Senior Cybersecurity Engineer - Shah Alam, Malaysia, Selangor - TIME dotCom Berhad

    TIME dotCom Berhad
    TIME dotCom Berhad Shah Alam, Malaysia, Selangor

    1 week ago

    Default job background
    Full time
    Description

    Job Overview:

    The Senior Cybersecurity engineer (Level 3) is responsible for the design and implementation of network security solutions in an organization, not excluding network security testing and implementation of new products or improvements to existing and current products. Providing support to the production environment and ensuring that the right security policies and practices are implemented and enforced, including conducting client penetration and vulnerability test and reports.

    Your Work Life:

    • Firewall Security Infrastructure – Cloud and on premise.
    • Project, configure, implement, and maintain all security platforms and any other related software, such as anti-virus, Email Security Gateway, NGFW, WAF, SIEM, and NDR.
    • Be responsible for project progress monitoring, develop strategy and lead deployment including handover to operations by coordinating activities across suppliers/ vendors, internal departments and business stakeholders.
    • Plan and appraise ongoing assessment of antivirus, application control, firewall, SIEM, VPN, SSL, intrusion detection or intrusion prevention and other network component policies.
    • Guarantee network security best practices are executed through auditing: change control, firewall configurations, and monitoring.
    • Articulate systems and methodologies as well as reply to security-related events and support in remediation efforts.
    • Coordinate and oversee log analysis for company managed services offerings to ensure customer policy and security requirements are met.
    • Maintain network security devices to enable pro-active defense of networks within a managed service CSOC environment, providing protective monitoring to multiple commercial customers.
    • Work with customers to form and fix appropriate policy and signature rules. This comprises tuning and development of the creation of custom intrusion detection and SIEM signatures and rules, including the efficient on-boarding and understanding of varying customer log sources into SIEM environments.
    • Knowledge in risk, compliance and information security policy development.
    • Reviewing system changes for security implications and recommending improvements.
    • Experience managing budget and managing a team of information technology professionals.
    • Knowledge of IT processes and controls and strong understanding of risk and control frameworks such as (ISO, NIST, ITIL, PCI-DSS and CCSK).

    What You Need:

    • A bachelor's degree in Network, Computer Science or equivalent.
    • Minimum 3 years' experience identifying threats and developing appropriate protection measures.
    • CCNA, CISA, CISM, CISSP, ITIL, Fortinet NSE or any related Security certifications will be an added advantage.
    • Experience in working with information security or other relevant work experience.
    • Knowledge of penetration testing, network security, and the techniques used to expose and correct security flaws.
    • A broad understanding of security technologies including firewalls, SIEM, antivirus software, email security gateway, WAF, Sandbox, and Cloud Security.
    • The ability to identify and spotlight vulnerabilities on on-premises and remote networks, correct problems, and prevent security breaches.
    • Responsibility and conscientiousness, including proper management of patches to defray business impact while keeping security protocols up-to-date.
    • Extensive technical know-how of security network devices (switches, antivirus, firewalls, cryptography, SIEM) and any other security networking hardware or software tools.
    • Reviewing system changes for security implications and recommending improvements.
    • The ability to think critically and innovatively about the security solutions that can keep data safe while still allowing a business to flourish.
    • An understanding of the cyber security risks associated with various technologies and ways to manage them.
    • A good working knowledge of various cyber security technologies such as network, cloud, application, and IoT.
    • Analytical and problem-solving skills to identify and assess risks, threats, patterns and trends.
    • Team working skills in order to collaborate with team members and clients.
    • Verbal communication skills, including presentation skills, with an ability to communicate with a range of technical and non-technical team members and other relevant individuals.
    • Written communication skills, for example to write technical reports.
    • Time-management and organizational skills to manage a variety of tasks and meet deadlines (the ability to multi-task and prioritize your workload)
    • Excellent attention to detail.
    • An ability to work under pressure, particularly when dealing with threats and at times of high demand.
    • Good team player, Self-confident, motivated, and independent.
    • Support L2 and L1 escalation.

    * Only shortlisted candidates will be notified

    *Local talents are preferred & prioritized.