Cyber Security ConsultantCLPS Global • Kuala Lumpur, Kuala Lumpur, Malaysia
Cyber Security Consultant
CLPS Global • Kuala Lumpur, Kuala Lumpur, Malaysia
7 hari lalu
Penerangan pekerjaanManage and enforce endpoint (endpoint, mobile device) compliance policies via Intune MDM. Implement and maintain Conditional Access, device encryption, and application protection policies. Monitor and remediate Exchange Online threats (phishing, spoofing, spam) and configure policies or rules (if applicable). Review and optimize Microsoft 365 security posture using Secure Score and compliance reports. Administer and maintain the on-premises Tenable Nessus scanning platform. Schedule and perform regular vulnerability scans across all designated network segments and critical assets. Analyze scan results, prioritize vulnerabilities, and coordinate remediation efforts with relevant teams. Update scan policies, plugins, and credentials to ensure comprehensive coverage and up-to-date detection capabilities. Generate and distribute vulnerability assessment reports to stakeholders and management. Ensure compliance with internal security standards and regulatory requirements through ongoing scanning and reporting. Collaborate with Digital teams to address scan findings and improve overall security posture. Monitor, triage, and respond to security alerts generated by CrowdStrike Falcon platform. Coordinate with Falcon Complete Team for incident validation, containment, and remediation. Review Identity Threat Protection and Exposure Management dashboards to identify vulnerabilities and misconfigurations. Maintain, improve cybersecurity platform / appliances logs and alerts into NextGen SIEM and Fusion SOAR platforms for automated correlation and response. Perform periodic health checks to ensure endpoint coverage, sensor version consistency, and policy compliance. Track and remediate endpoints that are offline, unprotected, or misconfigured. Conduct threat hunting activities using Falcon Insight to detect potential compromises. Generate, review, and consolidate weekly and monthly reports covering : Threat types (malware, behavioral detections, identity-based attacks) Detection trends, endpoint status, and incident summary Endpoint coverage metrics and remediation timeline False positive analysis and tuning recommendations Present consolidated reports to Section Head, ITInfrastructure & Security summarizing threat posture, incident trends, and improvement actions. Manage onboarding and enforcement policies for endpoints connecting to the corporate network. Monitor unauthorized devices and enforce access control rules. Coordinate with IT operations for exception handling and remediation. Generate compliance reports and maintain NAC inventory integrity. Administer and optimize email security policies, including spam filtering, malware detection, and impersonation protection. Maintain and update allow / block lists, URL protection, and attachment management rules. Review and release quarantined messages in accordance with established security policies. Analyze email security alerts and trends to identify emerging threats or policy gaps. Work closely with the Digital Governance & Compliance team to plan and execute cybersecurity awareness and phishing simulation campaigns. Enhance user protection by reviewing and improving the CyberGraph AI feature, ensuring better detection of targeted phishing attempts. Raise and track support tickets with Mimecast Support and coordinate with local partner / vendor for troubleshooting, configuration changes, or feature enhancements. Generate and consolidate monthly reports summarizing : Phishing and spam trends Users click-rate statistics from awareness campaigns Policy performance and false positive rates Improvement actions or configuration changes implemented Conduct periodic policy reviews to align with evolving email threat landscapes and compliance requirements. Monitor network traffic for behavioral anomalies and lateral movement attempts. Investigate alerts and collaborate with NDR MDR Team and local Digital Team for incident response. Maintain and improve CrowdStrike integration for unified threat correlation. Perform tuning of detection rules and exclusions to reduce false positives. Conduct regular threat hunting based on AI-driven insights. Administer and maintain the PAM platform, ensuring secure management of privileged accounts across systems, servers, and network devices. Enforce least-privilege access policies and maintain proper account lifecycle management for all privileged identities. Configure and monitor session recording, credential vaulting, and automatic password rotation features. Review access logs, privileged session activities, and alerts for suspicious or unauthorized behavior. Conduct periodic access reviews with system owners to validate privilege appropriateness and compliance. Oversee integration of PAM with key systems such as Active Directory, critical servers, firewalls, and network devices. Ensure system health, backups, and high availability configurations are functioning correctly. Coordinate with internal IT and cybersecurity teams for onboarding new systems or applications into PAM. Manage and communicate with assigned local partner (Managed Service Provider) responsible for day-to-day PAM operations, including : Overseeing service delivery and ensuring adherence to SLAs Reviewing MSP performance reports, incident logs, and maintenance activities Approving configuration changes and enhancements proposed by the MSP Escalating and tracking technical issues or service gaps until resolution Conducting periodic service review meetings to ensure continuous improvement and compliance with security standards Generate and consolidate monthly management reports summarizing : Privileged account activities and usage trends Access anomalies or violations detected Password rotation compliance and policy status MSP performance metrics and support issues Recommend improvements to PAM configuration, policies, and operational processes to strengthen overall identity and access security posture. Coordinate with external vendors for annual VAPT exercises. Facilitate scope definition, testing schedule, and access provisioning. Review VAPT reports and track remediation with system owners. Validate closure of identified vulnerabilities and maintain audit trail. Update to Section Head, IT Infrastructure & Security reports summarizing findings and remediation progress. Plan, coordinate, and manage cybersecurity projects from initiation to completion. Define project scope, objectives, deliverables, and timelines aligned with organizational goals. Work with internal stakeholders and external vendors to ensure smooth implementation. Monitor progress, manage risks, and resolve issues to keep projects on track. Oversee procurement, budget, and resource allocation for security initiatives. Ensure all project activities follow change management and compliance requirements. Prepare regular status updates and post-implementation reports for management. Act as the primary cybersecurity liaison between client and the private cloud service provider. Review and validate the provider’s security posture, including patching cadence, access management, and vulnerability remediation. Ensure network segmentation, firewall, and VPN configurations between client and the provider align with internal policies. Coordinate and validate backup integrity, data encryption, and incident response readiness with the provider. Participate in monthly or quarterly service review meetings to discuss performance, incidents, and improvement actions. Review and track security SLA metrics (e.g., uptime, incident response time, patching timelines). Ensure the provider complies with contractual security obligations, including data protection, PDPA compliance, and ISO 27001 or SOC 2 standards (if applicable). Validate that log forwarding and security event integration (from the cloud workloads) are properly feeding into CrowdStrike SIEM or relevant monitoring tools. Coordinate with the provider to support vulnerability scanning, VAPT, or audit evidence collection when required. Document and elevate any security gaps, exceptions, or non-compliance findings to the Section Head, IT Infrastructure & Security, and track remediation progress. Review and approve the provider’s change management or maintenance activities impacting security controls or system availability. Recommend enhancements to security controls and architecture. Keep abreast of emerging threats and technology updates. Participate in security projects and proof-of-concepts (POC) for new tools or integrations.
Talent Acquisition Specialist at RiDiK (a Subsidiary of CLPS. Nasdaq : CLPS) || Connecting Top Talent with Leading Companies !!!
Cybersecurity Specialist
CTS Malaysia
KL Malaysia
Payroll : Ridik Clps
Firewall Management (Fortigate, Sangfor)
Scope of Works
- Administer, monitor, and optimize firewall policies and rules.
- Perform regular policy reviews and cleanup of unused / obsolete rules.
- Monitor logs for intrusion attempts, anomalies, and policy violations.
- Manage VPN configurations (site-to-site and remote access).
- Conduct firmware updates, backups, and health checks.
- Coordinate with network teams on connectivity and segmentation improvements.
- Liaise with NOC (vendor) on firewalls monthly report, change request or technical changes as required.
Microsoft 365 Security & Compliance (Intune MDM, Exchange Online, Security)
Scope of Works
Nessus Scanning (On-Prem Tenable)
Scope of Works
Scope of Works
Network Access Control (EasyNAC)
Scope of Works
Secure Email Gateway (Mimecast)
Scope of Works
Scope of Works
Privileged Access Management (PAM)
Scope of Works
Vulnerability Assessment and Penetration Testing (VAPT)
Scope of Works
Project Management for Cybersecurity Initiatives
Scope of Works
Private Cloud Security & Compliance Oversight
Scope of Works
Others
Scope of Works
Seniority level
Mid-Senior level
Employment type
Full-time
Job function
Information Technology
Industries
IT Services and IT Consulting
Referrals increase your chances of interviewing at CLPS Global by 2x
#J-18808-Ljbffr
Buat amaran kerja untuk carian ini
Security Consultant • Kuala Lumpur, Kuala Lumpur, Malaysia
Pekerjaan berkaitan
Technology Consulting - Cyber Security, Manager / Senior Manager
Ernst & Young Advisory Services Sdn Bhd • Kuala Lumpur, Kuala Lumpur, Malaysia
At EY, we are expanding our market-leading cyber security services to meet increasing client demand.We are seeking highly motivated Managers and Senior Managers to join our team, lead critical clie...Tunjukkan lagi
Kemas kini terakhir: 30+ hari yang lalu • Dinaikkan pangkat
Technology Consulting - Cyber Security (Manager / Senior Manager)
Ernst & Young Advisory Services Sdn Bhd • Kuala Lumpur, Kuala Lumpur, Malaysia
Cyber security is one of the most important risks facing businesses today.Systems, applications, and processes are becoming increasingly interconnected and automated and many organizations are now ...Tunjukkan lagi
Kemas kini terakhir: 30+ hari yang lalu • Dinaikkan pangkat
Cyber Strategy Risk Consultant
Accenture Southeast Asia • Kuala Lumpur, Kuala Lumpur, Malaysia
Cyber Strategy Risk Consultant.Role focused on developing and implementing cybersecurity strategies aligned with a client’s business goals, addressing risk, governance, and resilience needs.Cyber S...Tunjukkan lagi
Kemas kini terakhir: 30+ hari yang lalu • Dinaikkan pangkat
Digital Security SOC Lead
bp • Kuala Lumpur, Kuala Lumpur, Malaysia
Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia.Support the bp SOC as a sophisticated issue point for SOC analysts.
Handle customer issues from the analysts.Lead technical investigations f...Tunjukkan lagi
Kemas kini terakhir: 25 hari yang lalu • Dinaikkan pangkat
Technology Consulting - Cyber Security, Manager / Senior Manager
EY • Kuala Lumpur, Kuala Lumpur, Malaysia
At EY, we’re all in to shape your future with confidence.We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go.Join EY and help ...Tunjukkan lagi
Kemas kini terakhir: 30+ hari yang lalu • Dinaikkan pangkat
Cyber Security Consultant
EY • Kuala Lumpur, Kuala Lumpur, Malaysia
EY Federal Territory of Kuala Lumpur, Malaysia.Cybersecurity is no longer just an IT issue—it's a business imperative.At EY, we help organizations protect their assets, minimize disruption, and bui...Tunjukkan lagi
Kemas kini terakhir: 30+ hari yang lalu • Dinaikkan pangkat
Senior Manager, Cyber Security & Resilience
AIA Malaysia • Kuala Lumpur, Kuala Lumpur, Malaysia
Senior Manager, Cyber Security & Resilience — AIA Malaysia.Location : Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia.
Senior Manager, Cyber Security & Resilience.This role leads the organi...Tunjukkan lagi
Kemas kini terakhir: 30+ hari yang lalu • Dinaikkan pangkat
Network Security Engineer
Swisslog • Petaling Jaya, Selangor, Malaysia
Swisslog is shaping the future of intralogistics.As part of the KUKA Group, we are at the forefront of technology that is changing the world.
Serving some of the biggest and most exciting brands acr...Tunjukkan lagi
Kemas kini terakhir: 30+ hari yang lalu • Dinaikkan pangkat
Network & Security Engineer
Swisslog • Petaling Jaya, Selangor, Malaysia
Swisslog is a world‑leading robotics company that harnesses technology to shape the future of intralogistics.As part of the KUKA Group, we are transforming performance and efficiency for customers ...Tunjukkan lagi
Kemas kini terakhir: 5 hari yang lalu • Dinaikkan pangkat
Lead, Network Security Engineer
Maybank • Kuala Lumpur, Kuala Lumpur, Malaysia
Lead, Network Security Engineer.Maybank WP, Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia.Direct message the job poster from Maybank.
Diagnose and resolve network security tools problems...Tunjukkan lagi
Kemas kini terakhir: 1 hari yang lalu • Dinaikkan pangkat
Senior Manager, Cyber Security & Resilience
AIA Hong Kong • Kuala Lumpur, Kuala Lumpur, Malaysia
At AIA we’ve started an exciting movement to create a healthier, more sustainable future for everyone.As pioneering innovators for over 100 years, we’re now transforming our organisation to be fast...Tunjukkan lagi
Kemas kini terakhir: 30+ hari yang lalu • Dinaikkan pangkat
Technology Consulting - Cyber Security (Manager / Senior Manager)
EY • Kuala Lumpur, Kuala Lumpur, Malaysia
Technology Consulting - Cyber Security (Manager / Senior Manager).EY Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia.
Cyber security is one of the most important risks facing businesses tod...Tunjukkan lagi
Kemas kini terakhir: 30+ hari yang lalu • Dinaikkan pangkat
Delivery Cyber Security Engineer
Noventiq Malaysia • Kuala Lumpur, Kuala Lumpur, Malaysia
Delivery Cyber Security Engineer.We are seeking a Cloud Security Engineer to join the Delivery team in Kuala Lumpur, Malaysia.
Noventiq Holdings PLC) is a premier global provider of digital transfor...Tunjukkan lagi
Kemas kini terakhir: 30+ hari yang lalu • Dinaikkan pangkat
Network Security Engineer
BAT • Kuala Lumpur, Kuala Lumpur, Malaysia
BAT Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia.Be among the first 25 applicants.BAT is evolving at pace into a global multi-category business.
Our purpose is to create A Better Tomorr...Tunjukkan lagi
Kemas kini terakhir: 1 hari yang lalu • Dinaikkan pangkat
Network & Security Engineer
Swisslog Holding AG • Petaling Jaya, Selangor, Malaysia
Where do people love what they do, and being great at what they do?.At Swisslog, that’s where! Our teams are the heart of a world-leading Robotics company that’s harnessing the power of technology ...Tunjukkan lagi
Kemas kini terakhir: 5 hari yang lalu • Dinaikkan pangkat
Principal Security Consultant
Awantec • Cyberjaya, Selangor, Malaysia
Perform security risk and controls assessments, gap analyses, and compliance readiness engagements.Conduct penetration testing, vulnerability assessments, and report actionable remediation.Develop ...Tunjukkan lagi
Kemas kini terakhir: 16 hari yang lalu • Dinaikkan pangkat
Technology Consulting - OT Cyber Security, Manager / Senior Manager
Ernst & Young Advisory Services Sdn Bhd • Kuala Lumpur, Kuala Lumpur, Malaysia
At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you.
And we’re counting on your u...Tunjukkan lagi
Kemas kini terakhir: 30+ hari yang lalu • Dinaikkan pangkat
Network Security Engineer (Load Balancer)
SYNNEX • Petaling Jaya, Selangor, Malaysia
The Senior Systems Engineer is responsible to provide overall coordination of turnkey and largescale projects that involves multiple internal and external engineers in technology services (installa...Tunjukkan lagi
Kemas kini terakhir: 9 hari yang lalu • Dinaikkan pangkat