Cyber Security Specialist

RiDiK (a Subsidiary of CLPS. Nasdaq : CLPS)Kuala Lumpur, Kuala Lumpur, Malaysia

20 hours ago

Job description

Work Location : KL, Malaysia

Job Type : 12+ Years Contract

Firewall Management (Fortigate, Sangfor)

Administer, monitor, and optimize firewall policies and rules.
Perform regular policy reviews and cleanup of unused / obsolete rules.
Monitor logs for intrusion attempts, anomalies, and policy violations.
Manage VPN configurations (site-to-site and remote access).
Conduct firmware updates, backups, and health checks.
Coordinate with network teams on connectivity and segmentation improvements.
Liaise with NOC (vendor) on firewalls monthly report, change request or technical changes as required.

Microsoft 365 Security & Compliance (Intune MDM, Exchange Online, Security)

Manage and enforce endpoint (mobile device) compliance policies via Intune MDM.

Implement and maintain Conditional Access, device encryption, and application protection policies.

Monitor and remediate Exchange Online threats (phishing, spoofing, spam) and configure policies or rules (if applicable).

Review and optimize Microsoft 365 security posture using Secure Score and compliance reports.

Nessus Scanning (On-Prem Tenable)

Administer and maintain the on-premises Tenable Nessus scanning platform.

Schedule and perform regular vulnerability scans across all designated network segments and critical assets.

Analyze scan results, prioritize vulnerabilities, and coordinate remediation efforts with relevant teams.

Update scan policies, plugins, and credentials to ensure comprehensive coverage and up-to-date detection capabilities.

Generate and distribute vulnerability assessment reports to stakeholders and management.

Ensure compliance with internal security standards and regulatory requirements through ongoing scanning and reporting.

Collaborate with Digital teams to address scan findings and improve overall security posture.

Monitor, triage, and respond to security alerts generated by CrowdStrike Falcon platform.

Coordinate with Falcon Complete Team for incident validation, containment, and remediation.

Review Identity Threat Protection and Exposure Management dashboards to identify vulnerabilities and misconfigurations.

Maintain, improve cybersecurity platform / appliances logs and alerts into NextGen SIEM and Fusion SOAR platforms for automated correlation and response.

Perform periodic health checks to ensure endpoint coverage, sensor version consistency, and policy compliance.

Track and remediate endpoints that are offline, unprotected, or misconfigured.

Conduct threat hunting activities using Falcon Insight to detect potential compromises.

Generate, review, and consolidate weekly and monthly reports covering :

Threat types (malware, behavioral detections, identity-based attacks)

Detection trends, endpoint status, and incident summary

Endpoint coverage metrics and remediation timeline

False positive analysis and tuning recommendations

Present consolidated reports to Section Head, IT Infrastructure & Security summarizing threat posture, incident trends, and improvement actions.

Network Access Control (EasyNAC)

Manage onboarding and enforcement policies for endpoints connecting to the corporate network.

Monitor unauthorized devices and enforce access control rules.

Coordinate with IT operations for exception handling and remediation.

Generate compliance reports and maintain NAC inventory integrity.

Secure Email Gateway (Mimecast)

Administer and optimize email security policies, including spam filtering, malware detection, and impersonation protection.

Maintain and update allow / block lists, URL protection, and attachment management rules.

Review and release quarantined messages in accordance with established security policies.

Analyze email security alerts and trends to identify emerging threats or policy gaps.

Work closely with the Digital Governance & Compliance team to plan and execute cybersecurity awareness and phishing simulation campaigns.

Enhance user protection by reviewing and improving the CyberGraph AI feature, ensuring better detection of targeted phishing attempts.

Raise and track support tickets with Mimecast Support and coordinate with local partner / vendor for troubleshooting, configuration changes, or feature enhancements.

Generate and consolidate monthly reports summarizing :

Phishing and spam trends

Users click-rate statistics from awareness campaigns

Policy performance and false positive rates

Improvement actions or configuration changes implemented

Conduct periodic policy reviews to align with evolving email threat landscapes and compliance requirements.

Monitor network traffic for behavioral anomalies and lateral movement attempts.

Investigate alerts and collaborate with NDR MDR Team and local Digital Team for incident response.

Maintain and improve CrowdStrike integration for unified threat correlation.

Perform tuning of detection rules and exclusions to reduce false positives.

Conduct regular threat hunting based on AI-driven insights.

Privileged Access Management (PAM)

Administer and maintain the PAM platform, ensuring secure management of privileged accounts across systems, servers, and network devices.

Enforce least-privilege access policies and maintain proper account lifecycle management for all privileged identities.

Configure and monitor session recording, credential vaulting, and automatic password rotation features.

Review access logs, privileged session activities, and alerts for suspicious or unauthorized behavior.

Conduct periodic access reviews with system owners to validate privilege appropriateness and compliance.

Oversee integration of PAM with key systems such as Active Directory, critical servers, firewalls, and network devices.

Ensure system health, backups, and high availability configurations are functioning correctly.

Coordinate with internal IT and cybersecurity teams for onboarding new systems or applications into PAM.

Manage and communicate with assigned local partner (Managed Service Provider) responsible for day-to-day PAM operations, including :

Overseeing service delivery and ensuring adherence to SLAs

Reviewing MSP performance reports, incident logs, and maintenance activities

Approving configuration changes and enhancements proposed by the MSP

Escalating and tracking technical issues or service gaps until resolution

Conducting periodic service review meetings to ensure continuous improvement and compliance with security standards

Generate and consolidate monthly management reports summarizing :

Privileged account activities and usage trends

Access anomalies or violations detected

Password rotation compliance and policy status

MSP performance metrics and support issues

Recommend improvements to PAM configuration, policies, and operational processes to strengthen overall identity and access security posture.

Vulnerability Assessment and Penetration Testing (VAPT)

Coordinate with external vendors for annual VAPT exercises.

Facilitate scope definition, testing schedule, and access provisioning.

Review VAPT reports and track remediation with system owners.

Validate closure of identified vulnerabilities and maintain audit trail.

Update to Section Head, IT Infrastructure & Security reports summarizing findings and remediation progress.

Project Management for Cybersecurity Initiatives

Plan, coordinate, and manage cybersecurity projects from initiation to completion.

Define project scope, objectives, deliverables, and timelines aligned with organizational goals.

Work with internal stakeholders and external vendors to ensure smooth implementation.

Monitor progress, manage risks, and resolve issues to keep projects on track.

Oversee procurement, budget, and resource allocation for security initiatives.

Ensure all project activities follow change management and compliance requirements.

Prepare regular status updates and post-implementation reports for management.

Private Cloud Security & Compliance Oversight

Act as the primary cybersecurity liaison between client and the private cloud service provider.

Review and validate the provider’s security posture, including patching cadence, access management, and vulnerability remediation.

Ensure network segmentation, firewall, and VPN configurations between client and the provider align with internal policies.

Coordinate and validate backup integrity, data encryption, and incident response readiness with the provider.

Participate in monthly or quarterly service review meetings to discuss performance, incidents, and improvement actions.

Review and track security SLA metrics (e.g., uptime, incident response time, patching timelines).

Ensure the provider complies with contractual security obligations, including data protection, PDPA compliance, and ISO 27001 or SOC 2 standards (if applicable).

Validate that log forwarding and security event integration (from the cloud workloads) are properly feeding into CrowdStrike SIEM or relevant monitoring tools.

Coordinate with the provider to support vulnerability scanning, VAPT, or audit evidence collection when required.

Document and escalate any security gaps, exceptions, or non-compliance findings to the Section Head, IT Infrastructure & Security, and track remediation progress.

Review and approve the provider’s change management or maintenance activities impacting security controls or system availability.

Others

Recommend enhancements to security controls and architecture.

Keep abreast of emerging threats and technology updates.

Participate in security projects and proof-of-concepts (POC) for new tools or integrations.

#J-18808-Ljbffr

Create a job alert for this search

Security Specialist • Kuala Lumpur, Kuala Lumpur, Malaysia

Related jobs

Promoted

Security Specialist

Advanced Micro DevicesCyberjaya, Selangor, Malaysia

WHAT YOU DO AT AMD CHANGES EVERYTHING.At AMD, our mission is to build great products that accelerate next-generation computing experiences – from AI and data centers, to PCs, gaming and embedded sy...Show moreLast updated: 30+ days ago

Sr Cyber Security Engineer

Flintex Consulting Pte LtdKuala Lumpur, 14, my

Quick Apply

Security Architecture & Engineering.Design and implement enterprise-wide security infrastructure and architecture.Evaluate and recommend security tools and technologies.Ensure security is embed...Show moreLast updated: 30+ days ago

Promoted

Information Security Assessor – QSA Certified (W2, FT)

RSI SecurityKepong, Kuala Lumpur, Malaysia

WE ARE HIRING : Information Security Assessor – QSA Certified.Competitive salary + commission eligibility.Potential travel to client sites as required. RSI Security is a trusted leader in cybersecuri...Show moreLast updated: 4 days ago

Cybersecurity Analyst (Cloud Security)

Upscale Sdn BhdKuala Lumpur, Malaysia

Quick Apply

We are seeking a passionate and detail-oriented.CCSP (Certified Cloud Security Professional).The ideal candidate will be responsible for protecting the organizations cloud infrastructure, ensuring ...Show moreLast updated: 14 days ago

Promoted
New!

Network & Security Engineer

SwisslogPetaling Jaya, Selangor, Malaysia

Swisslog is a world‑leading robotics company that harnesses technology to shape the future of intralogistics.As part of the KUKA Group, we are transforming performance and efficiency for customers ...Show moreLast updated: 20 hours ago

Promoted
New!

Application Security Specialist

bpKuala Lumpur, Kuala Lumpur, Malaysia

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia.Application Security Specialist.This team drives the response and management of cyber incidents, using an intelligence‑led approach for ide...Show moreLast updated: 18 hours ago

Promoted
New!

Cybersecurity Specialist

Razer Inc.Kuala Lumpur, Kuala Lumpur, Malaysia

Bangsar South, Federal Territory of Kuala Lumpur, Malaysia.Cybersecurity Specialist Role at Razer Inc.Joining Razer will place you on a global mission to revolutionize the way the world games.Razer...Show moreLast updated: 20 hours ago

Promoted
New!

Security Operations Specialist (Vulnerability Management)

AXA Group OperationsPuchong, Selangor, Malaysia

Security Operations Specialist (Vulnerability Management).Be among the first 25 applicants.Direct message the job poster from AXA Group Operations. As a world-leading insurance company, we act for h...Show moreLast updated: 20 hours ago

Promoted
New!

Senior IT Security Engineer

TechLab Security Sdn BhdKuala Lumpur, Kuala Lumpur, Malaysia

The role involves hands‑on management of.The ideal candidate is a technically strong and proactive professional with a passion for operational excellence, automation, and continuous improvement in ...Show moreLast updated: 20 hours ago

Promoted

Senior Cyber Security Consultant (Security Testing)

Rajah & Tann CybersecurityKuala Lumpur, Kuala Lumpur, Malaysia

Senior Cyber Security Consultant (Security Testing).Be among the first 25 applicants.We are looking for dynamic and driven individuals to join our growing multi-disciplinary team of cybersecurity p...Show moreLast updated: 22 days ago

Promoted

Associate Technical Consultant (Network & Security)

People ProfilersSubang Jaya, Selangor, Malaysia

Associate Technical Consultant.This role focuses on engaging with clients, understanding their business and technical needs, and delivering solutions that align with their goals across cloud, netwo...Show moreLast updated: 30+ days ago

Cyber Threat Intelligence Senior Analyst

Axiata Digital LabsKuala Lumpur, Malaysia

We are seeking a highly skilled and motivated Cyber Threat Intelligence Senior Analyst to join our .The successful candidate will be responsible for identifying, analyzing, and .This role...Show moreLast updated: 12 days ago

Promoted

Engineer, Workplace IT Security

Singtel GroupKuala Lumpur, Kuala Lumpur, Malaysia

Workplace IT Security Engineer.Workplace IT security solutions.The key focus is to develop security related workflows, process and automation procedures. He / She should be able to proactively identi...Show moreLast updated: 30+ days ago

Promoted

Security Solution Lead

AFFIN GroupCyberjaya, Selangor, Malaysia

Create your future with Affin! You too can make a difference.Join us at AFFIN, where the open minds meet and be inspired by a shared commitment to great work. Here, you don’t just stay at the forefr...Show moreLast updated: 30+ days ago

Promoted

Senior Network Engineer (Network Security)

DHL GermanyCyberjaya, Selangor, Malaysia

Senior Network Engineer (Network Security).With a global team of 5600+ IT professionals, DHL IT Services.Our offices in Cyberjaya, Prague, and Chennai have earned. At IT Services, we are passionate ...Show moreLast updated: 30+ days ago

Promoted
New!

Network & Security Engineer

Swisslog Holding AGPetaling Jaya, Selangor, Malaysia

Where do people love what they do, and being great at what they do?.At Swisslog, that’s where! Our teams are the heart of a world-leading Robotics company that’s harnessing the power of technology ...Show moreLast updated: 20 hours ago

Promoted
New!

Operational Security Management Specialist

BP PLCShah Alam, Shah Alam, Malaysia

Operational Security Management Specialist page is loaded## Operational Security Management Specialistremote type : This position is a hybrid of office / remote workinglocations : Malaysia - Kuala ...Show moreLast updated: 18 hours ago

Promoted
New!

DevOps Security Engineer

HFMKuala Lumpur, Kuala Lumpur, Malaysia

HFM Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia.HFM is an internationally acclaimed multi-asset broker, delivering cutting‑edge trading tools, platforms, and conditions to traders wor...Show moreLast updated: 20 hours ago