Job Description

We are seeking a highly skilled and experienced

IT Security Lead

to strengthen and direct our security operations and incident response capabilities. Reporting to the

VP of IT Security

, this hands-on leadership role is focused on

maturing the organization's security posture

through continuous improvement, operational excellence, and proactive defense.

The IT Security Lead will be responsible for

managing critical incidents

, optimizing security tools and processes, and

mentoring a team of security engineers

to ensure our cloud and IT infrastructure remain secure and resilient.

Key ResponsibilitiesIncident Response & Threat Management

Lead all phases of the incident response lifecycle, including detection, analysis, containment, eradication, and recovery. Serve as the primary escalation point for major security incidents, providing expert technical guidance and coordinating cross-functional response efforts. Conduct post-incident reviews to identify root causes and implement corrective actions. Proactively hunt for threats, refining detection capabilities and enhancing response playbooks within the SIEM.

Security Operations & Continuous Improvement

Continuously optimize and refine existing security tools, including

SIEM (Rapid7 InsightIDR)

,

endpoint protection

, and

vulnerability management platforms (Rapid7 InsightVM)

. Collaborate with IT, Security, and Engineering teams to drive vulnerability management, prioritization, and remediation efforts, ensuring measurable risk reduction. Enhance and maintain a strong cloud security posture by implementing and improving

native cloud security controls

and

CSPM tools

such as Rapid7 InsightCloudSec and AWS security capabilities. Mentor, coach, and support security engineers, guiding them in best practices, tool usage, and career development.

Desired Skills & Experience

Proven hands-on experience in

security monitoring, detection, and incident response

, including collaboration with managed detection and response (MDR) teams. Strong familiarity with industry frameworks and best practices such as

NIST, OWASP, and SANS

. Expertise in managing and optimizing

modern security technology stacks

(SIEM, EDR, vulnerability management, and cloud security tools). Practical experience with the

Microsoft security ecosystem

(Defender, Sentinel, Entra ID, Intune). Deep understanding of

cloud security principles

and best practices for leading providers such as

AWS and Microsoft 365

. Excellent communication, leadership, and mentoring skills, with the ability to inspire and guide technical teams. Minimum of

6 years of IT security experience

, including a proven track record of

leading security operations and incident response functions

.
Job Type: Full-time

Pay: RM13,000.00 - RM14,000.00 per month

Benefits:

Health insurance Maternity leave Opportunities for promotion Professional development
Work Location: In person