To timely response to security alerts using a combination of technology solutions and a complete & reliable set of documented processes on a 24 x 7 x 365 basis
Act as a point of escalation for Level-1 analysts in 12-hour shift rotation
Escalate suspected incidents to L3 with detailed analysis and actionable recommendations.
...
To timely response to security alerts using a combination of technology solutions and a complete & reliable set of documented processes on a 24 x 7 x 365 basis
Act as a point of escalation for Level-1 analysts in 12-hour shift rotation
...
Maintain, tune, and support the Armis cybersecurity platform, including Platform Health, Asset Management, Vulnerability Management, and Threat Detection capabilities.
Maintain and troubleshoot integrations between the Armis platform and other cybersecurity, network, and monitoring tools across the organization.
Perform network‑related troubleshooting to support the availability, performance, and stability of the platform’s infrastructure.
...
Access Governance: Establish and govern a comprehensive access control baseline by reviewing and granting access authorities based on approved User Access Matrices (UAM). Ensure strict adherence to the Principle of Least Privilege across all environments and critical systems.
Privileged Access: Enforce strict governance over super-user and privileged accounts by ensuring IDs are split, lodged securely, and that all usage is properly documented, controlled, and reviewed to prevent abuse of administrative powers.
Compliance: Act as the primary coordinator for the periodic review of User Access Matrix (UAM)and User ID listings with Business Owners/Departments to ensure ongoing compliance. Execute annual Security Risk and Control Self-Assessments (RCSA) to identify gaps and enforce control effectiveness.
...
Manage the daily operations of all security appliances and equipment, including Firewalls, Web Application Firewalls (WAF), Endpoint Detection and Response (EDR) solutions (e.g., FireEye), Intrusion Prevention Systems (IPS), and Network Access Control (NAC) systems.
Ensure optimal performance, availability, and configuration for all managed security components.
Ensure adherence to internal policies, industry best practices, and regulatory guidelines, such as Bank Negara Malaysia's RMiT.
...
Assess security practices across the Software Development Lifecycle.
Participate in application design, architecture, and data flow reviews for new and existing systems.
Perform secure code reviews to identify vulnerabilities such as injection flaws, authentication weaknesses, insecure data handling, exposed secrets, and insecure API usage.
...
Assist the Functional Area Head in the execution of the approved audit plan / other assignments and in coaching team members.
Develop audit plans to assess the adequacy of cybersecurity controls designed to protect sensitive data and systems from internal and external threat, identify gaps and provide recommendations for improvements.
Perform cybersecurity audits including audits of security programs, vulnerability assessments, network security, incident response, access management and third party risk management.
...
Plan, execute, and manage risk-based audit assignments as outlined in the Audit Plan, ensuring adherence to approved objectives, scope, and Audit Methodology standards
Monitor audit progress to ensure completion within budgeted timelines, manpower resources, and cost allocation
Review draft audit findings, root causes, and recommendations to ensure relevance and accuracy before discussion with line management
...
Access Governance: Establish and govern a comprehensive access control baseline by reviewing and granting access authorities based on approved User Access Matrices (UAM). Ensure strict adherence to the Principle of Least Privilege across all environments and critical systems.
Privileged Access: Enforce strict governance over super-user and privileged accounts by ensuring IDs are split, lodged securely, and that all usage is properly documented, controlled, and reviewed to prevent abuse of administrative powers.
Compliance: Act as the primary coordinator for the periodic review of User Access Matrix (UAM)and User ID listings with Business Owners/Departments to ensure ongoing compliance. Execute annual Security Risk and Control Self-Assessments (RCSA) to identify gaps and enforce control effectiveness.
...
Assist the Functional Area Head in the execution of the approved audit plan / other assignments and in coaching team members.
Develop audit plans to assess the adequacy of cybersecurity controls designed to protect sensitive data and systems from internal and external threat, identify gaps and provide recommendations for improvements.
Perform cybersecurity audits including audits of security programs, vulnerability assessments, network security, incident response, access management and third party risk management.
...
TechLab Security Sdn Bhd specializes in providing customized cybersecurity solutions tailored to the unique needs of each client. Committed to enabling seamless and secure network management, the company strives to offer peace of mind in today's ever-evolving digital landscape. With a mission centered on security for everyone, TechLab upholds the highest standards by collaborating with talented professionals who share a passion for innovation and protection. By addressing challenges with resilience, TechLab empowers organizations to focus on growth without compromising security.