Develop and maintain honeypots and supporting infrastructure and be SME on honeypots and honeypot infrastructure
Develop and maintain threat analysis lab virtual machines, cyber ranges and supporting infrastructure and be SME on lab machines and supporting infrastructure
Develop and maintain open source or in-house tools, scripts, automation and systems as needed to support threat intelligence and incident response tasks
Conduct ad hoc and periodic compromise assessments of Maybank networks and systems and report on findings
Support the Security Operations Center in validating daily security alerts by investigating the malicious artefacts and binaries when additional coverage is needed
Conduct threat hunting on Maybank systems and networks to identify undetected activities and breaches, while also creating proactive and reactive rules to al...