Skip to content
SecRoles

SOC Shift Leader

S-RMKuala Lumpur, KL, Malaysia · Hong Kong, Hong KongJune 3, 2026
Hybrid
Full-time
SOC
Management

SOC Shift Leader, Kuala Lumpur, (Hybrid)   
  

WHO WE ARE  

S-RM is a global intelligence and cyber security consultancy.  Since 2005, we’ve helped some of the most demanding clients in the world solve some of their toughest information security challenges.    

We’ve been able to do this because of our outstanding people.  We’re committed to developing sharp, curious, driven individuals who want to think critically, solve complex problems, and achieve success.    

But we also know that work isn’t everything. It’s about the lives and careers it helps us build.  We’re immensely proud of this culture and we invest in our people’s wellbeing, learning, and ideas every day.  

We’re excited you’re thinking about joining us.  

WORKING IN CYBER AT S-RM  

Our Cyber Security division is the fastest-growing part of S-RM. The cyber sector is always evolving, and our Advisory, Managed Services, and Incident Response practices are in more demand than ever.   

We’re building a team to meet this challenge.  We’re quick to respond, innovate, and improve.  We don’t get too hung up on hierarchy or bureaucracy.  If your ideas are good enough, we’ll empower you to implement them.  If you’re the best person to talk to a customer, you’ll get that opportunity, regardless of the title in your email signature. And when you need a hand, your team will always have your back.  

We also don’t believe there’s a typical cyber security professional.  We’ve built a team of intelligence analysts, technical specialists, software developers, investigators, risk managers, and more.  You’ll always find a range of perspectives and expertise to help you learn and grow.   

If that sounds like your kind of team, we’d like to hear from you.  

THE ROLE  

The SOC Shift Leader is responsible for leading and coordinating Security Operations Centre (SOC) activities during assigned shifts. This role ensures effective monitoring, detection, investigation, escalation, and response to cybersecurity threats and incidents across the organisation’s environment. 

The SOC Shift Leader acts as the primary operational lead during the shift, providing technical guidance to analysts, overseeing incident handling, ensuring SLA adherence, and maintaining operational readiness and reporting.  

Delivery 

  • Ensure Monitoring of Security Events: Continuously monitor and analyse security alerts from EDR, SIEM and other security tools to detect suspicious activities or potential threats.  

  • Lead and manage SOC operations during assigned shifts. 

  • Coordinate daily activities of SOC Analysts. 

  • Act as the primary escalation point for operational incidents and analyst support. 

  • Ensure effective incident triage, investigation, containment, and escalation. 

  • Maintain shift handovers and operational continuity between shifts. 

  • Ensure adherence to SOC processes, runbooks, and playbooks.. 

  • Validate and prioritise security alerts and incidents. 

  • Lead initial incident response activities and coordinate escalations where required. 

  • Ensure incidents are categorised and handled according to severity and SLA requirements. 

  • Support threat hunting and proactive detection activities. 

  • Prepare and deliver shift reports, incident summaries, and operational updates where required 

  • Communicate major incidents to management and relevant stakeholders. 

  • Participate in post-incident reviews and lessons learned sessions. 

  • Escalate critical incidents according to the incident response plan. 

WHAT WE’RE LOOKING FOR  

  • Qualifications: A Bachelors degree in a relevant subject, for example cybersecurity, computer science. Relevant industry certifications are advantageous. 

  • 2 to 3 years experience in cybersecurity operations or SOC environments 

  • Technical Expertise: Solid understanding of security fundamentals, including threat detection, incident response, endpoint and network security.  

  • Reliability: Our customers depend on us to manage their security and provide cyber-resilience, you must be dependable.  

  • Expertise in use of EDR is required. Familiarity with other security tools such as SIEM, SOAR and automation tools firewalls, and other security solutions are desirable.  

  • Incident Response: Experience in responding to and remediating security incidents, including credential theft and malware based attacks.  

  • Threat intelligence: Demonstrable knowledge of current cyber threat actors, their tactics, techniques, and procedures.  

  • Threat Detection: Understanding of security monitoring, threat detection techniques, and the ability to exploit detection systems for optimal performance.  

  • Communication: Clear and concise verbal communication skills, with the ability to work effectively across teams; preferably you should be able to communicate technical findings to a non-technical audience. Able to write and format incident reports and summaries. 

Growth of the service  

  • Continuous Improvement: Work closely with other IT teams, security engineers, and senior SOC members to refine detection processes and improve overall security posture.  

  • Collaboration: Collaborate with SOC analysts, security engineers, and IT teams to ensure seamless operation of security tools and alignment with broader cybersecurity practices.  

  • Security Enhancements: Identify areas for improvement in security monitoring and response capabilities, proposing and assist with implementing new solutions where appropriate.  

  • Collaborating with Global Teams: Work closely with other cyber security teams to ensure seamless integration of SOC operations with our broader cybersecurity initiatives and business units especially Incident Response.  

  • Contributing to Internal Technical Development Initiatives: When the schedule allows, you will have opportunities to participate in and contribute to internal technical development initiatives, enhancing our tools, processes, and overall incident response capabilities.  

  • Self-directed with the ability to prioritize tasks and manage workload efficiently across multiple concurrent onboarding engagements  

The successful candidate must have permission to work in Malaysia by the start of their employment. 

OUR BENEFITS

We offer thoughtful, balanced rewards and support to help our people do their best work and live their lives outside it, including:

  • 20 days paid holiday each year: in addition to public holidays, as well as 1 additional day of leave for every year you work at S-RM up to a maximum of 5 days.
  • Pension scheme: S-RM contributes to Employees Provident Fund (EPF) in accordance with legislative requirements.
  • Life Insurance: help someone you love should something happen to you. (Further details coming soon.)
  • Company-paid private medical and dental insurance. (Further details coming soon.)
  • Company-paid maternity, paternity and fertility treatment leave.
  • Employee Assistance Programme: free access to specialist support services, including counselling, as well as an online portal of useful articles, tips and tools. Available 24/7, 365 days a year.

To apply for this role, please submit an up-to-date CV through this link: Job Application for SOC Shift Leader at S-RM

Job Details

Experience

Management

Apply