deliver secure, innovative, and high-quality solutions tailored for modern enterprises - all built on a strong foundation of trust and reliability. Our approach is rooted in agility, transparency, and continuous learning, building a strong tech culture that drives excellence and empowers organizations to shape Indonesia's digital future.

If you are excited to be part of our dynamic team and contribute to the security of our organisation, we encourage you to apply now.

Requirement :

• CEH/CHFI/ECSA/ECIH certificate is a must
  , and other relevant Information security certificates are preferred
• Have degree holder in Information Technology related field
• At least
  four (4) years of working experience in Cyber Security Analyst
• Willing to learn new security technologies
• Proficient in Incident Management and Response
• Experience in security device management and SIEM
• In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc.
• Experience in threat management
• Proficient in preparation of reports, dashboards and documentation
• Good Analytical skills, Problem solving and Interpersonal skills
• Able to communicate with English in both written and oral forms
• Positive attitude, fast learning and can work as team
• Able to work under challenging environment and extended hours

Job Descriptions:

• Responsible for security event monitoring, management and response
• Ensure incident identification, assessment, quantification, reporting, communication, mitigation and monitoring
• Ensure compliance to SLA
• Responsible for integration of standard and non-standard logs in SIEM
• Creation of reports, dashboards, metrics for SOC operations and presentation

We are looking for an experienced IT Security Operations Center (L2) to join our team. If you have excellent skills we would like to meet you. As a IT Security Operations Center (L2), you'll work closely with our engineers to ensure system consistency and improve user experience.

Job Desc :

• Monitor and analyze security alerts from various sources.
• Conduct in-depth investigations of suspicious activities and incidents.
• Coordinate and escalate security incidents to appropriate teams.
• Perform root cause analysis and recommend solutions to mitigate risks.
• Collaborate with the L1 team to enhance detection capabilities.

PT Metrodata Electronics, Tbk (Digital Solution Provider & Technology Innovator) would like to invite you to be part of the company to develop yourself and your skills.

Qualification :

• Bachelor's Degree Computer Science/Information Technology
• At least 3 year(s) of working IT Security Operations Center (L2) experience
• Experience in analyze and incident handler
• Have experience in performing Incident Handler
• Experience in Threat Hunting

If you meet the requirement we needed, let's apply for the following open positions.

Metrodata not just offer for the job, we offer you for brighter career future.

What you will do:

• Continuous monitoring of security events and alerts, providing real-time visibility into potential threats, such as

monitoring logs, alerts, and other security-related data

• Being part of the security incident and response team, to actively detect and respond to security incidents,

leveraging the capabilities of SIEM/SOAR to investigate, analyze, and mitigate potential threats.

• Assist identification of potential threats and vulnerabilities through threat hunting activities. This involves

analyzing data to discover patterns or anomalies that may indicate a security issue.

• Prioritizing security alerts based on severity and relevance.

• Assist to implementing automation to streamline repetitive tasks and orchestrate responses to security incidents,

improving efficiency and reducing response times.

• Managing updates, patches, and version upgrades to ensure the platform remains secure and up-to-date with

the latest features and fixes.

• Generating regular reports on security activities, incidents and trends.

What you need:

• Educational background in related field.

• At least 1 year of Security Operations Analyst career-related experience

• Good understanding of networking protocols, infrastructure, and security principles.

• Experience with SIEM operation/administration.

• Experience with at least one of the following cloud service providers: Microsoft Azure, AWS

• Good attitude, commitment to work and good team player.

• Excellent communication (written and oral) and interpersonal skills especially in needs analysis and problem

solving.

• Ability to adapt and have flexibility within a high-growth organization.

Kualifikasi:

1. Pendidikan minimal D3/S1 Sistem Informasi, Teknologi Informasi
2. Memahami bahasa pemrograman PHP, Javascript, dan .Net Framework
3. Menguasai Teknik Hacking dan Ethical Hacking
4. Menguasai windows system, linux system, dan IT hardware (Server, Network, LAN, WAN)
5. Kemampuan untuk dengan cepat mempelajari teknologi dan produk baru
6. Mampu bekerja sama secara mandiri ataupun dengan team

Deskripsi Pekerjaan:

1. Menerapkan sistem keamanan yang digunakan di Pusat seperti firewall, kontrol perlindungan data, patching, enkripsi, vulnerability assessment, pen testing, dan sebagainya
2. Menjalankan jadwal monitoring terhadap semua aktivitas yang terjadi di seluruh user, sistem, aplikasi, atau jaringan JNE
3. Melakukan konfigurasi firewall, email security, application security, website security, network segmentation, antivirus / anti malware, cloud security, data loss prevention, menghapus dan menambah akses user, restore data, dan back up data
4. Memperbarui software keamanan yang ada di JNE sebelum expired date berlaku
5. Berkolaborasi dan berkomunikasi secara berkala dengan pihak – pihak lainnya baik Department di Kantor Pusat / Cabang Utama / Vendor

• Implement, configure, monitor, and troubleshoot security solutions: SIEM, EDR/XDR, antivirus, email security (SPF/DKIM/DMARC), DLP, firewall/WAF/IDS/IPS.
• Develop SIEM/EDR detection rules (SPL/KQL/Sigma), log normalization, false positive tuning, and mapping to MITRE ATT&CK.
• Perform SOC operations: alert triage, full-cycle incident response (containment, eradication, recovery), and evidence handling.
• Conduct vulnerability management: scanning, risk prioritization (CVSS/EPSS), remediation coordination, SLA reporting.
• Strengthen identity and endpoint security: AD/Azure AD, MFA, Windows/Linux hardening, network segmentation, VPN.
• Manage log pipelines from on-prem and cloud to SIEM; ensure data integrity and coverage.
• Automate incident response using SOAR or scripting (Python/PowerShell/Bash).
• Develop and maintain security documentation, runbooks, playbooks, and tabletop exercises (ISO 27001 compliance).

• Bachelor's degree in Computer Science, IT, or related field.
• 2+ years of experience in SOC, Security Operations, or Incident Response.
• Expertise in SIEM content creation and EDR/XDR operations.
• Strong knowledge of threat detection, malware analysis, phishing defense, and ransomware response.
• Experienced in vulnerability scanning, patch management, and secure configurations.
• Proficient in Windows/Linux OS security, TCP/IP, DNS, routing, WAF/IDS/IPS concepts.
• Skilled in identity security (AD/Azure AD, least privilege, lateral movement detection).
• Scripting and automation proficiency in Python, PowerShell, or Bash.
• Strong analytical, communication, and teamwork skills; willing to work on-call rotations.