- To conduct periodic cybersecurity vulnerability assessment for the respective sectors and liaising with Group IT and SOC for remediation;
- To own and conduct all Security Acceptance Test (SAT) for the group and sectors IT initiatives, and liaise with the business owners for remediation;
- To provide cybersecurity awareness training, technical advisory and consultancy to the group and sectors;
- To review the group and sectors security appliances’ rules i.e. Firewall, Intrusion Protection System, Proxy, Web Application Firewall (WAF), Network Access Control (NAC), Antivirus, Data Loss Prevention (DLP) and ensure relevancy;
- To be the group and/or sector’s interface for all cybersecurity queries, reviews and audits;
Requirements
- Degree in Computer Science, Information Technology, Computer Engineering or equivalent.
- Minimum 2/3 years experience in infrastructure & application security.
- Excellent communication skills and able to work independently.
- Candidate with Certification in Systems Security Certified Practitioner (SSCP) or Information System Security Professional (CISSP) or Ethical Hacker (CEH) will be an advantage.
- A team player.