OVERVIEW:Department: Information SecurityEntity: Capital A Group, KL, MalaysiaStatus: Full-timeYOUR ROLE AS A:Key leader in the Information security team leading the Cyber Defence function for the group of companies, this role is accountable for the information and cyber defence in the AirAsia Group and Capital A Group as an independent Assurance Line-of-Defence 2 (LOD2) function.The Head of Cyber Defence is accountable for leading four areas. 1. Security Operations team, 2. Cyber intelligence and threat hunting team, 3. Vulnerability management 4. Connectivity, Endpoint Security and Identity Management.Across all the areas they will be responsible for curating actionable insights for identified cyber security threats and incidents and promptly managing the responses to items mentioned above or breaches. They should proactively manage vulnerabilities by leveraging telemetry from data sources, threat intelligence, vulnerability assessments and penetration testing. The role is responsible for continuously enhancing the cyber resilience of the Capital A group and in line with the cyber strategy, responsible for minimising any potential breach impact on the group.The Head of Cyber Defence works closely in coordination with Business CISOs, the Head of Cyber Architecture & Strategy, the Head of Cyber Risk, Policy & Assurance, Group Risk, Legal, Procurement, and engineering/technical/IT teams across the portfolio of companies.WHAT YOU\xe2\x80\x99LL CHAMPION:Incident management & SOC:Continuously works to enhance the Group\'s Cyber Resilience as an authority to protect the group in line with the Cyber Security Governance with a clear mandate.Custodian of the incident response process and continuously enhancing the process according to the ever-changing threat landscape.Perform near real-time and continuous 24*7 monitoring, lead investigations and perform first analysis and triage via a SOC.Ensures continuous monitoring of the Cyber data to detect any anomalies.Leads/Oversees end-to-end incident management cycle, including leading recovery from the incident as rapidly as possible. Conduct the first level of analysis on any highlighted incidents from investigation platforms, referrals and discovery to determine the breach criticality in line with the incidentImplementation and execution of adequate response to any incident and cyber-attacks promptly.management Process.Cyber Intelligence & Threat HuntingContinuously on alert against Cyber threats and monitoring cyber intelligence feed. Actively action any mitigation towards the cyber threats.Provides actionable insights to Group executive leadership as needed on cyber security threats, incidents, and vulnerabilities to facilitate business decisions across the group for action.Perform forensic investigation of all Cyber incidents and breaches. Report learnings from the forensic report to enhance the Cyber Defence capabilities.Reporting Cyber breaches forensic investigation with H and VH ratings to the Group company Leadership and the VH incidents to the Group company Boards.Leads the development of threat intelligence capability and translation into actionable insights for the Group companies.Vulnerability management:Champions vulnerability assessments delivery and execution (Vulnerability Scanning, risk-based penetration testing).Drives the discovery of vulnerabilities via structured scanning of the digital platforms/landscapes in an optimised manner. Works closely with the enterprise Risk team to assess and prioritise the vulnerability reports according to high risk and criticality.Partners with enterprise risk team, to ensure cyber security integrity and robustness in the group by prioritising based on the identified risk level and criticality of the vulnerability assessments and ensures closure of the prioritised vulnerabilities with the relevant IT/Digital delivery teams in a focused & coordinated manner to protect the Group companies.Integrate vulnerabilities into the cyber defence data lake to identify potential risks or anomalies.Run Risk based red team and penetration testing capabilities that will be to assess the security posture of the group and digital solutions.\xe2\x80\x8bManagement:Work closely with the Strategy & Portfolio Manager to enhance the Cyber resilience of the IT domains by introducing new technical solutions, concepts and capabilities. Including the drive for automation of analytics capability to enhance the agent\xe2\x80\x99s analysis performance and time.Leads the Cybersecurity team to ensure the team is continuously developed, and coached to protect the group companies.Work closely with external sources, partners, national cybersecurity agencies and industry groups.Provide periodic cyber defence reports for various stakeholders.Provide support on any authorised investigation-related discovery cases when requested by Group Audit and Legal teamsWHO YOU ARE:At least 10 years of experience in Information Security preferably in Security OperationsCompetent cyber security leader who enhances and sustains required capabilities. Achieves high-performance delivery with the right leadership behaviours executing their roles.Develops & implements distinctive mindset, behaviour and culture to achieve high performance via value interventions, tools, and methodologies to promote commitment, ownership, integrity and loyalty towards team success.Ensures compliance with the Group governance procedures, guidelines and code of conduct requirementsFosters, working relationships and rapport with Business CISOs, key industry players and market providers to keep up with the latest developments to ensure secure Business Growth.WHAT YOU\xe2\x80\x99LL ENJOY:
MNCJobz.com will not be responsible for any payment made to a third-party. All Terms of Use are applicable.