Responsibility- Safeguards information system assets by identifying and solving potential and actual security problems.
Protects system by defining access privileges, control structures, and resources.- Recognizes problems by identifying abnormalities; reporting violations.
Implements security improvements by assessing current situation; evaluating trends; anticipating requirements.
- Determines security violations and inefficiencies by conducting periodic audits.
Perform vulnerability checks and scan- Cloud Security knowledge and standards is essential and must have, including Mobile Security, Application Security and API Security
Upgrades system by implementing and maintaining security controls.
- Keeps users informed by preparing performance reports; communicating system status.
Maintains quality service by following organization standards.- Strong understanding and knowledge on Regulatory and statutory requirements, such as BNM RMIT, PDPA requirements and industry equivalents
Maintains technical knowledge by attending educational workshops; reviewing publications.
- Contributes to team effort by accomplishing related results as needed.
- Bachelors degree in Computer Science, Information Systems, or equivalent education or relevant work experience
Minimum 2 years of prior relevant experience
- Advanced certifications such as CISSP, CISM and or ISO270001 knowledge will be added advantage.
Additional knowledge on SIEM-specific, log management training and certification- Ability to generate relevant CyberSecurity reports, and/or any threats and vulnerability reports
Have experience with Cybersecurity solutions in the industry, especially Financial services industry would be a major plus
- Cloud related security experience and knowledge is a must
Advanced understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth, Cloud security, zero-trust security and other common security elements.- Hands-on experience analyzing high volumes of logs, network data (e.g. Netflow, FPC), and other attack artifacts in support of incident investigations and threat detections
Experience with vulnerability scanning solutions
- Proficiency with any of the following: Anti-Virus, End-Point Protection (EPP), EDR/XDR, HIPS, ID/PS, Full Packet Capture, Host-Based Forensics, Network Forensics, and RSA Security, SSL, Data Encryption and protection tools
In-depth knowledge of architecture, engineering, and operations of at least one enterprise one SIEM platform or equivalent- Experience developing and deploying signatures (e.g. YARA, Snort, Suricata, HIPS)
Understanding of mobile technology and OS (i.e. Android, iOS, Windows and Linux), Cloud Technology and Alibaba Cloud Technology will be added advantage
EPF/SOCSO, Performance Bonus, Annual Leave
Job Type: Full-time
Pay: RM4,
- 00 - RM6,000.00 per month
Benefits: - Maternity leave
Professional development
Supplemental Pay:
Ability to commute/relocate:
- Kuala Lumpur: Reliably commute or planning to relocate before starting work (Required)
Education:
Experience:
* IT: 2 years (Preferred)
