Senior Specialist, Cybersecurity

U MobileKuala Lumpur, Kuala Lumpur, Malaysia

1 hari lalu

Penerangan pekerjaan

U Mobile Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia

Life at U Mobile

We are Passionate, Innovative, Trustworthy, Team-Oriented & Fun-Loving.

Top Reasons To Join Us!

Awarded For
Most Preferred Employers in Telecommunication Industry (2022, 2023 & 2024)
Bronze Winner in Cross-Generational Workforce Engagement (2024)
Gold Winner for Excellence in Workplace Culture (2021)
Comprehensive medical, dental, optical and insurance benefits
Flexi working hours arrangements
Staff Line & Device Subsidy
Smart Casual Attire
Child Parental Care Leave
Convenient location with access to public transport (Imbi Monorail / Bukit Bintang MRT)
Special employee discounts for selected F&B Brands

Job Summary

This role is for a Cyber Security Operations leader who will be responsible for planning, managing, and executing the overall security strategy. Key activities involve supervising a team of security analysts, overseeing day‑to‑day security operations like monitoring, troubleshooting, and incident response / forensics. The position also supports security governance, compliance, threat intelligence, and involves performing technical evaluations (POCs), as well as developing and delivering security awareness training.

The Day‑To‑Day Activities

Security Operations and Troubleshooting

Assist the Cyber Security Operations Manager in planning, implementing, and managing the overall security operations strategy.

Supervise a team of security analysts and engineers, providing guidance, support, and training as needed.

Conduct regular security assessments, penetration testing, and vulnerability assessments to identify and mitigate risks.

In‑depth knowledge in Endpoint Detection & Response (EDR / XDR) solutions.

Knowledgeable in IT networking, Network security solutions, WAF, Privilege Access Management (PAM), Virtualisations.

Technically capable in conducting POCs and related to cybersecurity.

Capable in plan and manage multiple cybersecurity projects simultaneously.

Monitor security systems and tools, investigating and responding to security incidents in a timely manner.

Coordinate with cross‑functional teams, departments and divisions to ensure compliance with established security policies, standards, and procedures.

Cloud Security

Apply your knowledge of cloud platforms (e.g., AWS, Google Cloud, Azure, etc.) to develop and implement robust security controls and measures.

Work closely with the Cloud Operations team to ensure the security of cloud‑based infrastructure, services, and applications.

Identify and address cloud‑specific security risks, such as misconfigurations, data breaches, and unauthorised access.

Stay updated on the latest cloud security trends, emerging threats, and best practices to proactively address potential vulnerabilities.

Incident Response Handling and Forensic

Assist or lead and participate in incident response activities, including containment, eradication, and recovery.

Conduct digital forensics investigations to determine the root cause of security incidents and develop remediation plans.

Collaborate with internal stakeholders and external partners, such as law enforcement agencies, to address complex security incidents.

Security Governance and Compliance

Assist in enforcing U Mobile security policies, standards, and procedures aligned with industry best practices and regulatory requirements.

Assist in periodic security audits and assessments to evaluate compliance with internal and external security standards.

Prepare and present reports or Root Cause Analysis (RCA) on security metrics, incidents, and risks to senior management and relevant stakeholders.

Vulnerability Management & Threat Intelligence

In‑depth knowledge in VAPT assessment, scanning, identifying, assessing, reporting on, managing and remediating cyber vulnerabilities across endpoints, workloads, and systems.

Knowledge in cyber threat intelligence system and able to discover, correlate and take action on discovered threats to reduce company risks.

Unauthorized Device Hunting

Perform regular security scans to detect unauthorised devices on the network.

Verify device identity and usage, escalating suspicious findings for further management action.

Document and report unauthorised device incidents to senior management.

Security Operations Ticket Handling

Capable of 24x7 standby (on rotational basis – if necessary) to handle security tickets.

Ensure timely response and closure of tickets within agreed SLA.

Escalate significant security events or incidents following established SOPs.

Technical Evaluation and Testing

In charge of performing proof of concept (POC) on any technology related to cybersecurity.

Capable in creating test matrix suitable to U Mobile environment and writing detailed reports.

Work closely with technology providers / vendors and ensure POC to be completed within the required timeline.

Security Awareness and Training

Assist in developing and delivering security awareness programs to educate employees about security best practices and potential threats.

Conduct security training sessions for staff members to enhance their understanding of security protocols and procedures.

Documentation and Reporting

Maintain accurate records of security‑related activities using internal system or equivalent tools.

Prepare and submit reports with recommended actions on identified cybersecurity issues.

Support in updating security policies, standards, and procedures.

About You

Education / What people Know

Degree in Computer Science / IT / Cybersecurity or related.

Experience / What people Have Done

Min 10 years’ experience in performing cybersecurity operation, engineering, analysis, events troubleshooting, trouble ticket handling.

Experience in vulnerability assessment testing and remediation management.

Exposure of threat intelligence with knowledge on dark web and threat hunting.

Experience in operating EDR / XDR and performing hunting to remediate the detected alerts.

Experience in report writing with presentation.

Competencies / What people Can Do

Able to detect and analyze threat information obtained from various resources with minimum supervision.

Able to perform and conduct cybersecurity related testing activity as and when needed regardless of during or non‑office hours.

Able to understand the severity of an event or incident and perform 1st response to elevate within a timely manner.

To properly document internal cybersecurity related information and organise in a structured way for ease of team members to access and refer.

To be able to conduct briefing and presentation related to cybersecurity processes, approaches and policy as and when necessary.

Posses’ certification in EDR / XDR, Next‑Gen Firewalls, WAF, Cloud security, or any cybersecurity related certification will be an advantage.

Personal Attributes / Who people Are

Analytical Thinking – Thinks critically and solves problems.

Detail‑Oriented – Spots small issues before they grow.

Curious – Eager to learn and explore new threats.

Trustworthy – Handles sensitive data responsibly.

Calm Under Pressure – Stays focused during incidents.

Clear Communicator – Explains tech to non‑tech people.

Team Player – Works well with others.

Adaptable – Quick to adjust to new tools and threats.

Organised – Manages time and tasks efficiently.

Creative Thinking – Able to think creatively and outside the box.

What’s Next?

Once you have applied online, our team will review your application and due to a high volume of applications, only shortlisted candidates will be notified.

Referrals increase your chances of interviewing at U Mobile by 2x

Get notified about new Cyber Security Specialist jobs in U Mobile, Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia.

#J-18808-Ljbffr

Buat amaran kerja untuk carian ini

Senior Cybersecurity • Kuala Lumpur, Kuala Lumpur, Malaysia