Job Description

The Cybersecurity Analyst is responsible for

monitoring, detecting, and responding to security threats

, safeguarding the organization's digital assets. The role involves

security incident management, vulnerability assessment, and compliance adherence

, ensuring systems are resilient against internal and external threats.

Key Responsibilities

Threat Detection & Monitoring

Monitor networks, systems, and applications for

security incidents and anomalies

. Use

SIEM, intrusion detection, and threat intelligence tools

to identify risks. Analyze logs, alerts, and system events to detect potential security breaches.
Incident Response & Investigation

Investigate and respond to

security incidents and breaches

. Perform root cause analysis and recommend mitigation strategies. Coordinate with IT, DevOps, and business teams during incident resolution.
Vulnerability Management

Conduct

vulnerability scanning, risk assessments, and penetration tests

(coordination with pen testers). Prioritize vulnerabilities and follow through on remediation. Maintain an inventory of systems, assets, and critical data for risk management.
Security Policy & Compliance

Support

information security policies, standards, and procedures

. Ensure compliance with

regulatory and industry requirements

(ISO 27001, PCI-DSS, SOC2). Conduct security awareness and training for business units where needed.
Collaboration & Reporting

Generate reports for management, highlighting

threat trends and remediation status

. Collaborate with

DevOps, IT, and business teams

to integrate security into operations (DevSecOps).
Technical Skills (Mandatory)

Security monitoring tools:

SIEM (Splunk, QRadar, ArcSight)

Vulnerability scanning:

Nessus, Qualys, OpenVAS

Endpoint protection and threat detection Firewalls, IDS/IPS, network security fundamentals Scripting knowledge:

Python, PowerShell, Bash

for automation Understanding of

network protocols, encryption, and cloud security

Nice to Have

Incident response frameworks:

NIST, MITRE ATT&CK

Cloud security (AWS, Azure, GCP) Security certifications:

CEH, CompTIA Security+, CISSP, CISM

Experience in

banking, fintech, or regulated environments

Soft Skills

Analytical and investigative mindset Strong communication and report-writing skills Ability to work under pressure during incidents Detail-oriented and proactive in threat prevention
Deliverables

Threat detection reports and dashboards Incident response reports and root cause analysis Risk and vulnerability assessments Recommendations for security improvements
Job Type: Contract
Contract length: 12 months

Pay: RM3,288.10 - RM9,867.75 per month

Benefits:

Health insurance Maternity leave Opportunities for promotion Professional development
Work Location: In person