Our Client is an IT Shared Services supporting an international logistic company. Be part of a truly global team with over 1400 highly skilled IT professionals working in a friendly, multicultural environment of 26 nationalities in Cyberjaya. We are looking for an experienced and passionate Information Security Consultant, to join their Information Security Services team! The team’s mission is to predict and prevent incidents by identifying and helping to remediate security threats and weaknesses within the company's IT portfolio, emphasizing on applications & services.
Being part of this team, you will provide end-to-end security consultancy on application layer, building security into our IT solutions from very beginning. The projects will seek your advice and support along the risk position of the service in its lifecycle.
Your work is essential to protect the group’s information assets in a dynamic threat landscape by secure design. To achieve this, you will be interacting with business colleagues, solution architects and developers, to name a few.
Team introduction:
Information Security Services cooperates with all division under the IT Security, Risk and Compliance Management team to meet business partner's requirements to maintain the confidentiality, integrity and availability of the IT infrastructure and assets. Services provided are but not limited to:
• Penetration Testing
• Threat Intelligence
• Vulnerability Management
• Support topics on compliance assessment on ISO readiness and data protection
The team also provides consulting services by reviewing & approving the security aspects of the existing network setup (Link Request Approvals) as well as system/software architectures (Application Build Recommendations & Change Requests). We believe the recommendation provides the best way to move forward to both strengthening existing security mechanisms and compensating for any inherent security weaknesses.
At least 7 years of experience in information security topics and hands-on Penetration Testing knowledge (methods & tools).
Compulsory experience
At least 7 years of experience in information security topics and hands-on Penetration Testing knowledge (methods & tools).
What You Will Do
-
Support projects along the secure development lifecycle in all security related matters.
-
Provide consultancy and review on secure architectures.
-
Run penetration tests and facilitate risk based decision making, propose mitigation for issues identified.
-
Be subject matter expert for secure development within application security consultancy.
-
Participate on change and external link management processes by doing technical security reviews.
-
Participate on change and configuration management by doing technical security reviews.
-
Assist and train junior team members.
What You Need:
-
At least 7 years of experience in Information Security application consultancy.
-
Up-to date knowledge about current architecture patterns and application stacks used in application development.
-
Prior knowledge in penetration testing tools such as Burp Suite, HCL App Scan, OWASP ZAP, etc.
-
Ability to adapt to dynamic threat landscape in a global environment.
-
Strong analytical skills and efficient problem solving.
-
Added advantage: Certifications like GIAC family, CISSP, CISA, CEH, CompTIA Security+ or similar
What's On Offer:
-
Offered Salary
:
Up to RM 11,000 + RM700 Allowance
-
Working hours
:
40 hours spread over 5 days a week.
-
Type
-
Work Location
:
Permanent
:
Cyberjaya, Malaysia
-
Offered Benefits
:
Meal Cards, On-Going Professional and Technical Training and Certifications, Choose Any Day for Your Vacation From Earned Public Holiday (Saturday and Ad Hoc), Smart Casual Everyday, Global Internal Job Opportunities Available, Unlimited Outpatient Medical, Home Office Possibilities
Ease of access: Central HQ location