You are successfully logged out of your my randstad account

You have successfully deleted your account

cybersecurity analyst (hybrid).

job details

summary

    job details

    about the company
    A public-listed household name with a strong presence across 20 markets worldwide and a leader in 14 of them. They have a strong emphasis on data protection and cyber security. Not to mention, an attractive benefits package.

    about the job

    The primary objective of this role is to drive the third party and vendor risk portfolio within the organisation. In addition to that, you will also contribute to the development and execution of the organisational Cyber Security Strategy.

    • Lead client security risk assessments/audit and provide advisory support to technical and business on the evaluation of risks, development of policies, and work with stakeholders to define and implement process enhancements.
    • Communicate information security risk, compliance gaps and other security issues in a business context, translating technical risks into business risks.
    • Work internally with technical and business partners to instil a risk-conscious culture by understanding the business drivers, building baseline and measurable benchmarks.
    • Develop, review and update compliance procedures and internal controls.
    • Produce and implement security awareness to internal/external stakeholders.
    • Identify emerging trends in the industry and establish strategic guidance related to best practice approaches for address those trends
    • Inspire and support a security culture across the organisation, working with development and engineering teams to ensure security, trust and privacy are key elements of product designs, and prioritizing security remediation work.


    about the manager/ team

    The team is led by one of the top cyber security leaders in the country with a wholistic cyber security portfolio.

    Members of the security team are empowered by senior leadership to identify security control gaps or risks within the organisation and work toward effective mitigation, giving the ability to influence the security posture of our infrastructure and products.

    skills and experience required

    • Understanding of information security policy, industry accepted frameworks and security standards such as ISO 27001/27002, CIS Controls, CoBIT and other regulatory compliance requirements such as SOC2.
    • Ability to work with various stakeholders to ensure security solutions are implemented as per regulatory and internal policies requirements.
    • Demonstrated problem solving, analytical and investigative skills combined with the ability to develop creative solutions and navigate through ambiguity in a fast-paced, agile environment.
    • Excellent stakeholder engagement and relationship building skills in addition to meeting facilitation, presentation, and demonstrated attention to detail.
    • Strong understanding of statutory laws and cyber security regulations
    • Desire to participate within the security community through events and conferences, supporting the sharing of information security knowledge and expertise

    Even if you do not meet all these requirements but feel that you have a unique skill set that you bring to the team and a high motivation to grow in other areas, we strongly encourage you to apply.



    note: Candidates must be a citizen of, or legally allowed to work in Malaysia.

    how to apply

    If you are ready to take the next step in your career, use the 'apply' function. Alternatively, you may reach out to Zen | zen.teng@randstad.com.my for a confidential chat.

    Zen Teng | Senior Recruitment Consultant | zen.teng@randstad.com.my

    about the company
    A public-listed household name with a strong presence across 20 markets worldwide and a leader in 14 of them. They have a strong emphasis on data protection and cyber security. Not to mention, an attractive benefits package.

    about the job

    The primary objective of this role is to drive the third party and vendor risk portfolio within the organisation. In addition to that, you will also contribute to the development and execution of the organisational Cyber Security Strategy.

    • Lead client security risk assessments/audit and provide advisory support to technical and business on the evaluation of risks, development of policies, and work with stakeholders to define and implement process enhancements.
    • Communicate information security risk, compliance gaps and other security issues in a business context, translating technical risks into business risks.
    • Work internally with technical and business partners to instil a risk-conscious culture by understanding the business drivers, building baseline and measurable benchmarks.
    • Develop, review and update compliance procedures and internal controls.
    • Produce and implement security awareness to internal/external stakeholders.
    • Identify emerging trends in the industry and establish strategic guidance related to best practice approaches for address those trends
    • Inspire and support a security culture across the organisation, working with development and engineering teams to ensure security, trust and privacy are key elements of product designs, and prioritizing security remediation work.


    about the manager/ team

    The team is led by one of the top cyber security leaders in the country with a wholistic cyber security portfolio.

    Members of the security team are empowered by senior leadership to identify security control gaps or risks within the organisation and work toward effective mitigation, giving the ability to influence the security posture of our infrastructure and products.

    skills and experience required

    • Understanding of information security policy, industry accepted frameworks and security standards such as ISO 27001/27002, CIS Controls, CoBIT and other regulatory compliance requirements such as SOC2.
    • Ability to work with various stakeholders to ensure security solutions are implemented as per regulatory and internal policies requirements.
    • Demonstrated problem solving, analytical and investigative skills combined with the ability to develop creative solutions and navigate through ambiguity in a fast-paced, agile environment.
    • Excellent stakeholder engagement and relationship building skills in addition to meeting facilitation, presentation, and demonstrated attention to detail.
    • Strong understanding of statutory laws and cyber security regulations
    • Desire to participate within the security community through events and conferences, supporting the sharing of information security knowledge and expertise

    Even if you do not meet all these requirements but feel that you have a unique skill set that you bring to the team and a high motivation to grow in other areas, we strongly encourage you to apply.



    note: Candidates must be a citizen of, or legally allowed to work in Malaysia.

    how to apply

    If you are ready to take the next step in your career, use the 'apply' function. Alternatively, you may reach out to Zen | zen.teng@randstad.com.my for a confidential chat.

    Zen Teng | Senior Recruitment Consultant | zen.teng@randstad.com.my