Security Operations Center Consultant

BAE Systems Digital Intelligence

full-time

Posted on: 9/3/2025

Origin: • 🇲🇾 Malaysia

✨ AI Apply

Mid-LevelSenior

AzureCyber SecurityFirewallsServiceNowSplunk

About the role

Engage with clients to assess their SOC maturity across technology, process, and people.
Provide expert guidance on enhancing incident detection, response, and threat hunting capabilities.
Recommend and help implement frameworks (e.g., MITRE ATT&CK, NIST CSF, ISO 27001) into SOC operations.
Design, configure, and optimise SIEM solutions (Splunk required; others such as QRadar, Elastic, or Sentinel are advantageous).
Support integration of threat intelligence platforms, SOAR tools, EDR/XDR solutions, and log management systems.
Develop advanced detection rules, dashboards, and use cases to improve visibility and response.
Define and improve SOC processes (incident response, threat hunting, escalation workflows).
Conduct gap analyses and propose roadmaps for SOC capability maturity.
Deliver workshops, training sessions, and knowledge-sharing to client SOC teams.

4–7+ years of experience in cybersecurity, with at least 3 years in SOC operations or consulting.
Experience with SIEM tools (Examples: Splunk, QRadar, Elastic, Azure Sentinel, etc.).
Familiarity with SOAR platforms (Splunk SOAR, Palo Alto Cortex XSOAR, ServiceNow Security Operations).
Understanding of network security, firewalls, IDS/IPS, and endpoint security.
Knowledge of AI technologies and their applications for the security field an advantage.
Experience with incident response frameworks and threat hunting methodologies.
Passion for cybersecurity, continuous learning, and thought leadership.