Job Description

Requirements & Qualification

-Bachelor's degree in computer science, or any relevant qualification from a recognized university is required. Additionally, holding both a degree and a diploma in a related field is considered an advantage. Knowledge of management systems for information security framework, regulatory or best practices, such as ISO/IEC 27001 Information Security Management Systems, AICPA Trust Services Criteria, and the Payment Card Industry Data Security Standard (PCI DSS). Analytical skills, interpersonal and presentation abilities, and proficiency in computer use, including information mapping. Interacts well with all levels of Employee. Skill in creating, interacting with, managing, and supporting APIs (REST, JSON/HTTP), with expertise in JavaScript, Node.js, and ES6, as well as experience in database or cache technologies (e.g., MongoDB, PostgreSQL, MySQL, Redis), Git, SonarQube, Nginx, Linux system administration, Docker, AWS services, or any other relevant development and security tools which would be an added advantage. Knowledge of managing technical vulnerability assessments. Good written and communication skills for both Bahasa Malaysia and English. Able to work independently with very minimum supervision.

Responsibilities

To assist Asset Owner in the development, implementation, monitoring, and maintenance of the organization's products regarding security compliance internally/externally (i.e., projects) To facilitate performing activities related to product and services associated with ensuring ongoing conform the relevant framework & regulatory requirements e.g., ISO/IEC 27001 Information Security Management systems, IACPA Trust Services Criteria, Payment Card Industry Data Security Standard to be adhered to internally/externally (i.e., projects) To address concern or question from Employee on compliance or information security of developed product and services To review documentation of product knowledge for current and future applications, as well as for internal or, when assigned, external project deliverables To educate and train Employee on application of security compliance in developed product and services To participate as assigned in the compliance activities of projects for developed product To coordinate business continuity management, business impact analysis and risk assessment activities related to developed products and services To assist in analyzing security threats, identify risks, and prevent incidents in developed products and services including monitoring suspicious activities and investigating security findings or incidents to determine the cause and extent of any breaches To conduct security and vulnerability assessment e.g., scanning or penetration testing to identify potential weaknesses and assess security hardening in the security infrastructure of developed products. To execute phishing campaigns by simulating phishing attacks to test and enhance Employee response To coordinate and analyse incident response and threat intelligence to gather information for identifying potential external threats and vulnerabilities, and to produce threat intelligence reports and incident response playbooks. To perform any other task as assigned by Supervisor
Job Type: Full-time

Pay: RM5,000.00 - RM7,000.00 per month

Benefits:

Free parking Health insurance Meal provided Opportunities for promotion Professional development
Application Question(s):

What is expected salary? How long is your notice period?
Work Location: In person