Job Description

Position:

IT Security Consultant

Location:

Bangsar South, Kuala Lumpur

Working Arrangement:

Monday - Friday (9:00 AM - 6:00 PM)

Work Mode:

Hybrid (2 days in office, 3 days work from home)

Job Purpose

The IT Security Consultant is responsible for managing information risk, ensuring compliance with established security standards, and providing expert support across applications and projects. The role safeguards against the unauthorized, unlawful, or unintentional disclosure, alteration, or destruction of IT assets and resources.

Key Responsibilities

Manage operational IT security for high-availability financial services, including reporting, improvements, audits, and training. Lead the analysis and management of security vulnerabilities and incidents. Establish, maintain, and periodically review compliance with operational security processes and procedures. Enforce strict access controls for information and IT systems in alignment with business requirements and policies. Perform access management activities, including granting, modifying, and revoking user privileges. Maintain compliance with Payment Card Industry (PCI) standards, Information Security Management Frameworks, and other relevant baselines. Monitor and manage security controls such as system settings, logs, alerts, and audit trails. Collaborate with clients and infrastructure teams to implement new security measures, including protection concepts, specifications, and assessments. Provide operational support for Security Operations Center (SOC) tools and related maintenance activities.

Preferred Skills

Familiarity with baseline controls, environmental controls, third-party access controls, and legal/regulatory compliance. Hands-on experience working with external auditors on ISAE 3402, PCI-DSS, ISO/IEC 27001, 27002, and 27005 standards. Strong understanding of IT security standards, governance frameworks, and compliance best practices. Excellent written and verbal communication skills with the ability to collaborate effectively with stakeholders and auditors. Self-motivated, independent, and eager to learn and expand knowledge in compliance and IT security.

Qualifications

Bachelor's degree in Information Technology, Computer Science, or a related field. 8-10 years of overall experience in the IT industry, with at least 5 years in IT Security and Compliance. Demonstrated ability to work independently as well as in a team environment.

Preferred:

Experience in cards and payment systems. Familiarity with PCI DSS, PCI PA-DSS, and other security and assurance frameworks. Knowledge of infrastructure and network security, Active Directory, multiple operating systems, and SIEM tools. Exposure to IT operations, administration, disaster recovery, or SOC tool maintenance.
Job Types: Full-time, Permanent

Pay: RM10,000.00 - RM16,000.00 per month

Benefits:

Dental insurance Flexible schedule Health insurance Maternity leave Opportunities for promotion Parental leave Professional development Vision insurance
Application Question(s):

Are you familiar with PCI DSS, PCI PA-DSS, and other security and assurance frameworks? How long is your notice period? How much is your expected salary?
Work Location: In person