• Role :\xe2\x80\xaf\xe2\x80\xafSecurity Operations Manager
• Job Type :\xe2\x80\xafContract
• Duration : 12 Months contract (Extension possible)
• Work location : KL Gateway

JOB DESCRIPTION The role of Security Operations Manager is to manage the security operational activities of client\'s Commercial and International service delivery in RDC (Remote Data Centre) in KL, Malaysia, supporting the RDC Operation Executive/Sr. Delivery Manager for Malaysia and Director(s) to achieve the agreed SLAs as defined for Security Operation by the respective Master Service Agreement(s). The Security Operations Manager will need to help manage key responsibilities as follow and ensure successful end-to end Patching & Coordination in contractual service obligations. \xc2\xb7 End to End Security Patching & Co-ordination in Security Operation manager role: The Security Operation Manager manage patch remediation and communicates the requirements necessary for successful patching including initial risk assessment, system eligibility, vendor instruction, location of patch code, priority, scope, timing, exemptions, and dependencies. \xc2\xb7 Once security advisory released, Assessment risk and initial estimate of effort are included in each patching Iteration, action plan and status update. \xc2\xb7 Daily/Weekly update - Security Advisory tracker (log): It is a collection of all the Patches / Security Advisory within the tracker (log). \xe2\x80\xaf
This tracker (log) conveys to IT what patching needs to be done and when. As new patches are released from vendors, a risk assessment is performed by the Security Manager with SME within 2 working days. Once high-level requirements for patching are determined, the patch and associated information is added to Tracker (Log). Patch will be performed based on Risk Based patching process for Zero day, Critical, High, Medium & low category. \xc2\xb7 Publish via email to all application SWAT team members. \xc2\xb7 Work with SME for Risk measurement, Communicate with Risk Measurement, Check CVSS and VPR scores for assessment. \xc2\xb7 Co-ordinate patch prioritization - Security Advisory tracker (log) is dynamic as new patch demands and features are identified with new release. The patches listed in the tracker (Log) also require this continuous monitor by the Security Ops Manager as new patches are released frequently. New patches often change work priority and effort. This approach ensures all teams are on the same page with new develop conditions, new requirements, and appropriate priority of releases. \xc2\xb7 Ensure the require patch are applied to target environment within the target period and update the status of the patch. \xc2\xb7 A verification will conduct in this activity to ensure the required Outcome is achieved. \xc2\xb7 Iterative cycles to allow improvements to be incorporated easily and quickly. \xc2\xb7 Patching Lessons Learned which is meant for continuous learning and improvement. \xc2\xb7 Status of the patching, SLA passed, SLA failed and Patches which are still in progress. \xc2\xb7 Review and get approval for Technical Change request in CAB- Change Advisory Board \xc2\xb7 Ensure patching activity completed as per change request & Work with the assigned TI counterpart to end to end track on the release patch from Assessment to Completion \xc2\xb7 Assist Infra and Workplace Technical change and release the require patch to the target environment by co-ordinating with SME and CAB \xc2\xb7 Lead the patching together with Tower Leads and participate in Change Management when necessary. \xc2\xb7 Inform BAU SDM and Release Manager in any circumstance if patches are unable to be applied. \xc2\xb7 Manage Incident if the incident is constituted by the applied patch. \xc2\xb7 Raise exceptional by the respective domain with the respective SLT (Senior Leadership Team) approval. \xc2\xb7 Responsible for Security / Patching Update \xe2\x80\x93 Weekly & Monthly submission Security Meeting. \xc2\xb7 Provide leadership to ensure the various team members in RDC to work collaboratively within the delivery centre as well as the Subject Matter Experts in Singapore, to deliver high quality, on schedule and meet all requirements. \xc2\xb7 Fully accountable for the quality, timely & customer satisfaction of client\'s Security Patching and Change request delivery objectives \xc2\xb7 Ensure RDC service delivery is aligned with client\'s C&I standards and protocols, and in accordance to the clients\xe2\x80\x99 policies. \xc2\xb7 Prepare Change Request & Patching reports as required and ensure optimal performance and maintain records of service level (SLA) KPIs for customers. Oversees and reports weekly, monthly, quarterly, and annual metrics. \xc2\xb7 Participate and manage all communication IS technical direction and initiatives. \xc2\xb7 Perform daily attendance team\xe2\x80\x99s callout to relevant stakeholders. \xc2\xb7 Perform IT change coordinator activities -Assess the change impact. Reviewing change plans and schedules with relevant members. Planning activities include scheduling the change request, assessing risk and impact, creating plans, defining, and sequencing the tasks needed to accomplish the change request, and scheduling people and resources for each task. Reviewing all completed tasks. In the Implement stage, at least one task related to the change request is in progress. Conducting post-implementation reviews to validate the results of the change request. Determining requester satisfaction with change request. \xc2\xb7 Track & close Change Request Tasks and Change request as per SLA for security related changes and other BAU changes \xc2\xb7 Perform any other task requested by the RDC Operation Executive / Lead Ops Mgr. in Singapore / directors, as part of duties \xc2\xb7 Responds to IT Security Incidents, performing work across multiple environments as required, in accordance with policy and procedure, taking ownership of accountability for response to those incidents. \xc2\xb7 Undertake security audit activities over multiple environments, in accordance with an audit schedule. \xc2\xb7 Modify security related reports & process to a wide range of internal and customer stakeholders. \xc2\xb7 Act as the on-call security contact for after-hours security incidents where required. \xc2\xb7 Perform Daily IT Operations Team Callout Roaster -Coordinate with IT Operation Teams in RDC, KL on work roaster and perform/ issue out daily call out roaster schedule as part of routine task through established communication channels, WhatsApp, Signal E-mail to the support teams in a timely manner. Work with RDC Ops Executive / Team Leads for changes, alignment of work roaster. Education and Qualifications \xc2\xb7 A Degree in Computer Science / IT or equivalent a minimum of 8 years\xe2\x80\x99 experience in Managing IT Security Service Delivery & Change management process. Work Experience \xc2\xb7 Minimum 10 years Technical / Professional Skills \xc2\xb7 Prior experience in a technical role with leadership \xc2\xb7 Prior operational experience adopting ITIL best practices, advantageous if ITIL v3 certified. \xc2\xb7 Experience in Tenable and security patching\xe2\x80\xaf
Non-Technical / Soft Skills \xc2\xb7 Experience in managing and mentoring cross functional teams. \xc2\xb7 Experience in IT Security incidents, Patching and vulnerability assessment. \xc2\xb7 Change management process and well experience in getting approval for change request and execution. \xc2\xb7 Experience in managing a complex program with multiple stakeholders and vendors. \xc2\xb7 Experience in communicating and influencing at Senior Management \xc2\xb7 Experience in liaising with Business and user communities \xc2\xb7 Working experience in project & vendor management with commitment to drive resolutions. \xc2\xb7 Strong customer focus with a commitment to delivery of quality services Job Type: Contract
Contract length: 12 months Schedule:

• Day shift

Experience:

• Security Operations: 10 years (Required)
• IT security: 10 years (Required)
• IT Security Service Delivery: 10 years (Required)
• Change management process: 10 years (Required)

Language:

• Bahasa Malaysia (Required)