- The position will heavily involve in daily IT Security operations, with main focus in enforcing compliance of security control on Privilege access and systems configuration hardening on OS, databases and application.
- Define and document policies and procedures pertaining to the security control requirement
- Implement and research security technology to ensure evergreen of existing tools
- Monitors compliance with information security policies and procedures, referring problems to the appropriate department manager.
- Monitors the internal control systems to ensure that appropriate access levels are maintained.
- Provide support and maintenances to Information Security devices, systems and tools.
- A Bachelor's Degree in Information Technology or Information system experience may be substituted for educational requirements (5 years minimum)
- Security industry certifications such as CISSP, CISM or CEH
- Minimum 5 years of experience working in a large-scale IT environment with focus on Information Security.
- High-level understanding of TCP/IP protocol and OSI Seven Layer Model.
- Excellent communication skills, both oral and written
- Knowledge of security best practices and concepts
- Analyzes & prepares recommendations relating to security for existing IT infrastructures
- Knowledge of Windows and/or Unix-based systems/architectures.
- Knowledge on AS400 and Mainframe security would be a plus
- Intermediate knowledge of network security devices (firewall, IPS/IDS, routers, switches)
- Intermediate level of knowledge of cryptography/cryptographic systems
- Specialist possess strong knowledge and vast experience in certain technology may be substituted for above experiences
- Highly result oriented and can work independently.
- Ability to build relationships and interact effectively with internal and external parties.
- Good analytical, technical, written and communication skills.
- Ability to work effectively as a team
- Strong analytic skills.
GCS - Privilege Access MY - GCIS - CSA, PAM (CW Conversion) - Malaysia - CIMB THAI
Description
Job Description :
Job Purpose .
Implementing corporate IT security technology and measures in order to safeguard sensitive information, protect information security assets to support business growth and mitigate reputation and financial loss.
Key Responsibilities .
Job Specification .
Qualifications
(Basic Degree/Diploma etc)
Professional Qualification and/or Regulatory, Licensing requirements
Relevant Work Experience
Required Competencies and Skills .
Competencies/Skills
(Essential to succeed in this job)
Technical/Functional skills
Personal skills (Soft Competencies [Core/Leadership])