Security Operations Expert (Malaysia)

by Sowmyah Narayanan in Information Technology
Malaysia
Negotiable

Introduction:

Our client is looking for Security Operations Expert to join their team in KL, Malaysia:

Responsibilities:

  • Provide guidance and perform day-to-day security operations management and reporting as 1st line of defense (execution). That includes managing related Request, Incident, Change and Problem tickets for services in scope. 
  • Oversee and drive the following processes:infrastructure security operations, application security, audit remediations, Security Incident and Crisis Management 
  • Drive coverage and reporting of all security scanning tools to all relevant assets in scope. 
  • Monitor, report and drive on compliance to operational service SLA, KPI, KRI with entities for services subscribed to. 
  • Be the extended team of CyberDefense Global team in delivering tools and services to Asia entities. 
  • Be the point of contact within Service Delivery organization for security operations related activities, collaborate across organizational boundaries (e.g. Solution Delivery, Regional & local CISO’s, vendors, etc.) 
  • Be the Subject Matter Expert on security operations matters to detect, respond and defend against malicious attacks and threat actors. 
  • Oversee Security Monitoring and Security Incident process. this include Executive and Client communications, direct resource management and coordination and process oversight from detection to post-mortem / RCA. 
  • Ensure and enforce Information Security relevant controls and process across the entities 
  • Participate as required in global security programs and projects to deliver assigned objectives 
  • Contribute to Audit relevant investigations and their management action plans to remediate the discovered risks. 

Requirements:

Education  Qualifications: 

· Bachelor’s degree in computer science, Engineering, or related fields Experience 

· Experience in IT > 10 years 

· Experience in IT Security > 10 years 

· Experience in Security Operations > 5 years 

· Proven experience in running Security Operations and project works in at least one of the categories below; 

  • Infrastructure Security 
  • Application Security 
  • Project Security Governance 
  • Audit finding and remediation works. 

· In-depth experience of infrastructure and application security domains, architectures and issues. 

· Information Security and/or Information Technology industry certification like CISSP, CCSP, CISM, CISA, CEH, GCIH, GCIA, OSCP, etc. 

· Experience on Cloud Security or Identity Management is a plus 

Skills 

· Cross-cultural sensitivity and flexibility. Appreciate diversity and inclusiveness. 

· Experience with security operations, risk and service delivery frameworks. 

· Familiar with local and regional regulatory requirements for Asia entities; HK MA, SG MA, MY BNM, TH BOT, ID FSA, etc. 

· Knowledge of information security best practices, architecture, standards and threat landscape 

· Customer-centric and strong service delivery skills with escalation management capabilities 

· Strong interpersonal and communication skills; able to deal effectively with diverse skill sets and personalities, works effectively as a team player 

· Organized with a proven ability to prioritize workload, meet deadlines, and utilize time effectively 

· Able to translate technical requirements and communicate at all levels 

· Apply analytical rigor to understand complex business scenarios 

· Ability to function effectively in a matrix structure. 

· Ability to function with minimal supervision 

· Subject Matter Expert knowledge on at least 4-5 topics below; 

  • Infrastructure Security 
  • Architecture review 
  • Identity Management 
  • Network Security 
  • Firewall and IP routing 
  • Intrusion Prevention System 
  • DDoS protection 
  • Secure Web Access 
  • Secure email gateway 
  • Vulnerability and Compliance Management 
  • Penetration Testing 
  • End-Point Security 
  • Malware Protection 
  • End-Point Detection & Response (EDR) 
  • Threat hunting 
  • Data Security 
  • Encryption 
  • Data Leakage Prevention 
  • SIEM 

Application Security 

  • Architecture review 
  • SDLC 
  • SAST & DAST 
  • Web Application Firewall 

Cloud Security 

  • PaaS and IaaS Security 
  •  Data Security 
  •  Cloud compliance 
  •  CASB, CSPM, CWPP 
  •  DevSecOps 

 

Sowmyah Narayanan

Sowmyah Narayanan

For more information about this job opportunity please contact our consultant.

Sign up now for Gemini’s new Job Search platform!

Find the latest job opportunities in Hong Kong, China, Singapore and Thailand! Search and apply for jobs across locations, industries, levels and functions.

Sign up to upload your CV and receive notifications via email or phone when new opportunities are being posted.

Job suggestion for you

Gemini Personnel

Gemini Personnel

Social Links