Third Party Security Risk Assessment

6 months ago


Kuala Lumpur, Malaysia AIA Malaysia Full time

**Responsibilities**:
**Third Party Risk Assessment**:

- Collaborate with cross-functional teams to identify and assess potential security risks associated with third-party vendors.
- Assist in conducting security assessments and evaluations of vendors' security controls and practices.
- Maintain documentation related to third-party risk assessments and ensure compliance with established policies and standards.
- Participate in the development and implementation of risk mitigation strategies for high-risk vendors.

**Vendor Management**:

- Assist in the onboarding and offboarding of vendors from a security perspective.
- Monitor vendor compliance with security requirements and communicate findings to relevant stakeholders.
- Support the vendor assessment lifecycle, including periodic reviews and audits, to ensure ongoing compliance and security alignment.

**Administrative Tasks**:

- Maintain accurate and up-to-date records of security-related documentation, including risk assessments, compliance reports, and vendor-related information.
- Generate and maintain security reports and metrics for management and stakeholders.
- Assist in coordinating security awareness and training programs for vendors and internal teams.
- Contribute to the development and enhancement of security policies, procedures, and guidelines.

**Continuous Learning and Development**:

- Stay current with industry trends, best practices, and emerging technologies in the cybersecurity and vendor management space.
- Actively seek opportunities to expand knowledge and skill set through training and certifications.

**Qualifications**:

- Bachelor’s degree in information technology, Cybersecurity, or a related field, or equivalent work experience.
- 1-3 years of experience in cybersecurity, risk management, or vendor management.
- Working knowledge of third-party risk assessment methodologies and vendor management practices.
- Familiarity with security frameworks such as NIST, ISO 27001, or similar.
- Strong organizational and administrative skills with an eye for detail.
- Excellent communication skills, both written and verbal.
- Ability to work collaboratively in cross-functional teams.
- Basic understanding of security tools and technologies is a plus.
- Relevant certifications (e.g., CompTIA Security+, Certified Information Systems Security Professional (CISSP), Certified Third Party Risk Professional (CTPRP)) are advantageous but not required.

**Job Type**: Contract
Contract length: 24 months

**Salary**: RM10,000.00 - RM15,000.00 per month

**Benefits**:

- Dental insurance
- Health insurance
- Vision insurance

Schedule:

- Monday to Friday

Application Question(s):

- Are you familiar with security frameworks such as NIST, ISO 27001
- Do you require a work visa?
- Are you based in Malaysia?
- certifications (e.g., CompTIA Security+, Certified Information Systems Security Professional (CISSP), Certified Third Party Risk Professional (CTPRP)?

**Experience**:

- Third Party Risk Assessment: 3 years (required)
- Cybersecurity: 3 years (required)
- Vendor management: 3 years (required)
- Security and risk management: 3 years (required)



  • Kuala Lumpur, Malaysia Avows Technologies Sdn Bhd Full time

    Conduct comprehensive risk assessments of third-party vendors and partners. Evaluate vendors' security policies, procedures, and controls to ensure they meet FWD's standards. Identify potential risks associated with third-party relationships and recommend appropriate mitigation measures. Collaborate with internal stakeholders to gather necessary...


  • Kuala Lumpur, Malaysia Prudential plc Full time

    Internship - Third Party Risk Management & Outsourcing Prudential's purpose is to be partners for every life and protectors for every future. Our purpose encourages everything we do by creating a culture in which diversity is celebrated and inclusion assured, for our people, customers, and partners. We provide a platform for our people to do their best work...


  • Kuala Lumpur, Malaysia Prudential plc Full time

    Prudential’s purpose is to be partners for every life and protectors for every future. Our purpose encourages everything we do by creating a culture in which diversity is celebrated and inclusion assured, for our people, customers, and partners. We provide a platform for our people to do their best work and make an impact to the business, and we support...


  • Kuala Lumpur, Malaysia IT Business Solutions Sdn Bhd Full time

    Job description Group Security & Resilience Manager/Senior Manager, Third-Party Risk Reporting line Director/Head, Third-Party Risk Oversight Location Based in Kuala Lumpur. Requirement to travel in Group locations is low (10%) Purpose of Senior Manager role: Working with Group functions: Group Technology, Group Finance (particularly Procurement),...

  • Cyber Risk Analyst

    6 months ago


    Kuala Lumpur, Malaysia S&P Global Full time

    **About the Role**: **Grade Level (for internal use)**: 08 S&P Global Corporate **About the Role**: Cyber Risk Analyst This role helps reduce the cyber risk posed by third parties and protects S&P Global brands against possible attacks against our information assets by threat actors via backdoor created by our vendors. Primary responsibilities will include...


  • Kuala Lumpur, Malaysia Prudential plc Full time

    Prudential’s purpose is to be partners for every life and protectors for every future. Our purpose encourages everything we do by creating a culture in which diversity is celebrated and inclusion assured, for our people, customers, and partners. We provide a platform for our people to do their best work and make an impact to the business, and we support...


  • Kuala Lumpur, Malaysia DSS Software Solutions Sdn Bhd Full time

    D19494-Vulnerability Management Assessment Vulnerability Management Assessment **Job Description**: **KEY ACCOUNTABILITIES**: 1. Be part of vulnerability management team in Asia and work closely with Global domain teams across the world. security domain. tools like Qualys (DAST), BurpSuite, Silverline F5 WAF, etc. 4. Analyze and assess the impact from...

  • IT Security Risk

    4 months ago


    Kuala Lumpur, Malaysia Techtiera Sdn Bhd Full time

    **ROLES & RESPONSIBILITIES**: **Risk Assessments, Audit and Regulatory Management** - Facilitate Technology related audit engagements with internal auditor, statutory auditor and regulator, following up with relevant parties to ensure all issues identified are remediated. - Drive annual IT risk and control self-assessment exercises according to MAS...


  • Kuala Lumpur, Malaysia Jobs2Grab Full time

    **_JOB SCOPE_** **_ Role : Manager - Third Party Management_** - To support Group ORM in managing group-wide third party risk by embedding user oriented TPM process and supplemented by training, communication; provide assurance to ensure robust process of TPM as day-to-day operations of all AIA usersQuality Assurance for assigned BUs, Group IT and Finance -...


  • Kuala Lumpur, Malaysia JTI - Japan Tobacco International Full time

    We are JTI, Japan Tobacco International, and we are present in 130 countries. We have spent years innovating, creating new and better products for **the consumers to choose from**. This is our business. But not only. Our business is our people. Their talent. Their potential. We believe that when they are** free to be themselves**, and they are given the...


  • Kuala Lumpur, Malaysia RHB Banking Group Full time

    Working Hour - Regular Hours - Monday - Friday- Business Area - Risk & Credit Management- Location - Malaysia - Kuala Lumpur- Description **Primary Objective**: We are seeking a highly experienced and dynamic individual to join our team as the Head, Operation Resilience of Third-Party Risk Management (TPRM) and Outsourcing. This role will be responsible for...


  • Kuala Lumpur, Malaysia Power IT Services Full time

    **Job title: Vulnerability Management Assessment** **EXPERIENCE AND QUALIFICATIONS**: - Experience in Vulnerability Management & Assessment (Infrastructure and Application). - Strong experience in SAST/DAST onboarding and roll out. - Help challenge vulnerability findings from pentest activity conducted by independent third-party assessor. Strong technical...


  • Kuala Lumpur, Malaysia Agensi Pekerjaan Smarttrend Sdn Bhd Full time

    Leadership: - Lead and mentor team of security specialist and SMEs to ensure effective execution of security assurance activities Strategy and Planning: - Develop, implement, and maintain a comprehensive security assurance strategy tailored to companies operating environment, risk profile, industry and regulatory standard - Collaborate with senior...


  • Kuala Lumpur, Malaysia LOUIS VUITTON Malaysia Full time

    Our client, a world leader in high quality products, Luxury brands, present in all major sectors of the luxury industry: Wines & Spirits, Fashion & Leather Goods, Perfumes & Cosmetics, Watches & Jewelry, Selective Distribution are seeking to hire a IT Governance & Security Analyst. You will play a vital role in governance & compliance, risk management,...

  • Claims Examiner

    6 months ago


    Kuala Lumpur, Malaysia Allianz Full time

    Claims Examiner - Third Party Bodily Injury Claims 30412 | Customer Services & Claims | Professional | ((custPositionClusterCSB)) | Allianz Malaysia | Full-Time | Permanent **JOB SUMMARY** To vet through, assess third party bodily injury claims and to make the necessary offers/mandates for such claims. **RESPONSIBILITIES** - Process and recommend...


  • Kuala Lumpur, Malaysia Avows Technologies Sdn Bhd Full time

    1. At least 4 years’ experience in Vulnerability Management & Assessment (Infrastructure and Application). 2. Diploma or Bachelors in IT/Computer Science, Engineering, or related fields. 4. Strong experience in SAST/DAST onboarding and roll out. scanning/pentest tools. 7. Help challenge vulnerability findings from pentest activity conducted by independent...

  • Claims Examiner

    6 months ago


    Kuala Lumpur, Malaysia Allianz Full time

    Claims Examiner (Motor Third Party Property Damage) **Summary** As a Claims Examiner, you will be responsible for evaluating and processing Motor Third Party Property Damage claims. You will investigate claims, determine coverage and liability, and ensure fair and prompt settlement in accordance with company policies and guidelines. **Key...


  • Kuala Lumpur, Malaysia Emantisit Full time

    We are hiring for Vulnerability Management Assessment with one of our clients in Malaysia. Please find the details below: **Job Type**: 12 months extendable contract Experience: 4+ years Work Location: Kl, Malaysia 1. At least 4 years’ experience in Vulnerability Management & Assessment (Infrastructure and Application). 2. Diploma or Bachelors in...


  • Kuala Lumpur, Malaysia Smartrend Recruitment & Consultancy Full time

    **Leadership**: - Lead and mentor team of security specialist and SMEs to ensure effective execution of security assurance activities - Strategy and Planning: - Develop, implement, and maintain a comprehensive security assurance strategy tailored to companies operating environment, risk profile, industry and regulatory standard. - Collaborate with senior...


  • Kuala Lumpur, Malaysia United Overseas Bank (Malaysia) Bhd Full time

    **About UOB**: United Overseas Bank Limited (UOB) is a leading bank in Asia with a global network of more than 500 branches and offices in 19 countries and territories in Asia Pacific, Europe and North America. In Asia, we operate through our head office in Singapore and banking subsidiaries in China, Indonesia, Malaysia and Thailand, as well as branches and...