Executive, Network Security Management (Contract)

Job Summary

This position is tasked with strategic technical operation to support the implementation of regulatory frameworks and related instruments. This role is crucial for enhancing the security, resiliency, and reliability of network infrastructure and services, including critical network information infrastructure. The incumbent will also operationalize strategic initiatives to safeguard the nation's digital assets, protect consumer interests, and align with the National Policy Objectives outlined in the Communications and Multimedia Act 1998 (CMA98).

Job Responsibilities

1. Strategic Monitoring and Threat Detection:

Monitor and analyse cyber threats targeting the communication and multimedia sector, ensuring situational awareness.

Serve as the designated sector-lead for the C&M sector under Malaysia's national security framework.

Identify and utilise threat intelligence to identify threat emerging risks and vulnerabilities.

Identify and implement proactive measures for the early detection of security incidents.

2. Threat Management and Incident Response:

Conduct in-depth analysis of security incidents to understand their nature and impact.

Takedown action on detected threats within existing capabilities to secure network reliability and integrity.

Coordinate with affected entities under MCMC purview to validate incident details and support incident response through regulatory oversight.

Disseminate alerts and advisories related to licensee-specific threats / incidents to relevant stakeholders to prevent wider impact and encourage immediate actions.

3. Vulnerability and Threat Landscape Tracking:

Track vulnerabilities, zero-day threats, and exploits relevant to the C&M sector.

Identify and asses potential impact of vulnerabilities for developing mitigation advisories.

Generate and disseminate timely alerts and advisories regarding potential threats and vulnerabilities and recommended mitigation strategies to relevant stakeholders.

4. Cybercrime Collaborations:

Collaborate with local and international law enforcement agencies, service providers, vendors, and other relevant parties to address and mitigate cyber-dependent crimes, cyber-enabled crimes.

5. International/National Collaborations:

Participate in domestic and international forums such as ASEAN, ITU, APECTEL, to promote cooperation, information exchange, standards development, and collective security.

6. Security Simulations and Drills:

Support preparation and execution of security simulations and sector-wide cyber drills with the involvement of C&M industry where applicable, to strengthen Malaysia's network security readiness

Participate in national and international cybersecurity simulations and exercises (e.g., ASEAN, ITU, APCERT) to test sectoral readiness, enhance coordination mechanisms, and strengthen cross-border response capabilities.

7. Network Security Expert Services:

To offer network security expert services to internal and external stakeholders in security incidents management, ensuring the security and resiliency of network and systems.

8. Technology Risks:

Research and track the evolution and emergence of new technologies and risks (such as Al & machine learning, quantum computing, etc.) to manage the associated security risks arising from these technologies.

9. Capacity Development:

Plan and organise capacity development programs to address gaps within the department and within the C&M industry in the area of information and network security.

10. Performance Management:

Comply with established department procedures to ensure accountability and effective performance management.

Be on standby during specified periods to promptly address any ad-hoc cybersecurity incidents or issues outside regular working hour.

Prepare relevant reports as required.

Maintain accurate and updated records and information of the department.

Qualification & Work Experience

Degree in Computer Science or Information Technology

Minimum 1-2 years working experience in regulatory and/or information and cyber security domain.

Technical Competencies

IT / Information Security

Risk Identification and Management

Project Conceptualization & Management

Incident Management

Strategic Communications

Public and Government relations

Social Media Management

Performance Management

Business Process Management

Governance and Auditing

Legal/Judicial knowledge.

Behavioral Competencies

Integrity

Customer orientation

Achievement Orientation

Problem Solving

Analytical Thinking

Negotiation Skills

Stakeholder Management

Teamwork

Communications and Presentation Skills

Writing skills (BM & English)

1. Candidate must be willing to work in Cyberjaya (On-site)
2. Malaysian Citizen
3. This is a contract based role