Job Description

Job Title: Security Engineer

Job Summary:

The Security Engineer is responsible for ensuring that IT operations comply with ITSM processes, internal IT policies, and the broader enterprise security framework. This role involves conducting thorough risk and vulnerability assessments on infrastructure systems, applications, and processes to detect security weaknesses and propose effective remediation or mitigation strategies. The engineer will also support daily operational tasks related to network security.

Key Responsibilities:

Ensure IT operations adhere to ITSM processes and comply with organizational security policies and frameworks. Perform regular

risk assessments

and

vulnerability scans

across systems and applications. Analyze vulnerabilities and threats; recommend and track remediation or mitigation plans. Support incident response and contribute to root cause analysis for security-related issues. Collaborate with infrastructure and application teams to implement security best practices. Provide operational support and monitoring of

network security systems

, including firewalls, proxies, WAFs, and endpoint security tools. Maintain documentation for audit, compliance, and operational procedures.

Required Qualifications:

Bachelor's degree

in Cybersecurity, Computer Science, Information Technology, or a related field. Minimum

3 years of experience

in: Vulnerability management Risk assessment and audit controls Supporting network security operations

Technical Skills:

Vulnerability Scanning Tools:

Nessus, Burp Suite, Rapid7

Network Security Technologies:

Firewall:

Palo Alto

Web Application Firewall (WAF)

Proxy:

Sophos

Endpoint Detection & Response (EDR)

tools

Preferred Attributes:

Strong analytical and problem-solving skills Good understanding of security standards (ISO 27001, NIST, etc.) Certifications like

CEH

,

CISSP

,

CompTIA Security+

, or equivalent (a plus) Ability to work independently and as part of a cross-functional team
Job Type: Full-time

Pay: RM10,000.00 - RM12,000.00 per month

Education:

Bachelor's (Preferred)
Experience:

IT SECURITY: 2 years (Required) Vulnerability Scanning Tools: Nessus, Burp Suite, Rapid7: 2 years (Preferred) Firewall: Palo Alto: 2 years (Preferred) Web Application Firewall (WAF): 2 years (Preferred) Proxy: Sophos: 2 years (Preferred) Endpoint Detection & Response (EDR) tools: 3 years (Preferred) Certifications like CEH, CISSP, CompTIA Security+: 2 years (Preferred)
Language:

Mandarin (Required)
Work Location: In person