Job Description

:Responsibilities

• Experience in leading and delivering multiple security projects and solutions across one or more IT Security domains (Cyber Program Management, Cyber Threat Management, Identity & Access Management, Data Protection, Privacy, Cyber Analytics). This experience should include both advisory, implementation and operation experiences.
• Design and develop a customized security architecture, evaluate and select the best security system in one or more of the above security domains.
• Provide high-level input and security consultation in a project-based environment and ensure adequate security controls in all Business IT solutions.
• Responsible for project planning, execution and managing scope due to any new information and/or changes to initial assumptions, including implications for project time, cost, quality and risk
• Ensure the security enhancements / new security project delivery is done in line with stakeholder's requirements, timeline and cost.
• Develop and maintain a detailed security project plan which deliver to the cost, quality and time for enhancements
• The position will be heavily involved in IT security operations, including:

• Security solution delivery
• Security monitoring
• Administration for security systems (e.g. firewall, anti-malware system, IDS/IPS)
• Incident Response
• Level 2 support for IT Security operations.

• Min. Bachelor's degree in Computer Science
• Min. 6-8 years' experience working in a large-scale IT environment; Including five (5) years of information security and risk experience within the past six (6) years; including risk analysis, endpoint, server, network and web application security
• Possess Security Industry Certifications such as CISSP, CISM, SANS, GSEC and PMP, ITIL, Microsoft, CISCO
• Having good understanding of TCP/IP protocol and OSI Seven Layer Model.
• Strong technical security skills in assessment, design, implementation architecture, and program / project delivery and work across various delivery models, (Waterfall, Agile, DevOps)
• Analyzes & prepares recommendations relating to security for existing IT infrastructures / Applications.
• Expert understanding of firewall technologies.
• Ability to plan, organize and prioritize tasks to complete within established time frames.
• Highly result oriented and can work independently.
• Ability to build relationships and interact effectively with internal and external parties.
• Strong analytical, technical, and communication (both oral and written) skills.

CIMB