EN
4,395
Security jobs in Malaysia
Cybersecurity Lead Consultant
UST
Cyberjaya
On-site
MYR 150,000 - 200,000
Yesterday
Be an early applicant
I want to receive the latest job alerts for “Security” jobs
Senior Manager, Group Information Security (Cyber Security Incident Response - IR Team Lead)
New Era Technology
Kuala Lumpur
On-site
MYR 80,000 - 100,000
Yesterday
Be an early applicant
Security Manager
Boston Scientific Gruppe
Penang
On-site
MYR 80,000 - 100,000
Yesterday
Be an early applicant
Front Office Lead + Security Coordinator
JLL
Kuala Lumpur
On-site
MYR 100,000 - 150,000
Yesterday
Be an early applicant
Discover more opportunities than anywhere else. Find more jobs nowASSISTANT - LOCAL HR (SECURITY OPERATION)
Hartalega
Sepang
On-site
MYR 30,000 - 40,000
Yesterday
Be an early applicant
Security Senior Manager - Bukit Minyak, Penang
FLEXTRONICS TECHNOLOGY (PENANG) SDN BHD
Seberang Perai
On-site
MYR 150,000 - 200,000
Yesterday
Be an early applicant
Connect with headhunters to apply for similar jobsSecurity Delivery Lead (SDL)
DXC Technology
Selangor
On-site
MYR 120,000 - 160,000
Yesterday
Be an early applicant
Infrastructure Security Manager
NTT Communications
Kuala Lumpur
On-site
MYR 120,000 - 180,000
Yesterday
Be an early applicant
Operational Excellence Lead Counter Threat and Engineering
BP
Kuala Lumpur
Hybrid
MYR 80,000 - 120,000
Today
Be an early applicant
ASSISTANT - LOCAL HR (SECURITY OPERATION)
Hartalega Holdings Berhad
Sepang
On-site
MYR 20,000 - 100,000
Yesterday
Be an early applicant
Security Manager - PTP,Johor
Flex
Gelang Patah
On-site
MYR 120,000 - 180,000
2 days ago
Be an early applicant
Infrastructure Security Manager
NTT DATA, Inc.
Kuala Lumpur
On-site
MYR 120,000 - 180,000
Yesterday
Be an early applicant
Head of IT Security Management
Hong Leong Bank
Petaling Jaya
On-site
MYR 120,000 - 150,000
Yesterday
Be an early applicant
Senior Manager, Group Information Security (Cyber Security Incident Response - IR Team Lead)New
New Era Technology
Kuala Lumpur
On-site
MYR 200,000 - 250,000
2 days ago
Be an early applicant
Information Security Specialist Senior
Experian Marketing Services (Malaysia) Sdn Bhd
Cyberjaya
On-site
MYR 150,000 - 200,000
Yesterday
Be an early applicant
Infrastructure Security Manager
NTT
Kuala Lumpur
Hybrid
MYR 120,000 - 160,000
Yesterday
Be an early applicant
Cybersecurity Incident Response Senior Advisor
Dell
Sepang
On-site
MYR 80,000 - 100,000
Yesterday
Be an early applicant
Information Security Specialist Senior
Experian Asia Pacific
Cyberjaya
On-site
MYR 60,000 - 90,000
Yesterday
Be an early applicant
Information Security Specialist Senior
Experian
Sepang
On-site
MYR 80,000 - 110,000
2 days ago
Be an early applicant
Cybersecurity Lead Consultant
UST
Cyberjaya
On-site
MYR 150,000 - 200,000
Full time
Today
Be an early applicant
Job summary
A global technology firm located in Malaysia is seeking a seasoned Cybersecurity Lead Consultant with over 12+ years of progressive experience. As the ideal candidate, you will act as a trusted advisor to senior leadership, define comprehensive cybersecurity strategies, and oversee critical security implementations. The role demands strong technical expertise across various domains including GRC and SOC operations, combined with exceptional communication skills to articulate business impacts of security decisions. This position involves mentoring teams and contributing to strategic security engagements.
Qualifications
- 12+ years of progressive experience in cybersecurity, with significant technical expertise.
- Experience leading multi-domain security programs across GRC, SOC, and offensive security.
- Proven engagement with executives and C-suite leaders.
Responsibilities
- Act as a lead security advisor to enterprise customers, including CIO, CISO, CTO.
- Define end-to-end cybersecurity strategies aligned with business goals.
- Lead GRC assessments and design governance frameworks.
Skills
Cybersecurity
Penetration Testing
Cybersecurity Architecture
Risk Assessment
Tools
SIEM
EDR/XDR
IAM
CSPM
DLP
SOAR
Job description
Role Description
Job Title: Cybersecurity Lead Consultant (GRC, SOC & Offensive Security).
Overview
- We are seeking a senior Cybersecurity Lead Consultant with deep, hands‑on expertise across Cybersecurity Architecture, Governance Risk & Compliance (GRC), Security Operations (SOC), and Penetration Testing.
- This role combines technical depth, strategic advisory, and executive‑level communication, enabling the consultant to guide enterprise customers in defining, implementing, and maturing their cybersecurity programs.
- The ideal candidate is a trusted advisor to C‑suite and senior leadership, capable of articulating security trade‑offs, business risk, and ROI, while also laying the foundation and overseeing large‑scale security implementations.
Key Responsibilities
Cybersecurity Strategy & Advisory
- Act as a lead security advisor to enterprise customers, including CIO, CISO, CTO, and Risk Leaders.
- Define end‑to‑end cybersecurity strategies and roadmaps aligned to business goals, regulatory requirements, and risk appetite.
- Clearly articulate pros and cons of security architectures, tools, and operating models, enabling informed executive decisions.
- Translate technical security risks into business impact, financial exposure, and compliance implications.
Governance, Risk & Compliance (GRC)
- Lead GRC assessments, risk profiling, and compliance programs.
- Design and implement security governance frameworks aligned to ISO 27001, NIST, SOC 2, PCI‑DSS, GDPR, HIPAA, and regional regulations.
- Define policies, standards, controls, and risk treatment plans.
- Support audits, regulatory assessments, and executive risk reporting.
Security Operations & SOC
- Design and assess SOC operating models (in‑house, managed, hybrid).
- Oversee implementation and optimization of SIEM, SOAR, EDR/XDR, and threat intelligence platforms.
- Define incident response, detection, and escalation processes.
- Provide executive guidance during major security incidents and post‑incident reviews.
Penetration Testing & Offensive Security
- Lead or oversee penetration testing, vulnerability assessments, red‑team exercises, and security testing programs.
- Review findings, prioritize remediation, and advise on risk‑based mitigation strategies.
- Ensure offensive security outcomes are translated into practical defensive improvements.
Solution Architecture & Delivery Oversight
- Define enterprise security architectures covering cloud, application, network, identity, and data security.
- Oversee security implementation programs, ensuring design integrity, delivery quality, and risk reduction.
- Collaborate with delivery teams, partners, and vendors to ensure successful outcomes.
- Provide technical governance and quality assurance across security initiatives.
Pre‑Sales & Executive Engagement
- Support pre‑sales, proposals, and solution shaping for strategic security engagements.
- Lead executive workshops, board‑level briefings, and security strategy sessions.
Build long‑term trusted relationships with customer stakeholders.
Required Experience & Skills
Experience
- 12+ years of progressive experience in cybersecurity, with significant technical expertise.
- Proven experience working with large enterprises or regulated industry customers.
- Demonstrated success engaging with executives and C‑suite leaders.
- Experience leading multi‑domain security programs across GRC, SOC, and offensive security.
Technical Expertise & Strong Understanding Of
- Cybersecurity architecture (cloud, on‑prem, hybrid)
- GRC frameworks and regulatory compliance
- SOC operations, incident response, and threat management
- Penetration testing and vulnerability management
- Familiarity with major security platforms and tools (SIEM, EDR/XDR, IAM, CSPM, DLP, SOAR)
Leadership & Communication
- Exceptional ability to communicate complex security topics in business language.
Strong consulting mindset with stakeholder management and influence skills.
- Ability to challenge customer assumptions and guide risk‑based decision‑making.
Experience mentoring teams and providing technical leadership.
Certifications (Preferred)
- CISSP, CISM, CISA, CRISC
- ISO 27001 Lead Implementer / Auditor
- CEH, OSCP, or equivalent offensive security certifications
- Cloud security certifications (AWS, Azure, or GCP Security)
Skills
cybersecurity, penetration testing, cybersecurity architecture, risk assessment
* The salary benchmark is based on the target salaries of market leaders in their relevant sectors. It is intended to serve as a guide to help Premium Members assess open positions and to help in salary negotiations. The salary benchmark is not provided directly by the company, which could be significantly higher or lower.