Job Summary:
We are looking for an experienced Network Security Engineer to join our cybersecurity team in Digital Penang. The successful candidate will be responsible for the development and implementation of our cybersecurity strategy, policies and procedures. Additionally, he/she will be responsible for overseeing the development of a new application, infrastructure and services complying to cybersecurity policies and procedures.
Responsibilities:
- Develop, implement and maintain strategy, policies, procedures and standards related to cybersecurity.
- Design and build secure cloud infrastructure systems using all the key technologies (public and hybrid cloud, virtualization, and containers).
- Conduct security assessments to identify vulnerabilities and risks in the organization environments, reviewing existing security controls, testing network and application security, and providing recommendations for improvement.
- Monitor the organization’s network, systems and applications for security breaches and vulnerabilities and take appropriate action when necessary.
- Manage incident response and recovery efforts in the event of a security breach.
- Collaborate and work with stakeholders to develop technical security plans and configurations for new technology infrastructure and application to ensure that cybersecurity measures are in place throughout the organization.
- Communicate effectively with stakeholders and project owner to ensure that security assessments, policies and procedures are implemented successfully.
- Perform security reviews and identify gaps in product security architecture that balance business requirements with cybersecurity requirements.
- Provide regular reports on the organization’s cybersecurity posture to senior management and other stakeholders.
- Keep up to date with the latest cybersecurity threats and trends by attending conferences, participating in webinars, and reading industry publications to ensure that the organization’s cybersecurity strategy remains relevant and effective.
Requirements:
- Experience in developing and implementing cybersecurity strategies, policies, and procedures.
- Advance understanding of TCP/IP, common networking
- ports and protocol, traffic flows, system administration, OSI model, defense-in-depth
- and common security elements.
- Experience in managing incident response and recovery efforts.
- Strong project management skills, with experience in overseeing software development projects.
- Excellent communication and interpersonal skills, with the ability to
- work effectively with stakeholders at all levels of the organization.
- Relevant certifications such as CISSP, CISM, or CISA are a plus.
- Strong knowledge of security assessment methodologies and tools.
- Experience in developing and implementing security policies and procedures.
- Ability to prioritize well, communicate clearly and has consistent track record of delivery results.
Qualification:
- A degree in Computer Science, Information Systems, or equivalent education or work experience.
- At least 5 years of experience in a cybersecurity-related role and relevant experience.
Deadline: 17 April 2023
