About The Role
We are looking for a Senior IT Security Engineer to join our team at RHB Bank. In this role, you will be responsible for operating, maintaining, and continuously improving the Bank's network security systems and solutions. You will work closely with internal teams, vendors, and stakeholders to ensure network security services are reliable, compliant, and aligned with the evolving threat landscape.
What You Will Be Doing
- Operate, run, and maintain data security systems and solutions, including Firewall, IPS, WAF, NAC, Proxy & Cloudflare.
- Continuously engineer and enhance network security solutions in line with emerging threats and security risks.
- Ensure availability, uptime, and service delivery of data security solutions in accordance with SLA requirements.
- Ensure network security solutions are implemented across all in-scope IT assets and perform ongoing verification to confirm completeness and accuracy of coverage.
- Proactively identify opportunities to enhance and improve data security solutions.
- Manage solution upgrades, patching, and technology refresh activities in line with RHB Group obsolescence, resilience, and patch management frameworks.
- Maintain close working relationships with internal stakeholders, vendors, and principals to deliver high-quality security services.
- Initiate, plan, and execute data security-related projects, including RFI/RFP preparation, technical evaluations, proof of concept (POC), project delivery, and closure.
- Collaborate with internal and external IT security audits and ensure audit findings are addressed within agreed timelines.
- Develop and maintain up-to-date operating manuals and documentation for data security solutions.
What We're Looking For
- Bachelor's degree in IT, Computer Science, or an equivalent qualification.
- Preferred certifications include
- CISSP / CISM / CCSP
- CCNP Security / PCNSE / NSE 6–8 (Fortinet)
- GIAC (GCFW, GCIA, or GPPA)
- Vendor-specific certifications for firewalls, NAC, or WAF technologies
- 3–5 years of working experience in information security or a related field.
- Strong technical knowledge and hands-on experience in the network security domain.
- Good understanding of security and privacy controls, regulatory requirements, and risk management principles.
- Experience in developing and implementing information security policies, standards, and procedures.
- Ability to integrate industry best practices into processes suitable for the RHB environment.
- Strong communication skills with the ability to explain complex technical concepts to both technical and non-technical stakeholders.
- Proven ability to build strong working relationships with business users, management, and vendors.
- Team-oriented, performance-driven, and able to think dynamically to identify, address, and recommend solutions for security risks
