Job Scope: Senior Network Security Consultant
- Security Architecture & Design
- Design and implement secure network architectures for enterprise and cloud environments.
- Evaluate and recommend security solutions and enhancements to improve overall security posture.
- Security Assessment & Audit
- Conduct risk assessments, vulnerability scans, and penetration testing.
- Perform compliance checks and audits based on standards and local regulations (e.g., NACSA, PDPA).
- Incident Response & Threat Management
- Lead investigation and remediation of security incidents and breaches.
- Develop and maintain incident response procedures and playbooks.
- Solution Deployment & Integration
- Plan and execute deployment of security solutions such as firewalls, SIEM, IDS/IPS, VPN, endpoint protection, and DLP.
- Integrate security tools with existing infrastructure and ensure operational efficiency.
- Client Consultation & Reporting
- Act as a trusted advisor to clients, providing technical consultation and security recommendations.
- Prepare technical reports, security assessments, and executive summaries for stakeholders.
- Team Leadership & Knowledge Sharing
- Mentor junior consultants and technical teams.
- Conduct internal and external training or knowledge-sharing sessions.
- Project Management
- Lead or participate in project planning, scheduling, and delivery of security engagements.
- Ensure projects are delivered within scope, timeline, and budget.
- Continuous Improvement
- Stay current with evolving threats, technologies, and regulatory requirements.
- Contribute to the development of new methodologies and tools for internal use.
Experiences, Skills And Qualifications
Skills and qualifications will include:
- Must have degree or diploma in Computer Science, Engineering and Information Systems or related, with a focus or major in IT Security being highly desirable
- Must have at least 3 years of strong hands-on experience in IT Security with at least 2 years in technical solutioning and presale will be advantage
- Must have experience working in a customer-facing role and comfortable presenting to a small to medium audiences on both technical and business related topics
- Good to have working experience in a MSS or familiar with the operation of a Security Operation Center (SOC)
- Must have working technical knowledge of security technologies (across multiple domains such as Firewall, Network IPS, SIEM, DLP, Cryptography, Identity & Privilege Access Management, Web & Data Security, Cloud Security, etc.), information security concepts and familiar with security products (Checkpoint, Palo Alto, Cisco, Imperva, Splunk, Log Rhythm, Fortinet, McAfee, Utimaco, etc.) and the security market place.
- Experience in preparing technical architecture blueprint and responding to large scale complex RFP is highly desirable
- Professional security related qualification such as CISSP, CEH, CISM, CRISC, CISA, GIAC or equivalent are highly desirable
- Working knowledge and familiarity with GRC and Offensive Security consulting services (e.g. penetration testing, PCI audit, security assessment) is highly desirable (pre-sales perspective)
- Working knowledge and familiarity with Virtualization and Cloud technology is desirable
- Broad experience and understanding of regulatory framework and guidelines in the region is highly desirable
- Broad experience and understanding of security trend, threat landscape and framework such as the cyber kill-chain
- Excellent oral and written communication skills (in English & Bahasa Melayu )
Interested candidates please submit your application through Jobstore
