Information Security GRC Associate / Specialist

Maxis
Kuala Lumpur
MYR 150,000 - 200,000
Job description

Information Security GRC Associate / Specialist

Maxis stands as Malaysia's leading telco company, presenting top-tier offerings including postpaid plans, internet plans, phone plans, and more. Enhance your connectivity with our steadfast services today!

Are you ready to get ahead in your career?

  • We want to empower you to turn your ambitions into achievements.
  • We thrive in inclusiveness, diversity and embrace close collaborations for you to create impact for yourself and others.
  • Together, we aim to bring the best of technology to help people, businesses and the nation to be ahead in a changing world.
  • To realise our vision to become Malaysia’s leading converged solutions company, we are looking for a new talent to innovate and grow with us in a culture that values commitment, performance and possibilities.

Why does this job exist and why is it critical?

  1. Perform regular policy, process and standard reviews for information security.
  2. Conduct 3rd party security risks as part of the due diligence process, record and manage the risks.
  3. Update and monitor the security compliance of 3rd party and integrate this into existing security processes.
  4. Review the risk register and quarterly update the status to the Enterprise Risk Management team.
  5. Prepare control assessment reports relating to the implementation of information security controls in Maxis based on published policies, processes and standards.
  6. Conduct and assist with the implementation of security certification, audits and compliance to PCI/DSS, ISO 27001 and NIST frameworks across Maxis.
  7. Provide advisory for compliance and information security controls across multiple security frameworks such as ISO 2700x, PCI, CSA, CIS, OWASP and NIST standards.
  8. Support the education and training requirements related to security controls in the areas of information security such as application security, network security, database security, password management and other general security content.
  9. Assist in other applicable tasks within the department scope assigned by the Head of CyberSecurity.

What’s next?

  • Once you’ve applied online, our team will carefully review your application. Due to a high volume of applications, we appreciate your patience to allow for a fair and timely review process.
  • Should you be shortlisted for the role, we will send you an invitation via email for a digital interview. You can also check on your application status by logging into your candidate account.

Maxis values diverse voices & people. We hire and reward our employees based on capability & performance — regardless of ethnicity, gender, age, education, religion, nationality or physical ability.

Get a free, confidential resume review.
Select file or drag and drop it
Avatar
Free online coaching
Improve your chances of getting that interview invitation!
Be the first to explore new Information Security GRC Associate / Specialist jobs in Kuala Lumpur