This job offer is not available in your country.
senior executive, security rules and framework, it cyber security
Agensi Kaunseling & Pengurusan Kredit [AKPK]Kuala Lumpur, Kuala Lumpur, Malaysia5 hours ago
Job descriptionServe as a key member of the Incident Response Team, supporting investigation, containment, and recovery efforts Collaborate with SOC, governance, and IT teams to ensure alignment of security controls and incident handling procedures Lead and mentor junior analysts in the Security Rules and Framework team Conduct security awareness training and promote a culture of cybersecurity across the organization Oversee the secure configuration and operation of security technologies including firewalls, SWG, NGAV, IDS / IPS, WAF, and Email Gateways Monitor and evaluate the effectiveness of implemented controls recommend improvements Understanding of security best practices, administration and governance of the provided services including identify and evaluate security gaps and will help to create security project plans Participate in evaluate, implement, maintain, and support IT Security related systems / devices / projects Balancing strategic policy development with hands-on technical oversight Ensuring compliance while adapting to rapidly changing threat landscapes Coordinating across departments and managing stakeholder expectations Work on-premises and cloud-based infrastructure May require extended hours during audits, incidents, or major implementations Dynamic, multicultural environment requiring strong interpersonal and communication skills Minimum 5 years in cybersecurity, with strong exposure to policy, compliance, and technical controls Demonstrable experience in network security management and authorization approaches (role-based access control, direct entitlements-based) specific to SWG, NGAV, Firewall, IDS / / PS, WAF, Network TAP & Email Gateway Technically competent and kept abreast with network security architecture best practices, standards and frameworks. Broad-based working knowledge of IT Platform, identity federation, networking, application, database, infrastructure and / or server administration Ability to constantly monitor, detect, and evaluate events which may impact monitored assets, to increase situational awareness of cloud security events that threaten the operations of the networks or systems. Experience in identifying and documenting, tracking and remediating IT audit risks, security risk assessment, assessing IT risk, designing IT controls, business process controls. Bachelor's degree in Computer Science, Information Systems, or related field Preferred certifications include CISSP or CISM, ISO 27001 Lead Implementer, or equivalent Strong understanding of security frameworks, risk management, incident response, and technical controls
JOB PURPOSE
To lead the development, implementation, and continuous improvement of cvbersecurity policies, rules, and frameworks that govern the organization's digital security posture. The role includes managing compliance with regulatory standards, supporting incident response, and collaborating across departments to ensure robust protection mechanisms are in place. The analyst will also mentor junior staff and contribute to strategic security initiatives
KEY RESPONSIBILITIES
1. Policy & Framework Development
- Design, implement, and maintain cybersecurity policies, standards, and frameworks aligned with industry best practices and regulatory requirements (e.g., ISO 27001, PDPA, CIS)
- Lead periodic reviews and updates of security documentation to reflect evolving threats and technologies
- Develop protection mechanisms and controls to safeguard systems, applications, and data
2. Incident Response & Collaboration
3. Team Leadership & Awareness
4. Technology Oversight
5. Project Management
Job Challenge
WORKING CONDITION
WORKING EXPERIENCE
QUALIFICATION
Create a job alert for this search
Senior Executive • Kuala Lumpur, Kuala Lumpur, Malaysia