Penetration Testing Coordinator

Role: Penetration Testing Coordinator

Location: Kuala Lumpur (WFO)

Role Overview:

This is an Individual Contributor role within the CSS VMIS Hive, focusing on coordination of penetration testing and related cyber risk reduction initiatives. The role will drive change-based initiatives to enhance the Banks capabilities in Application & Infrastructure Vulnerability Management and overall cyber security risk reduction.

Key Responsibilities:

Penetration Testing Coordination

• Coordinate and manage penetration testing projects including project plans, tasks, and follow-up actions.
• Schedule and track independent third-party tests (vulnerability scans, penetration tests, risk assessments).
• Assist in remediation planning and ensure follow-up activities are executed.
• Manage incoming project pipeline from business units: schedule meetings, prepare agendas, document minutes, and escalate issues to the Head of Department.
• Provide regular project updates and maintain status reports, heatmaps, and documentation.
• Coordinate with multiple verticals and stakeholders across the bank to manage vendor-driven penetration testing schedules.
• Manage vendor data and metadata (contracts, renewal dates, vendor information).
• Support teams in defining remediation activities and solutions to address identified vulnerabilities.

Governance:

• Support Programme/Project Manager to ensure delivery aligns with Group Standards and governance frameworks.
• Provide regular status updates, progress tracking, and reporting to governance working groups.
• Monitor compliance with System Development Framework and applicable standards.

Good to Have Skills & Experience:

• Experience in evaluation and validation of security technologies such as Firewalls, IPS, Email/Web Security Gateways, WAF, Vulnerability Management Tools, SIEM, Anti-malware, VPNs, Encryption.
• Prior experience coordinating end-to-end penetration testing projects for a large multinational bank or service organisation.
• Strong stakeholder management, communication, and project coordination skills.