Location: KL Eco City
Salary: RM10,000
Job Description:
- Strong knowledgeable of current advances in all areas of information technology concerning vulnerabilities, security breaches or malicious attacks
- Continuously evaluate/audit communication security, data vulnerability, business continuity and compliance risks
- Identify vulnerabilities or weaknesses in systems and processes
- Examine employee compliance with security controls and deficiencies
- Evaluate security policy, processes and procedures for completeness
- Ensure that controls are adequate to protect sensitive information systems
- Report to management on system vulnerability and protection against malware and hackers
- Clearly document and define risks and potential impacts along with the statistical probability of such an event and identify systems affected by the defined risk
- Provide mitigation/ damage reduction proposals with cost justification
- Assist in identifying breaches in Information Security or tracking the source of an unauthorized intrusion.
- Identify defensive steps to take, including necessary firewalls, security software and data encryption
- Recommend all infrastructure and applications patching and remediation be done
- Logging and coordinating the identified vulnerability management and tracking the remediation of risks associated with critical/sensitive information, systems, services and processes
- Working knowledge of Information Security Risk Management
- Proven experience in Information Security Risk Management processes
- Working knowledge of security frameworks/standards e.g. ISO 27001, COBIT or NIST Cybersecurity Framework
- Mentor and coach junior members of the team
- Certified in CRISC/CISSP/CISA/CISM/CGEIT