Your Browser is Not Supported
To ensure jobstore run smoothly, please use the latest version of the following supported browsers:
RESPONSIBILITIES
✍ Responsible for the end-to-end overall solution and services activities related to CyberSecurity requirements and new emerging related ICT technologies to achieve best level of CyberSecurity confidentiality, integrity, and availability standard.
✍ Responsible for continuous maintenance, monitoring and updates of the CyberSecurity guidelines, baseline, standards, and processes. This includes anticipating growth to ensure scalability, assessing the value of enhancement emanating from benchmarks, observations or other industry best practices and incorporate the changes, if required.
✍ Responsible to establish and maintain As-Is and To-be Security process and work instruction for business workstream and technologies.
✍ Develop and recommend knowledge development and the practice of documentation and creation of engineering knowledge collateral.
✍ Technology expert offering comprehensive solutions and engineering in building technical requirements for technical solutions.
✍ Provide IT security advisory and review services on IT solution engineering and design proposals to ensure solution meets the IT security requirements as to safeguard the Client’s IT infrastructure and systems.
✍ Provide technical expertise and consultancy that are applicable in various development technologies.
✍ Responsible for the analyzing, evaluation and recommendation of the best Information Security technology and solutions for Client’s whole network and systems infrastructure.
✍ Responsible for solution evaluation, POC, UAT from Security lens and perspective that comply to Client’s security controls and baselines.
✍ Advise and consult on Information Security issues and advise various internal teams and departments.
✍ Conduct research and environmental scanning of emerging internal and external threats, technology trends and directions in mitigating IT security risks, and perform evaluation by working collaboratively across IT department and functions to improve the IT security infrastructure and services.
✍ Plan, research, analysis, evaluate and recommend Information Security technology solution, direction and adoption.
✍ Research and development of new information security technology for improvement and business opportunity.
✍ Build and maintain strategic relationship/networking and collaborations with external IT security expert and other IT organisations to benchmark and improve the Client’s CyberSecurity infrastructure service delivery to the stakeholders.
REQUIREMENTS
✍ Bachelor Degree in Computer Science, Information Systems, Engineering, Software Engineering or any related discipline.
✍ Experience of approximately 8-10 years in technology related areas, with specific expertise in related IT Security domain and engineering.
✍ Experience in writing and supporting strategic business strategies and having a business centric mindset.
✍ A clear vision how to translate security architecture and designs into detailed technical component based on specific architecture principles.
✍ In this role it is required to master security engineering life cycle and understanding of enterprise security architecture landscape.
✍ Fundamental knowledge in cyber security governances, guidelines and risks and cyber security solutions landscape.
✍ Fundamental knowledge of IT networking and preferable understanding of OT and IoT architecture and engineering.
✍ Experience in hardening exercises, and technical compliance assurance exercises.
JOB HIGHLIGHTS
✅ Local Malaysian only.
✅ 5-day work week with a hybrid working arrangement.
✅ Excellent growth and career advancement opportunities.
✅ Competitive remuneration package.
✅ Great MNC (energy sector) working culture.
"To begin as an Integrator, and finally an Innovator."
Arashs Technology is an information technology firm dedicated to assisting institutions and organizations in achieving their financial objectives by more effectively managing solutions that encompass analyzing, planning, and managing the implementation of their information systems. It is in line with the company's mission - to develop sophisticated IT scopes in Software & Hardware, as well as the Integration Process.
Seeing a significant business opportunity in the emerging private firms' IT systems, Arashs Technology focuses on providing solutions and consultations to the private sector and focusing on maximizing return on their IT hardware and software investment. This has been achieved through the ability to mobilize information technology expertise, utilize proven methodologies, and draw upon our industry knowledge base in a client-responsive and cost-effective manner.
責任
✍ 負責與網路安全要求和新興相關ICT技術相關的端到端整體解決方案和服務活動,以實現最佳水準的網路安全機密性、完整性和可用性標準。
✍ 負責網路安全指南、基準、標準和流程的持續維護、監控和更新。這包括預測成長以確保可擴展性,評估基準、觀察或其他行業最佳實踐帶來的增強價值,並在需要時納入變更。
✍ 負責建立和維護業務工作流程和技術的現況和未來安全流程和工作指導。
✍ 開發並推薦知識開發以及文件化實務和工程知識抵押品的創建。
✍ 技術專家提供全面的解決方案和工程,以建構技術解決方案的技術要求。
✍ 提供IT 解決方案工程和設計建議的IT 安全諮詢和審查服務,以確保解決方案符合IT 安全要求,從而保護客戶的IT 基礎設施和系統。
✍ 提供適用於各種開發技術的技術專業知識和諮詢。
✍ 負責為客戶的整個網路和系統基礎設施分析、評估和推薦最佳的資訊安全技術和解決方案。
✍ 負責從安全角度和角度進行符合客戶安全控制和基線的解決方案評估、POC、UAT。
✍ 就資訊安全問題提供建議和諮詢,並為各個內部團隊和部門提供建議。
✍ 對新出現的內部和外部威脅、技術趨勢和減輕 IT 安全風險的方向進行研究和環境掃描,並透過跨 IT 部門和職能部門的協作進行評估,以改善 IT 安全基礎設施和服務。
✍ 規劃、研究、分析、評估和推薦資訊安全技術解決方案、方向和採用。
✍ 研究和開發新的資訊安全技術以改善和創造商業機會。
✍ 與外部 IT 安全專家和其他 IT 組織建立和維護策略關係/網路和協作,以衡量和改善客戶向利害關係人提供的網路安全基礎設施服務。
要求
✍ 電腦科學、資訊系統、工程學、軟體工程或任何相關學科的學士學位。
✍ 在技術相關領域擁有約 8-10 年的經驗,並具有相關 IT 安全領域和工程的具體專業知識。
✍ 具有撰寫和支援策略性商業策略的經驗,並具有以業務為中心的心態。
✍ 清楚地了解如何根據特定的架構原則將安全架構和設計轉化為詳細的技術組件。
✍ 此角色需要掌握安全工程生命週期並了解企業安全架構環境。
✍ 網路安全治理、指南和風險以及網路安全解決方案領域的基礎知識。
✍ IT 網路的基礎知識以及對 OT 和物聯網架構和工程的更好理解。
✍ 具有強化練習和技術合規性保證練習的經驗。
工作亮點
✅ 僅限馬來西亞本地人。
✅ 每週工作 5 天,採用混合工作安排。
✅ 極佳的成長和職涯發展機會。
✅ 有競爭力的薪資待遇。
✅ 偉大的跨國公司(能源部門)工作文化。
"To begin as an Integrator, and finally an Innovator."
Arashs Technology is an information technology firm dedicated to assisting institutions and organizations in achieving their financial objectives by more effectively managing solutions that encompass analyzing, planning, and managing the implementation of their information systems. It is in line with the company's mission - to develop sophisticated IT scopes in Software & Hardware, as well as the Integration Process.
Seeing a significant business opportunity in the emerging private firms' IT systems, Arashs Technology focuses on providing solutions and consultations to the private sector and focusing on maximizing return on their IT hardware and software investment. This has been achieved through the ability to mobilize information technology expertise, utilize proven methodologies, and draw upon our industry knowledge base in a client-responsive and cost-effective manner.
Role & Responsibilities:
Qualifications:
- Data Security, Privacy, Classification and Data Loss Protection.
- IT Disaster Recovery Planning and Business Continuity Management.
- Network security architecture, management and controls including firewall, routers, IPS etc.
- Threat Intelligence & Advanced Persistent Threats (APT).
- Security Strategy and Roadmaps.
- Security Policy, Standard and Framework.
- Information Security Management Systems.
- Log Management and SIEM.
- Identity and access management solutions and implementation.
- Cloud security.
Perks & Benefits
Established in 2008 by Cyber Security veterans, we are the Industry Leader in Cyber Security services and solutions. We are CREST Accredited for the provision of Penetration Testing (Pentest) services and also a Malaysia Digital (MD) Status company. At FIRMUS, our mission is to be the cornerstone cybersecurity partner strengthening our clients through service excellence and business competence. Through our integrated team of domain experts in Assessment, Assurance, Operational Technology and Solutions; we help our clients to capitalize on new opportunities, assess and manage their cyber threats and risk to achieve their business growth.
Role & Responsibilities:
Qualifications:
Perks & Benefits
Established in 2008 by Cyber Security veterans, we are the Industry Leader in Cyber Security services and solutions. We are CREST Accredited for the provision of Penetration Testing (Pentest) services and also a Malaysia Digital (MD) Status company. At FIRMUS, our mission is to be the cornerstone cybersecurity partner strengthening our clients through service excellence and business competence. Through our integrated team of domain experts in Assessment, Assurance, Operational Technology and Solutions; we help our clients to capitalize on new opportunities, assess and manage their cyber threats and risk to achieve their business growth.
角色和職責:
資格:
津貼和福利
Established in 2008 by Cyber Security veterans, we are the Industry Leader in Cyber Security services and solutions. We are CREST Accredited for the provision of Penetration Testing (Pentest) services and also a Malaysia Digital (MD) Status company. At FIRMUS, our mission is to be the cornerstone cybersecurity partner strengthening our clients through service excellence and business competence. Through our integrated team of domain experts in Assessment, Assurance, Operational Technology and Solutions; we help our clients to capitalize on new opportunities, assess and manage their cyber threats and risk to achieve their business growth.
角色和職責:
資格:
- 資料安全、隱私、分類和資料遺失保護。
- IT 災難復原規劃和業務連續性管理。
- 網路安全架構、管理和控制,包括防火牆、路由器、IPS等。
- 威脅情報和進階持續性威脅 (APT)。
- 安全戰略和路線圖。
- 安全政策、標準和框架。
- 資訊安全管理系統。
- 日誌管理和 SIEM。
- 身分和存取管理解決方案和實施。
- 雲端安全。
津貼和福利
Established in 2008 by Cyber Security veterans, we are the Industry Leader in Cyber Security services and solutions. We are CREST Accredited for the provision of Penetration Testing (Pentest) services and also a Malaysia Digital (MD) Status company. At FIRMUS, our mission is to be the cornerstone cybersecurity partner strengthening our clients through service excellence and business competence. Through our integrated team of domain experts in Assessment, Assurance, Operational Technology and Solutions; we help our clients to capitalize on new opportunities, assess and manage their cyber threats and risk to achieve their business growth.
Responsible for supporting and improving the IT Security Posture of related hardware, software, and configuration to ensure it meets the company security policy and minimum security baseline.
Responsibilities:
Secure the information system by identifying and solving potential security issues and recognizes potential abnormalities and reports violations.
Maintain a proactive approach to protecting the system by defining access privileges, control structures, and resources.
Maintain the infrastructure health by performing daily monitoring, patch updates, and configuration review. Implements security improvements by assessing the current situation, evaluating trends, and anticipating requirements.
Liaise with vendors to ensure projects, services and tasks are implemented as per specification and timely manner.
Prepare technical documentation, system manuals, workflow processes, procedures, and guidelines and update them according to SOP.
Ensure the completion of new equipment setup or configuration changes according to the maintenance schedule or recommended changes.
Determines security violations and inefficiencies by conducting periodic audits. Upgrades system by implementing and maintaining security controls.
Assist in every related area of IT Infrastructure whenever required to ensure the continuous smooth running of the MIS department.
To provide after-hours support according to work requirements and job schedule.
To perform any other tasks or assignments as directed by the management from time to time.
Official account of Jobstore.
AIA Digital+ is a Technology, Digital and Analytics innovation hub dedicated to powering AIA to be more efficient, connected and innovative as it fulfils its Purpose to help millions of people across Asia-Pacific live Healthier, Longer, Better Lives.
If you are hungry and driven to play an active role in shaping a better tomorrow, we want to hear from you. Because the work we do at AIA Digital+ makes a difference in the lives of millions of people, every day. We will equip you with the critical skills, tools and technology, and endless opportunities to learn, contribute and thrive in a dynamic and exciting environment.
If you want to shape a brighter future at AIA Digital+, please read on.
About the Role
This role is for the passionate hardcore Engineering professional to join the team as an Automation expert. The ideal candidate should possess in-depth expertise in scripting, development languages, Ansible, and Jenkins, with a focus on automation strategies.#LI-DNP
Build a career with us as we help our customers and the community live healthier, longer, better lives.
You must provide all requested information, including Personal Data, to be considered for this career opportunity. Failure to provide such information may influence the processing and outcome of your application. You are responsible for ensuring that the information you submit is accurate and up-to-date.
Official account of Jobstore.
Official account of Jobstore.