Job Description

RESPONSIBILITIES . Manage the bank's cybersecurity incident response and security operations. . Responsible to implement/manage cybersecurity tools such as SIEM, PAM, DAM, IDP, IDR, DLP. . Responsi RESPONSIBILITIES . Manage the bank's cybersecurity incident response and security operations. . Responsible to implement/manage cybersecurity tools such as SIEM, PAM, DAM, IDP, IDR, DLP. . Responsible for managing security products i.e:Firewall, Proxy, Waf etc. . Propose and integrate security practices and processes into operations to ensure the delivery of infrastructure have vulnerabilities resolved and mitigated. . Administrate and maintain MFA and other identity management systems. . Fine-tune secure infrastructure practices, standards, guidelines, and solutions towards adopting technical best practices. . Review vulnerability scan and penetration testing reports and implement recommendations to mitigate the risks. . Responsible to execute and validate system pre-implementation security checklist and Security Configuration Document, e.g. server hardenings, firewall settings, etc. . Patching and monthly maintenance of security tools and supporting systems. . Be updated with information security frameworks such as NIST, ISO 27001, PCI DSS. . Manage security projects and implementations to mitigate IT risks and comply with MAS or audit requirements. . Review security review reports and implement recommendations to mitigate the identified gaps. . Responsible for creating/Fine-tuning of security SOP's. . Any other activities assigned by Head IT & Sys as and when required. REQUIREMENT . Diploma / Degree. Professional qualification in IT Domain will be an added advantage. . At least 5-7 years of working experience in deploying, managing enterprise-level security infrastructure platforms. . Strong technical experience in security technologies and supporting technologies such as Networks, API, OS, Database. . Strong hands-on experience on security operations, patching, hardening of networks and servers, vulnerability scanning, penetration testing, incidence response. . Experience in managing security solutions such as SIEM, PAM, DAM, IDP, IDR, DLP. . Knowledge in Cloud, Web infrastructure security and compliance. . Excellent communication and interpersonal skills, and able to work well with cross-organizational teams. . Strong analytical & problem-solving skills. . Exposure to regulatory requirements such as MAS TRM and PDPA. . CISSP certification will be an added advantage.