Senior Executive IT Security
Job description
Join to apply for the Senior Executive IT Security role at Maybank
Job Description
IT Security Assessments, IT Security Governance, IT Security Technologies, IT Security Program Management, Remediation Management
Job Responsibilities
- Perform technical security assessments across infrastructure, applications, and cloud environments.
- Provide expert guidance on security architecture and cloud security best practices.
- Evaluate systems to ensure compliance with security requirements and industry standards.
- Review and enforce IT security standards, procedures, and policies.
- Assess IT practices to ensure alignment with security frameworks and regulatory requirements.
- Maintain adherence to security processes and recommend improvements.
- Manage and operate security tools and platforms, including:
- Breach and Attack Simulation (BAS)
- Control Validation Tools
- Active Directory Security (AD)
- Endpoint Detection and Response (EDR)
- Data Loss Prevention (DLP)
- Network Detection and Response (NDR)
- Provide technical expertise on the deployment, integration, and optimization of security solutions.
- Lead key security projects and initiatives from planning to execution.
- Serve as the point of contact for security tool deployments and technology rollouts.
- Organize and execute cybersecurity exercises, training, and awareness programs for stakeholders.
- Ensure effective stakeholder engagement across departments.
- Lead critical remediation programs to enhance the organization’s security posture.
- Plan, strategize, and implement corrective actions based on risk assessments and security findings.
- Collaborate with cross-functional teams to drive the timely resolution of security gaps.
Job Skills
- IT Security
- Security Governance
- Information Technology
- Security Program Management
- Remediation Management
Job Requirements
- Mandatory: CISSP certification
- Preferred: CISM, CISA, SANS, OSCP (highly regarded)
- Bachelor’s degree in a relevant field with at least 7 years of experience in IT security compliance and governance
- Strong knowledge of IT security concepts, best practices, and regulatory requirements
- Familiarity with the current cyber threat landscape, including Cyber Defence, MITRE ATT&CK, and threat-control mapping methods
- Deep understanding of attack methodologies and strategies using IT security tools and products
- Experience in secure systems development lifecycle (SDLC) assessments and security testing before deployment
- Hands-on experience conducting cybersecurity assessments, gap analyses, and cyber drills
- Ability to develop strategic security roadmaps and deliver comprehensive assessment reports with actionable recommendations
- Extensive experience with certification and audit processes, including systems compliance best practices
- Knowledge of application security and data analytics is an advantage
- Strong communication and collaboration skills, with experience working in cross-functional teams.
Note: Only shortlisted candidates will be contacted.
Seniority Level: Mid-Senior level
Employment Type: Full-time
Job Function: Finance and Sales
Industries: Banking