Lead, CyberSecurity Ops – Assistant Manager (based in KL) at StarHub – Kuala Lumpur

Job description

The candidate reports to Manager (SecOps) and is responsible for designing, developing and implementing secure system architecture. The design-secure system architecture will be embedded in security principles to protect StarHub’s infrastructure and information assets against cyber threats that are constantly evolving. In this role you will work with a team of cybersecurity enthusiasts to protect our systems against cyber attacks and threats. The candidate must have strong technical competence and effective communication skills to engage various StarHub stakeholders. He/she will perform routine activities related to the periodic assessment and audit activities of infrastructure security systems and maintain documentation of security standards and procedures.

Responsibilities:

1. Develop architecture requirements and maintain oversight
-Design security controls and systems in accordance with security guidelines
– Assist in testing and evaluating new security technologies and controls
-Recommend security products, services and procedures to improve system architecture designs
-Documenting the design, operation, use and expected results of new systems
– Research modern security software architectures and network architecture design best practices
-Managing continuous process improvement for the security services

2. Implement security systems
– Implement new enterprise security architecture, technologies and improvements
-Identify techniques to scale and automate security infrastructure and processes
-Solving problems that arise when implementing new security systems
-Review monitoring systems for strengths and weaknesses and propose improvements to address weaknesses

3. Manage security systems
-Responsible for the maintenance of security systems, platforms and associated software
-Develop and implement customized disaster recovery exercises and simulation tests on existing systems
-Monitors, tracks and manages service errors to resolution and change requests.
– Manages the security solution lifecycle and ensures the solution is up-to-date and relevant to the changing business needs and security landscape
– Provide supervision and quality assurance of external service providers

Qualifications

Bachelor’s degree in computer science or related field, or a comparable field. Ideally, you have completed security technology certification from vendors (e.g. Cisco, Fortinet, etc.). 6 – 10 years of experience in the following areas is an advantage:
1. Infrastructure design
-Translate a broader infrastructure blueprint into technical specifications and develop prototypes for simple infrastructure components
2. Network security
-Manage network security solution
3. Security management
-Manage, configure, and troubleshoot security solutions platforms, and analyze the impact of patches and updates on systems and networks. At least 4 years of administrative experience (see Technologies Competencies)
4. Security architecture
-Design secure systems and define security specifications of components, integrating appropriate security controls.
5. Technologies Competencies
a.Firewall
b.Web application firewall
c.VPN (IPSec & SSL),
d.Email Security Gateway (antispam, antivirus, antimalware, sandbox, EBC),
e.Web security, web isolation
f.Proxy
g. Protection against data loss
h.Public Key Infrastructure
i. Mobile device management
j.Identity and access management, two-step verification, single sign-on,
k. Privileged user management
l.Cloud security