Jobs
>
Kuala Lumpur

    Vulnerability Management Assessment - Kuala Lumpur, Malaysia - DSS Software Solutions Sdn Bhd

    DSS Software Solutions Sdn Bhd
    DSS Software Solutions Sdn Bhd Kuala Lumpur, Malaysia

    Found in: Foundit MY A2 - 5 days ago

    Default job background
    Full time
    Description
    D19494-Vulnerability Management Assessment

    Vulnerability Management Assessment
    Job Description


    KEY ACCOUNTABILITIES:

    • Be part of vulnerability management team in Asia and work closely with Global domain teams
    across the world.

    • Be the Subject Matter Expert on vulnerability management in infrastructure & application
    security domain.

    • Identify the vulnerability issues on infrastructures and applications from various automated
    tools like Qualys (DAST), BurpSuite, Silverline F5 WAF, etc.

    • Analyze and assess the impact from vendor security advisory notification and communicate to
    relevant stakeholders for solutions.

    • Identify and prioritize active critical vulnerabilities for remediation based on risk-based approach
    and/or business risk appetite.

    • Track, follow up and documented all vulnerabilities status and updates in the registry.
    • Provide an oversight and coordinate all work related to application vulnerability management in
    Asia.

    • Analyzing structured and unstructured datasets from various sources to analyses vulnerabilities
    and produce remediation recommendations.

    • Provide technical advisory to IT Production or Development Teams to effectively remediate
    vulnerabilities.

    • Ensure timely follow up for remediation of vulnerabilities and assessing the risk impact
    according to internal risk methodologies and framework.

    • Recommend compensatory measures when remediation is not possible and ensuring risk
    acceptance process is followed accordingly.

    • Owning the application vulnerability management process and strive to optimize it.
    • Assist in investigation of security issues by reviewing the results of WAF alerts and other
    vulnerability identification (vulnerability scanning, web apps security testing, etc.)

    • Assist in incident handling which includes implementation of containment, protection, and
    remediation activities.

    • Perform manual security testing using tool such as BurpSuite and other open sources.
    • Flexible in supporting streamlining application security process and SDLC.
    • Support initiative for improving overall application security maturity framework and process.
    Internal

    • Coordinate with local Entity Security team for identified vulnerabilities, detected through
    vulnerability management process.

    • Supporting Cloud migration project from threat & vulnerability management standpoint and
    setting up the new process.


    EXPERIENCE AND QUALIFICATIONS:
    Qualifications

    • At least 4 years' experience in Vulnerability Management & Assessment (Infrastructure and
    Application).

    • Diploma or Bachelors in IT/Computer Science, Engineering, or related fields.
    • Experience in roll out of SDLC and Application security for enterprise products/application.
    • Strong experience in SAST/DAST onboarding and roll out.
    • Strong understanding of vulnerability assessments (including vulnerability scanning and security
    testing) and infrastructure security reviews for servers, web, and mobile applications.

    • Hands-on experience working with Qualys, BurpSuite and/or other application vulnerability
    scanning/pentest tools.

    • Help challenge vulnerability findings from pentest activity conducted by independent third-party
    assessor.

    • Strong technical understanding of threat and vulnerability assessment activities, processes, and
    systems.

    • Strong experience on web/mobile application manual testing methodologies (ie, penetration
    testing) and tools like Burpsuite (OSCP skill set preferred).

    • Familiarity with the OWASP framework and secure development of application.
    • Security Certificates in GWAPT, CISSP, CEH, CHFI or equivalent is a great plus.
    • Strong Knowledge of patch management, network security, server system administration, and
    system hardening, secure coding, and application security design.

    • In depth knowledge of applying Security controls to technology operational services.
    • Strong communication skills, both written and verbal (English), to communicate effectively
    across a wide range of stakeholders. Proven ability to explain security issues in business
    language and business issues in security language.

    • Capable of producing high quality output with a strong focus on attention to detail following
    design and delivery methods, tools, and standards.
  • AEON Bank

    Manager, Shariah Risk

    Found in: Foundit MY A2 - 5 days ago

    AEON Bank Malaysia, Kuala Lumpur Full time

    Key Responsibilities and Accountabilities · Risk identification and mitigation · Develop, maintain, and communicate Shariah risk policies and procedures to guide employees in adhering to regulatory requirements. · Integrate the processes to identify inherent Shariah non-complianc ...

  • AIA Digital+

    Assistant Manager, Governance

    Found in: Foundit MY A2 - 5 days ago

    AIA Digital+ Malaysia, Kuala Lumpur Full time

    Position Objective: · This position is responsible for providing consultation and professional advice on key technology and information security risk matters relating to the geographical responsibilities (AIA Singapore, AIA Brunei, AIA Financial Advisors, AIA Investment Managemen ...

  • AFFIN Group

    Director, IT Risk Management

    Found in: Foundit MY A2 - 4 days ago

    AFFIN Group Malaysia, Kuala Lumpur Full time

    Create your future with Affin You too can make a difference. · Join us at AFFIN, where the open minds meet and be inspired by a shared commitment to great work. Here, you don't just stay at the forefront of the industry – you can make a difference too. · Position Objective · Resp ...

  • LeapEd Services

    Monitoring And Evaluation Specialist

    Found in: Foundit MY A2 - 5 days ago

    LeapEd Services Malaysia, Kuala Lumpur Full time

    JOB PURPOSE · End-to-end Project data management including data architecture, data visualisation for reporting, project-related M&E design, data collection, analysis and storage / retrieval. · Accountable for establishing performance measures, collecting and analysing performance ...

  • Stratton Ashwood

    registered nurse

    Found in: Foundit MY A2 - 2 days ago

    Stratton Ashwood Malaysia, Kuala Lumpur Full time

    Job Summary: · As a critical care nurse, you will be responsible for providing high-quality nursing care to patients with critical illnesses or injuries. You will work closely with a multidisciplinary team to monitor, assess, and manage patients in critical condition, ensuring th ...

  • MSIG Malaysia

    Senior Executive, Information Security

    Found in: Foundit MY A2 - 2 days ago

    MSIG Malaysia Malaysia, Kuala Lumpur Full time

    This role is to assist in the Information and Technology Risk function with primary focus on the effective implementation of TRMF (Technology Risk Management Framework) and DLP (Data Loss/Leakage Prevention) Framework to ensure proper risk management in the information and Techno ...

  • Skill Quotient Resources Sdn. Bhd

    Business Analyst

    Found in: Foundit MY A2 - 4 days ago

    Skill Quotient Resources Sdn. Bhd Kuala Lumpur, Malaysia Full time

    Responsibilities:Perform business analysis across diverse projects and operational tasks. · Capture and evaluate user requirements from internal and external clients and building buy-in for your proposed solution. · Vulnerability Assessment and Analysis: Collaborate with cybers ...

  • Prudential BSN Takaful Berhad

    PBTB | Senior Manager, Business Information Security Officer (BISO)

    Found in: Foundit MY A2 - 2 days ago

    Prudential BSN Takaful Berhad Malaysia, Kuala Lumpur Full time

    Prudential's purpose is to be partners for every life and protectors for every future. Our purpose encourages everything we do by creating a culture in which diversity is celebrated and inclusion assured, for our people, customers, and partners. We provide a platform for our peop ...

  • CITAGLOBAL BERHAD

    senior executive, risk management

    Found in: Foundit MY A2 - 5 days ago

    CITAGLOBAL BERHAD Malaysia, Kuala Lumpur Full time

    SENIOR EXECUTIVE, RISK MANAGEMENT · JOB PURPOSE: · Responsible to assist the Head, Internal Audit and Risk Management to: · Maintain and periodically update the Citaglobal Group's Risk Management Framework. · Effectively implement the Risk Management Framework, methodology, sys ...

  • Boost

    Application Security Engineer

    Found in: Foundit MY A2 - 2 days ago

    Boost Malaysia, Kuala Lumpur Full time

    Boost, the digital services arm of Axiata Group Berhad, is at the forefront of digital transformation, operating brands that specialize in digital payments, digital financing, and platforms. With a focus on driving innovation and fostering synergies within the digital ecosystem, ...

  • CIMB

    Risk Control Specialist, Islamic Operations

    Found in: Foundit MY A2 - 5 days ago

    CIMB Malaysia, Kuala Lumpur Full time

    Key Responsibilities: · 1. Support the oversight on Group Islamic Banking(GIB)'s Scorecards – CIMS, RCSA- CETS, LED and KRIs submissions · Conduct Independent reviews (1st line of defense) based on samples submitted in CETs to ensure that the assurance testing has complied to the ...

  • PwC

    Manager Cybersecurity

    Found in: Foundit MY A2 - 4 days ago

    PwC Malaysia, Kuala Lumpur Full time

    Job Description & Summary · A career within Cybersecurity and Privacy services, will provide you with the opportunity to help our clients implement an effective cybersecurity programme that protects against threats, propels transformation, and drives growth. As companies pivot to ...

  • Optimum Solutions (Singapore) Pte Ltd

    IT Technology Risk Analyst

    Found in: Foundit MY A2 - 1 day ago

    Optimum Solutions (Singapore) Pte Ltd Kuala Lumpur, Malaysia Part time

    ROLE PURPOSE: - · • Assist Technology Risk Manager in managing technology risk and communicating the Bank's direction on technology risk to all staff and provides advisory services and support to JIT's role as the Technology Risk Policy Owner (RPO). · • Complement Risk Manageme ...

  • mTechnix Sdn. Bhd.

    Senior OT Cybersecurity Engineer

    Found in: Foundit MY A2 - 5 days ago

    mTechnix Sdn. Bhd. Malaysia, Kuala Lumpur Full time

    Company Description · Welcome to mTechnix Sdn. Bhd., a cybersecurity and digital innovation company based in WP Kuala Lumpur. With our tagline of Trusted Cybersecurity & Digital Innovations, we aim to provide reliable and effective solutions to meet the cybersecurity needs of bus ...

  • Sciente Consulting

    PMO Manager

    Found in: Foundit MY A2 - 5 days ago

    Sciente Consulting Kuala Lumpur, Malaysia Part time

    We are looking for a PMO Manager with proven track record of successful Project / Portfolio management, with strong experience in PMO day-to-day operations. · Mandatory Skill-set Bachelor's degree in Business Administration, Project Management, or a related field; · Minimum of 5 ...

  • KAF Investment Bank

    Operational Risk Manager

    Found in: Foundit MY A2 - 2 days ago

    KAF Investment Bank Malaysia, Kuala Lumpur Full time

    Job Summary · The Operational Risk Manager requires business acumen and appropriate knowledge and · experience in the Operational Risk field. The Operational Risk manager will effectively be · driving Operational Policy and Standards, Policy Assurance, Regulatory Compliance, Frau ...

  • Allianz Malaysia Berhad

    Risk Management Executive

    Found in: Foundit MY A2 - 3 days ago

    Allianz Malaysia Berhad Kuala Lumpur, Malaysia Full time

    Do you see change as an opportunity to shine? · You're responsible for risk identification, assessment and monitoring of key risks areas (Financial & Insurance) at Allianz General Insurance Company ("AGIC") and assist in implementing any new risk initiatives from BNM and Allianz ...

  • Prudential Services Asia

    Senior Manager, Patch

    Found in: Foundit MY A2 - 4 days ago

    Prudential Services Asia Malaysia, Kuala Lumpur Full time

    Prudential's purpose is to help people get the most out of life. We will deliver our purpose by creating a culture in which diversity is celebrated and inclusion assured, for our colleagues, customers, and partners. We provide a platform for our people to do their best work and m ...

  • Industrial and Commercial Bank of China (Malaysia) Berhad

    Senior Executive/ Executive, KL Main Branch

    Found in: Foundit MY A2 - 5 days ago

    Industrial and Commercial Bank of China (Malaysia) Berhad Malaysia, Kuala Lumpur Full time

    Job Responsibilities · Oversees the planning, development, implementation and review of the operational risk management policies, framework and procedures on timely manner to ensure the Bank is in compliance with the relevant risk management guidelines and requirements set by the ...

  • MHA Consultancy Services Sdn Bhd

    Recruiter

    Found in: Foundit MY A2 - 4 days ago

    MHA Consultancy Services Sdn Bhd Kuala Lumpur, Malaysia Full time

    About Us: · MHA Consultancy Services Sdn Bhd is a dynamic and innovative HR Consultancy company committed to strive for excellence in serving customers' comprehensive staffing needs.We are seeking a highly skilled and experienced Senior Human Resource Executive to join our team a ...