Lead, CyberSecurity Ops - Assistant Manager (Based in KL)
StarHub
Kuala Lumpur
MYR 150,000 - 200,000
Job description
Lead, CyberSecurity Ops - Assistant Manager (Based in KL)
The candidate will report to Manager (SecOps) and is responsible for designing, developing, and implementing secure system architecture. The secure system architecture will embed security principles to protect StarHub's infrastructure and information assets from evolving cyber threats. This role will work with a team of cyber security enthusiasts to safeguard our systems against cyber-attacks and threats. The candidate needs to possess strong technical competency and effective communication skills to engage various StarHub stakeholders. He/She will perform routine activities related to the periodic review and audit activities of infrastructure security systems and maintain documentation of security standards and procedures.
Responsibilities:
Develop architecture requirements and maintain oversight: - Design security controls and systems in alignment with security guidelines. - Assist in the testing and evaluation of new security technologies and controls. - Recommend security products, services, and procedures to enhance system architecture designs. - Document the design, operation, use, and expected outputs of new systems. - Conduct research on modern security software architectures and network architecture design best practices. - Drive continuous process improvement for the security services.
Implement security systems: - Implement new enterprise security architecture, technologies, and enhancements. - Identify techniques to scale up and automate security infrastructure and processes. - Resolve issues that arise in the implementation of new security systems. - Monitor security systems for strengths and weaknesses and propose improvements to address weaknesses.
Manage security systems: - Responsible for the maintenance of security systems, platforms, and associated software. - Develop and implement custom disaster recovery drills and simulation tests on existing systems. - Monitor, track, and manage service faults till resolution and change requests. - Manage the lifecycle of security solutions, ensuring that the solution is up-to-date and relevant to changing business needs and security landscape. - Provide oversight and drive quality assurance over third-party service providers.
Qualifications
Bachelor’s degree in computer science or a related field. Ideally, you have completed security technology certification from vendors (e.g., Cisco, Fortinet, etc.). 6 - 10 years' experience in the following areas is an advantage:
Infrastructure Design: Translate a broader infrastructure blueprint into technical specifications and develop prototypes for simple infrastructure components.
Security Administration: Administer, configure, and troubleshoot security solution platforms, and analyze the impact of patches and updates on systems and networks. Minimum 4 years of administration experience (see Technologies Competencies).
Security Architecture: Design secure systems and define security specifications of components, integrating appropriate security controls.
Technologies Competencies: a. Firewall b. Web Application Firewall c. VPN (IPSec & SSL) d. Email Security Gateway (anti-spam, anti-virus, anti-malware, sandbox, EBC) e. Web security, web isolation f. Proxy g. Data Loss Protection h. Public Key Infrastructure i. Mobile Device Management j. Identity & Access Management, 2-Factor Authentication, Single Sign-On k. Privileged User Management l. Cloud Security