Overview

• Salary

  5,500 MYR ~ 12,500 MYR

• Industry

  Finance(Other)

• Job Description

  • Specialize in IT System/Infrastructure Security; engineer, implement and monitor security measures for the protection of computer systems, networks and information to ensure that all IT related security components are implemented in accordance with the compliance against Information Security Policy and Management Standards, Statutory Legal and Regulatory requirements.
  • Oversee all day-to-day IT security incidents/administration/health check current servers and network infrastructure security control. Identify IT risks, threats and vulnerabilities in the company’s technology infrastructure. Analyze and report computer network/servers/Application security breaches or attempted breaches. Investigate security incidents, updates and documents security control, perform risk assessments, take appropriate action to minimize harm and make recommendation to corrective action. Maintain incident documentation, participate in post-mortems and write incident reports.
  • Participate in IT security assessment review and analysis of business risks and creation of IT security requirements and controls ensure that all IT related security components are implemented in accordance with the compliance guidelines. Take ownership; evaluate and recommend information related IT security control/enhancements/projects. If need be in correcting security vulnerabilities by configure, implement, monitor and support IT security software/systems that will help secure compliance with regulatory, industry, corporate policies and procedures.
  • Serve & being the in-house subject matter expert & provide IT security advice, guidance and work with others team members in designing and implementing IT security control initiatives and risk mitigation/remediation. Responsible for recommending, implementing and managing security controls for system, network, application by design system security architecture and develop detailed security designs.
  • Centrally facilitate and interacts with internal and external audit engagement, facilitate remediation based on agreed recommendation and associated risks pertaining to SOX, Global Information Security Group or any others Corporate requirement. Periodical tracking and following-up with relevant part to ensure audit and compliance gaps are addressed and rectified according to committed timeline.
  • Establish and maintains IT security related policies, procedures and guidelines. Periodically reviewing the security related guideline and control to ensure the efficiency and effectiveness of the information security controls as a whole, recommending improvements wherever is necessary. Develop comprehensive reports including assessment-based findings, outcomes and propositions for further system security enhancement.