APAC IT Operations Security - Trading Firm

About the Role

We are seeking a Regional IT Security to strengthen the organization’s cybersecurity posture across multiple markets in the APAC region. This role acts as a bridge between corporate security operational execution, ensuring effective threat detection, incident response, and vendor performance management.

KEY RESPONSIBILITIES

• Security Operations Oversight
  • Lead and coordinate daily security operations in partnership with the GSOC vendor.
  • Monitor and validate threat intelligence, alerts, and incident reports generated by the GSOC.
  • Ensure timely escalation, investigation, and resolution of security incidents.
• GSOC Vendor Management
  • Serve as the primary point of contact for GSOC vendor relationship and performance.
  • Define and enforce SLAs, KPIs, and incident response protocols.
  • Conduct regular service reviews, performance audits, and continuous improvement initiatives.
  • Ensure GSOC services align with organizational security policies and business requirements.
• Threat Detection & Response
  • Oversee the configuration and tuning of SIEM platforms (e.g., Microsoft Sentinel, Splunk).
  • Validate use cases, correlation rules, and threat hunting activities.
  • Coordinate incident response efforts, including containment, eradication, and recovery.
• Vulnerability Management
  • Oversee vulnerability scanning, patch management, and risk assessments.
  • Collaborate with IT and application teams to remediate identified risks.
  • Maintain a risk register and report on risk posture to senior leadership.
• Reporting & Documentation
  • Prepare regular reports on security metrics, incident trends, and GSOC performance.
  • Maintain documentation for incident response plans, playbooks, and escalation procedures.
• Security Innovation & Trends
  • Monitor emerging threats and technologies.
  • Recommend strategic investments in security innovation.
• Ad hoc Support
  • Additional information security-related tasks given by the supervisor or management team

• Bachelor’s degree in information security, Computer Science, or related field.
• 5+ years of experience in cybersecurity operations, with at least 2 years in vendor management.
• Strong understanding of SOC operations, SIEM platforms, and threat intelligence.
• Experience with Microsoft security stack (Defender, Sentinel, Purview) is a plus.
• Clear communicator with both technical and non-technical audiences
• Certifications such as CISSP, CISM, GIAC, or ISO 27001 Lead Implementer preferred.
• Ability to travel within the APAC region as needed.