Kerja Sepenuh Masa, Cyber Security Manager di B2BE Selangor - Maukerja

We’re seeking a dynamic Cybersecurity Manager to lead and strengthen our organization’s security posture. You will drive strategy, enhance governance, and work closely with senior stakeholders to manage risk and ensure compliance across critical systems. This high-impact role offers strong ownership, visibility, and a clear path toward a future Chief Security Officer (CSO) position.

Policy and Compliance

• Lead development and governance of security policies aligned with business goals.
• Ensure compliance and oversee audits for relevant regulations and frameworks. e.g., ISO 27001, NIST, PCI DSS, GDPR).

Monitoring & Threat Detection

• Oversee security operations and SIEM strategy (e.g., Wazuh).
• Monitoring and alerting in place based on SIEM, IDS, EDI to relevant teams

Security Architecture & Design

• Provide strategic direction for secure system architectures and review changes to ensure security is built in from the start.

Infrastructure Guidance

• Partner the infrastructure team to implement and maintain security controls to safeguard networks, servers, endpoints, and cloud environments.

Development Guidance

• Work with the development teams to ensure security awareness and secure coding practices are in place.

Vulnerability Management

• Conduct regular vulnerability assessments and penetration testing.
• Patch systems and address security weaknesses in a timely manner.
• Manage external vendors for VAPT program governance.

Risk Assessment

• Identify and assess cyber risks to business operations and recommend mitigation strategies.

Incident Response

• Investigate, contain, and remediate security incidents such as malware infections, data breaches, or unauthorized access.
• Perform root cause analysis and recommend preventive measures.

User Awareness & Training

• Educate staff on cybersecurity best practices, phishing awareness, and safe data handling.
• Lead and conduct social engineering assessments of employees.

Requirements

• Minimum 10 years of experience in cybersecurity, with leadership exposure
• Hands-on involvement in ISO 27001 implementation and evaluation of cybersecurity policies and procedures
• Strong communication skills, with the ability to engage stakeholders effectively
• Demonstrates strong character, integrity, and professionalism
• Proven potential for career progression toward a Chief Security Officer (CSO) role