Avensys is a reputed global IT professional services company, and our service spectrum includes enterprise solution consulting, business intelligence, business process automation and managed services. And we service a client base across banking and financial services, insurance, information technology, healthcare, retail, and supply chain.
We are currently looking to hire Senior Security Engineer. This is an exciting opportunity to expand your skill set, achieve job satisfaction and work-life balance. More details as below.
JOB TYPE:
12 Months Renewable contract
ROLES AND RESPONSIBILITIES
- Develop and maintain security contingency plans (DR, BCP, Incident Response).
- Ensure compliance with regulatory and contractual security requirements.
- Conduct risk assessments, vulnerability scans, penetration testing, and manage remediation.
- Design, implement, and maintain security architecture and tools (firewalls, EDR, AV, encryption, IAM).
- Embed security-by-design into new systems and infrastructure.
- Manage third-party security risk and support audits.
- Maintain security documentation, risk registers, and system configurations.
- Manage patching, upgrades, PKI, certificates, and automation of security controls.
- Monitor EDR, MSSP/MDR alerts, logs, and ITSM queues.
- Investigate security incidents and respond using defined incident response plans.
- Coordinate with MSSP/MDR providers and internal stakeholders.
- Perform forensic support and incident reporting.
- Monitor identity and access misuse and detect suspicious activities.
- Deliver security awareness training and share threat intelligence
- Regular tool updates, log reviews, vulnerability scanning, and patch management.
- User access reviews, firewall audits, backup verification, and restoration testing.
- Monitoring of privileged accounts and enforcement of password and MFA policies.
REQUIREMENTS
- Bachelor's degree in Computer Science, Information Technology, Cyber Security, or a related field.
- 25 years of hands-on experience in cyber security engineering and/or security operations.
- Experience working with MSSP/MDR providers and EDR platforms.
- Strong knowledge of cyber security principles, incident response, and risk management.
- Hands-on experience with:
- EDR, antivirus, endpoint protection tools
- Firewalls, network security, and encryption
- Vulnerability scanning and penetration testing
- Patch management and system hardening
- Identity and Access Management (IAM)
- Familiarity with security monitoring, log analysis, and alert handling.
- Experience with PKI, certificates, and access controls is an advantage.
- Understanding of security standards and frameworks (e.g. ISO 27001, NIST, CIS).
- Experience supporting internal and external security audits.
- Knowledge of third-party risk management and vendor security assessments.
- Basic scripting/automation skills (PowerShell, Bash, or similar) preferred
WHAT'S ON OFFER
You will be remunerated with an excellent base salary and entitled to attractive company benefits. Additionally, you will get the opportunity to enjoy a fun and collaborative work environment, alongside a strong career progression
To submit your application, please apply online or email your UPDATED CV in Microsoft Word format to [Confidential Information]. Your interest will be treated with strict confidentiality.
CONSULTANT DETAILS
Consultant Name : Emimal Mary
Reg No : 201201037177
Avensys Consulting Sdn Bhd
Privacy Statement: Data collected will be used for recruitment purposes only. Personal data provided will be used strictly in accordance with the relevant data protection law and Avensys privacy policy.
