Monitor the computer networks and systems to identify any violations and breaches.
Investigate, analyze, and mitigate all identified violations and breaches with the relevant stakeholders.
Identify and mitigate IT security risks including IT business application and infrastructure.
Develop document and implement IT security policies & procedures including security incident response and disaster recovery plans.
Generate reports for management to evaluate the efficacy of the security policies in place.
Assist in yearly IT security assessment review with external providers and remediate the discovered vulnerability with relevant stakeholders.
Research, analyze, recommend, document, and implement new products, technologies, applications and/or services as needed to ensure the integrity of the corporate IT environment with emphasis on security-related solutions.
Provide trusted advisory services and guidance to stakeholders that will reduce organizational risk and improve overall security posture.
Oversee the development and execution of corporate security awareness and raise awareness levels in the organization.
To work on IT security projects/initiatives.
To perform ad-hoc assignment as assigned by superior.
Minimum Working Experience
Field of Study
Computer Science/Information Technology
Degree in Computer Science/Information Technology or equivalent.
Minimum 5 years’ experience in IT security field.
Strong technical understanding of IT security solutions, processes, and systems such as endpoint detection and response, intrusion prevention system, firewall, advanced persistence threat, cloud security, device management, etc.
Experience with cybersecurity incident response. Direct experience in the fields of digital forensics, malware analysis, threat hunting is a strong advantage.
Have solid infrastructure knowledge and experience with fluency in server, virtualization, and networking.
Knowledgeable in various information security standards and frameworks such as ISO/IEC 27001 (ISMS), NIST, OWASP, cryptographic controls, etc.