About us:
We are a regional digital bank group, passionately Built With Heart, revolutionizing financial banking services across Southeast Asia. Our mission is to unlock big dreams and drive financial inclusion throughout the region. We believe that real impact starts with people, serving Southeast Asia with empathy, respect, and a commitment to building trust. We have the right foundation—data, technology, and trust—and are looking for individuals who are ready to Own The Mission, taking responsibility for the successful outcomes, impact and legacy we will leave behind. Join us in shaping the future of Digital banking.
Responsibilitie
- sLead implementation and management of endpoint security platforms (EDR/XDR) including tuning, threat detection and response improvement
- sWork closely with SOC team to investigate alerts, respond to incidents and enhance detection rules and playbook
- sAnalyze and act on Indicators of Compromise (IoCs) using threat intelligence to proactively detect and mitigate threat
- sManage and optimize DLP solutions to prevent data exfiltration across endpoints and platform
- sImplement and maintain platform security controls including DNS security, web filtering and browser security hardenin
- gPerform continuous endpoint hardening, vulnerability remediation and attack surface reductio
- nMonitor and respond to DDoS alerts and network-based threats, coordinating with infrastructure team
- sLead IAM platform operations including SailPoint IGA, PAM solutions and endpoint privilege managemen
- tConduct access reviews and regulatory workflows for privileged user
- sCollaborate with risk, cybersecurity, IT and business teams to enforce RBAC and least-privilege access policie
- sEnsure security controls align with policies and regulatory requirements (e.g., BNM FinTips
- )Support incident response activities including containment, eradication and recover
- yEvaluate and implement new security tools, automation and improvements to enhance operational efficienc
- yMaintain technical documentation and operational procedures for security platform
s
Requiremen
- tsMinimum 3–5 years of experience in cybersecurity engineering or operatio
- nsHands-on experience with EDR/XDR platforms including detection tuning and incident handli
- ngStrong experience with DLP, DNS security and endpoint/browser security contro
- lsExperience working with SOC team, SIEM tools and threat intelligence fee
- dsUnderstanding of IoCs, attack techniques and threat hunting concep
- tsFamiliarity with network security and DDoS mitigati
- onExperience in vulnerability management and endpoint hardeni
- ngExperience in IAM/IGA administration, privileged access or enterprise identity manageme
- ntHands-on experience with PAM solutions and endpoint privilege management is a pl
- usAbility to lead compliance programs, access review initiatives and IAM platform improvemen
- tsBasic scripting/automation skills (PowerShell, Python) is a pl
- usStrong analytical and problem-solving skil
ls
