Iam (Identity & Access Management) & Cybersecurity Specialist

**IAM (IDENTITY & ACCESS MANAGEMENT) & CYBERSECURITY SPECIALIST**

**Location**: Cyberjaya/Putrajaya, Malaysia

**Employment Type**: Full-Time/ Contract

**JOB SUMMARY**

**KEY RESPONSIBILITIES**

**Threat Management**
- Build and maintain an advanced Security Operations Centre (SOC) to detect, analyze, and mitigate cyber threats in real-time.
- Implement automated tools and processes to detect suspicious activities and potential security breaches.
- Lead the team in proactive threat hunting to identify vulnerabilities and prevent attacks before they occur.
- Analyze threat intelligence and work with stakeholders to continuously enhance defense mechanisms.

**Endpoint Security**:

- Deploy, configure, and maintain robust Endpoint Detection and Response (**EDR**) solutions to protect devices across the bank’s network.
- Regularly evaluate and update endpoint security measures to ensure the bank's systems are protected from emerging threats.
- Collaborate with IT teams to manage and secure endpoints, including workstations, mobile devices, and remote devices.

**Access Management**:

- Oversee the implementation and ongoing management of Multi-Factor Authentication (**MFA**) to secure user access.
- Design and enforce least-privilege access models to limit user access to only the information and systems necessary for their roles.
- Manage user identity lifecycle processes, including account creation, modification, and deactivation, ensuring compliance with internal and regulatory policies.
- Collaborate with business units to ensure IAM solutions are properly integrated into the bank's operational processes.

**Incident Response**:

- Develop and maintain an Incident Response Plan (**IRP**) for identifying, responding to, and recovering from security incidents.
- Establish predefined roles and escalation paths for incident handling to ensure quick and effective responses to security breaches.
- Lead post-incident investigations, identify root causes, and propose corrective actions to prevent future incidents.
- Conduct regular incident response drills and training to ensure the readiness of the security team and relevant stakeholders.

**QUALIFICATIONS AND SKILLS**

**Education**:

- Bachelor’s degree in information technology, Cybersecurity, Computer Science, or a related field. Relevant certifications (e.g., **CISSP**, **CISM**, **CISA**, or **CEH**) are highly desirable.

**Experience**:

- Minimum of **10 years** of experience in IAM, cybersecurity, or related security fields.
- Proven experience in managing and deploying endpoint security solutions (e.g., **EDR**, **Antivirus**).
- Hands-on experience in setting up and managing multi-factor authentication (**MFA**) and identity governance solutions.
- Strong knowledge of incident response procedures, threat detection, and mitigation techniques.
- Experience with Security Operations Centre (SOC) operations and working with threat intelligence platforms.

**Skills**
- Cybersecurity Knowledge: Strong understanding of security principles, risk management, and cyber threats, particularly in the banking or financial services industry.
- IAM Tools: Experience with IAM solutions (e.g., **Cyberark**, Microsoft **Azure** **AD**, **SailPoint**, or similar).
- Endpoint Security: Familiarity with endpoint protection solutions like **CrowdStrike**, **Symantec**, or **McAfee**.
- Incident Response: Ability to design and implement effective incident response protocols.
- Security Frameworks: Familiar with security frameworks such as **NIST**, **ISO** **27001**, and **CIS**.
- Communication Skills: Excellent written and verbal communication skills, including the ability to present complex security topics to non-technical stakeholders.
- Problem Solving: Strong analytical and troubleshooting skills with a keen eye for detail.

**Other Requirements**:

- Strong ability to work collaboratively across teams to implement security measures.
- Ability to think strategically while managing day-to-day security operations.
- Highly organized with the ability to manage multiple priorities and tasks.

**WHY JOIN US**
- Innovative Work Environment: Be part of a team dedicated to advancing cybersecurity practices in the banking sector.
- Professional Development: Opportunities for continuous learning, certifications, and career advancement in the field of cybersecurity.
- Competitive Salary: Attractive salary package with additional benefits.

**Job Types**: Full-time, Permanent, Contract
Contract length: 12 months

Pay: RM5,000.00 - RM10,000.00 per month

**Benefits**:

- Health insurance
- Maternity leave
- Opportunities for promotion
- Parental leave
- Professional development

Schedule:

- Monday to Friday

**Experience**:

- Symantec: 5 years (preferred)
- CyberArk: 10 years (preferred)
- Antivirus: 5 years (preferred)
- NIST: 5 years (preferred)
- CrowdStrike: 5 years (preferred)
- Sailpoint: 5 years (preferred)

Application Deadline: 12/31/2024
Expected Start Date: 01/31/2025