Job Description

Responsibilities

• Execute cyber security Vulnerability Management program to assess the security posture and compliance of IT services and assets in the APAC region. Be part of the team to implement the vulnerability management activities, which may include vulnerability scanning, security patch management, security testing and compliance checks.
• Work in collaboration with Infrastructure and Application teams to assess security patches in response to security advisories. Monitor the patch level of Infrastructure and Applications, assess the risks and report overdue patches for management attention.
• Carry out vulnerability assessment, penetration tests, and other types of security assessments of Infrastructure and Applications to proactively identify risks for mitigation.
• Perform security baseline compliance scanning on existing IT infrastructure assets using automated tools to validate security configurations settings.
• Review proposed changes to Firewall Rules and coordinate the regular review of firewall rules to remove obsolete, redundant and risky rules.
• Work with global team to perform periodic email phishing simulation exercise for the AsiaPac region and promote awareness on cyber security.
• Provide accurate reporting of security metrics and KRI to management on the state of security posture and vulnerability management.

Job Requirements

• Minimum 4 years of cyber security experience, out of which a minimum of 2 years of experience in Vulnerability Management.
• Experience in cyber security controls, processes and standards, such as NIST cybersecurity framework, and IT controls framework.
• Experience in banking or finance industry, with good understanding of corporate banking products and services.
• Strong written and verbal communication skills with ability to influence senior management, heads of department, technical managers and other key stakeholders.
• Strong stakeholder management skills to collaborate with Head Office, regional and branch offices.
• Strong working knowledge of industry trends, products and technology in the Cyber Security domains (e.g., data, network, system, virtualization, internet of things and cloud).
• Self-driven and independent, with good attention to detail and quality.
• Willing to take on new tasks and initiatives to contribute towards continuous improvement.

If you are interested in this position, please click "Apply Now" and we will review your qualifications & reach out to you for further discussion & next steps.

Only shortlisted candidates will be responded to, therefore if you do not receive a response within 14 days please accept this as notification that you have not been shortlisted.
EA Licence No: 11C5502
Registration No: R1876903

eFinancialCareers