Cybersecurity Specialist

ROLES

The IT Assistant Manager - Cybersecurity Projects will be responsible for supporting the planning and execution of cybersecurity-related projects across the organization. This includes risk assessments, implementation of security tools and controls, security awareness programs, and policy alignment.

This role focuses on project coordination and hands-on involvement in key cybersecurity initiatives to improve the organization’s security posture.

ACCOUNTABILITIES

1. Cybersecurity Project Execution
- Support the implementation of cybersecurity initiatives including endpoint protection, DLP, MFA, SIEM, and vulnerability management.
- Assist in managing project tasks such as planning, vendor coordination, testing, and deployment.
- Ensure timely delivery of milestones and tracking of action items.
- Provide hands-on configuration or review of deployed security tools.

2. Risk Management & Assessment
- Conduct risk assessments on systems and services and recommend mitigations.
- Coordinate periodic vulnerability scans and patch follow-ups.
- Work with internal stakeholders to review and address security risks.
- Track risk treatment plans and ensure mitigation is documented.

3. Policy Enforcement & Security Awareness
- Assist in developing and reviewing IT security policies and standards.
- Drive awareness campaigns or training on security best practices.
- Support audits and compliance checks (e.g., ISO 27001, internal policies).
- Maintain records of user acknowledgments, policy reviews, and training participation.

4. Incident Response & Documentation
- Support the response process for security incidents, including documentation and root cause analysis.
- Coordinate communication, evidence gathering, and tracking corrective actions.
- Maintain a knowledge base of incidents, responses, and lessons learned.
- Improve response workflows through documented playbooks.

MEASUREMENTS
- Timely execution of cybersecurity initiatives and remediation plans.
- Reduced vulnerabilities and improved risk posture.
- Documented compliance with security policies and controls.
- Increased security awareness and training completion rates.
- Efficient coordination and response to incidents.

**REQUIREMENTS**:
1. Experience and Technical Skills
- At least 4 years of experience in IT security or cybersecurity-related projects.
- Familiar with tools like Microsoft Defender, Sentinel, DLP, Intune, or other EDR/SIEM solutions.
- Experience with user access management, vulnerability scanning, and compliance requirements.
- Understanding of cybersecurity principles and frameworks (e.g., NIST, ISO 27001).

2. Desirable Soft Skills
- Detail-oriented and analytical in risk or incident investigation.
- Good coordination and project tracking skills.
- Strong communication, especially in explaining security concepts to non-technical users.
- Able to prioritize tasks in a high-pressure environment.
- Collaborative and disciplined in maintaining documentation.

3. Education
- Bachelor’s degree in information security, Computer Science, or equivalent.
- Cybersecurity certifications (e.g., CompTIA Security+, CISSP, ISO 27001 Lead Implementer) are preferred.

**Job Types**: Full-time, Permanent, Contract, Temporary, Freelance, Internship, Fresh graduate, Student job
Contract length: 12 months

Pay: RM1.00 - RM2.00 per month

**Benefits**:

- Cell phone reimbursement
- Flexible schedule
- Health insurance
- Meal provided
- Work from home

Schedule:

- Holidays
- Monday to Friday
- Weekend jobs

Supplemental Pay:

- 13th month salary
- Attendance bonus
- Commission pay
- Overtime pay
- Performance bonus
- Retention bonus
- Signing bonus
- Tips
- Yearly bonus

Work Location: In person