Job Description

An exciting IT Security Analyst - Vendor Assessment job has just become available at an IT service firm based in Kuala Lumpur, Malaysia. Your main responsibility is vendor assessments and trying to elevate the IT risk position of the company. About the IT Security Analyst - Vendor Assessment Role:
You will work with a highly collaborative team to understand and reduce risk across the company by leading and further developing the company\xe2\x80\x99s third party risk and vendor security assessment programmes. Key Responsibilities:

• Oversee a variety of client security risk assessments/audit, providing advisory support to technical and business on the evaluation of risks, development of policies, and work with stakeholders to define and implement process enhancements
• Communicate information security risk, compliance gaps and other security issues in a business context, translating technical risks into business risks
• Work internally with technical and business partners to instil a risk-conscious culture by understanding the business drivers, building baseline and measurable benchmarks
• Develop, review and update compliance procedures and internal controls
• Produce and implement security awareness to internal/external company stakeholders
• Identify emerging trends in the industry and establish strategic guidance related to best practice approaches to address those trends as they relate to the company
• Inspire and support a security culture across the organisation, working with development and engineering teams to ensure security, trust and privacy are key elements of product designs, and prioritising security remediation work

To succeed in this IT Security Analyst - Vendor Assessment role, you must be a high-potential and motivated individual who contributes to the development and execution of cybersecurity strategy by focusing on collaboration across the organisation and liaising with key stakeholders to help bring insight into the company\xe2\x80\x99s security posture through third parties working closely with the business. Key Requirements:

• Security practitioner well versed in governance, risk, and compliance
• At least four years of experience in information security, governance, risk and compliance space such as a university degree, online courses, side projects, work experience or others
• Deep understanding of information security specifically around security policy, industry accepted frameworks and security standards such as ISO 27001/27002, CIS Controls, CoBIT and other regulatory compliance requirements such as SOC2
• Ability to work with various stakeholders to ensure security solutions are implemented as per regulatory and internal policies requirements
• Strong ability to manage and report on multiple projects concurrently, prioritising efforts, managing time effectively, and requiring minimal supervision in the execution
• Demonstrated problem-solving, analytical and investigative skills combined with the ability to develop creative solutions and navigate through ambiguity in a fast-paced, agile environment
• Self-starter, capable of working independently and in a team, environment collaborating well with others to solve problems in a team-focused dynamic
• Excellent stakeholder engagement and relationship building skills in addition to meeting facilitation, presentation, and demonstrated attention to detail
• Passion for continued professional development and ongoing learning
• Experience in audit and compliance is an added advantage
• Desire to participate within the security community through events and conferences, supporting the sharing of information security knowledge and expertise

This company has global presence and great value is placed on training and development. You will work with a dynamic and supportive team that will encourage a successful and fulfilling career. The scope of the offer, the size of business, the freedom and autonomy to drive your career forward all comes up to a great place to work. If you have what it takes, is passionate about working with a global company and want to grow your professional expertise proficiency in a wide range of security concentrations this is an excellent opportunity to work with an industry leader that is constantly breaking new ground. Great career opportunities await the right person in this exciting IT Security Analyst role. Apply today or email me at melvin.cheah@robertwalters.com.my to discuss this new opportunity. Do note that we will only be in touch if your application is shortlisted. Agensi Pekerjaan Robert Walters Sdn Bhd
Business Registration Number : 729828-T
Licence Number : JTKSM 423C
An exciting IT Security Analyst - Vendor Assessment job has just become available at an IT service firm based in Kuala Lumpur, Malaysia. Your main responsibility is vendor assessments and trying to elevate the IT risk position of the company.