Job Title: Sr. Cybersecurity Specialist
Location: KL, Malaysia
Locals, Locally available in Malaysia can also apply
Job Overview: We are seeking an experienced and skilled Cybersecurity Specialist to join our dynamic Cybersecurity team. With a minimum of 5 years of experience in cybersecurity, you will be responsible for protecting Company networks, applications, systems, and data from cyber threats. The ideal candidate will have a deep understanding of cybersecurity best practices, risk management, and a proactive approach to threat mitigation.
Key Responsibilities:
- Risk Assessment & Management: Review vulnerability reports, supervise penetration testing, and risk analysis to identify and mitigate potential threats to Company IT infrastructure.
- Incident Response & Investigation: Lead the response to security incidents, including investigation, containment, eradication, and recovery efforts. Prepare root cause analysis reports and develop and implement incident response protocols and reporting processes.
- Security Architecture & Design: Collaborate with IT teams to design and implement secure network, system, and application architectures. Ensure security is integrated throughout the development lifecycle.
- Threat Intelligence & Monitoring: Monitor networks and systems for signs of potential security breaches using SIEM tools, threat intelligence platforms, and security logs. Analyse data to identify trends and emerging threats.
- Compliance & Governance: Ensure Companies security practices comply with regulatory standards (e.g.PCI-DSS, GDPR, PDPA, ISO 27001, etc). Assist in internal and external audits and help maintain necessary certifications.
- Collaboration: Work closely with other IT Teams and Business Units to integrate security into all aspects of IT operations and provide guidance on security best practices.
- Security Policy Development: Develop and implement security policies and procedures to protect company information assets.
- Documentation & Reporting: Maintain up to date documentation of security incidents, risk records, policies, and procedures. Provide regular reports to management on security posture and ongoing projects.
Qualifications:
- Education: Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent work experience).
- Experience: Minimum of 5 years of experience in cybersecurity, with a focus on Web application security, network security, incident response, and vulnerability management.
- Certifications: Certified Ethical Hacker (CEH) or equivalent (preferred). Other relevant certifications such as CompTIA Security+, CISM, or CISA are a plus.
Skills and Competencies:
- Strong knowledge of security frameworks (e.g., NIST, ISO 27001).
- Proficiency in using SIEM tools (Sentinel, Splunk, etc.) and other security technologies (firewalls, Mobile Device Management, Endpoint Protection).
- Experience with vulnerability scanning tools and penetration testing tools.
- In-depth understanding of network protocols (TCP/IP, HTTP, DNS, etc.) and common attack vectors (DDoS, SQL injection, phishing, etc.).
- Experience with cloud security platforms (Azure, AWS, etc).
- Familiarity with regulatory compliance requirements (PCI-DSS, PDPA, etc.).
- Strong analytical skills and the ability to prioritise and manage multiple tasks.
- Excellent communication skills, both verbal and written, with the ability to explain technical concepts to non-technical stakeholders.
Interested Candidates can send their resume to below
Email: [Confidential Information]
