概述

• 薪资

  10,000 MYR ~ 14,000 MYR

• 产业类别

  Finance(Banking), Finance(Securities), Finance(Other)

• 工作内容

  < Job Purpose >
  The incumbent will work with Head of IT in managing IT Security and Cyber Security efforts across the organization.
  Manage all facets of first level support, including line managing first level staff and assets. Ensuring change control and Information Security procedures are followed across Rakuten Trade.
  This role is also required to prepare and monitor Cyber Security policies, framework, budget and costing, strategic planning and audit matters, in consultation with the Head of IT.
  
  < Duties & Responsibilities >
  1. Specialize in IT Systems/Infrastructure Security; implement and monitor security measures for the protection of computer systems, networks, and information to ensure that all IT related security components are implemented in accordance with the compliance against organization's Information Security Policy and Management Standards, and other Statutory, Legal or Regulatory compliance requirements.
  2. Oversee all day-to-day IT security incidents/administration/health check on current servers and network infrastructure security controls. Identify IT risks, threats, and vulnerabilities in the company’s technology infrastructure. Analyze and report computer network/servers/application security breaches or attempted breaches. Investigate security incidents, updates, and documents security control, perform risk assessments, take appropriate action to minimize harm and make recommendations to corrective action. Maintain incident documentation, participate in post-mortems, and write incident reports.
  3. Establish and maintains IT security related policies, procedures, and guidelines. Perform annual reviews of the security related guidelines and control to ensure the efficiency and effectiveness of the Information Security controls and recommend improvements wherever is necessary. Develop comprehensive reports including assessment-based findings, outcomes, and propositions for further system security enhancement.
  4. Coordinate with internal, external audit and IT teams to during audits and provide the requested information on a timely basis and update the status of audit findings and remediations to IT management.
  5. Drive continuous process improvement to all security functions utilizing KPIs and key metrics.
  6. Advise on security operational controls to systems or applications during the design and implementation of new systema or technology.
  7. Perform vulnerability and penetration testing management program, reporting with risk priorities, remediation and recommending appropriate solutions.
  8. Responsible to manage and report to Management on any Cyber Security issues, statistical fault reports and status on weekly and monthly basis.
  9. Participate in Business Continuity and Disaster recovery simulations including infrastructure, security readiness and checklists.
  10. Provide periodic updates on cyber security activities, audits and briefing to Management and staff.