What Jobs are available for Cyber Engineer in Malaysia?

Safeguard the Infrastructure Powering Southeast Asia's Leading Fintech

At BJAK, technology is our backbone, from real-time insurance quoting to payment infrastructure and claims automation. With millions of users across Southeast Asia and rapidly growing operations, security is not just a function – it's mission‑critical. We are hiring a Cybersecurity Engineer to own and drive the protection of our platforms, devices, and data. This is not a passive role. It's for someone who can build, monitor, respond and harden systems in real time, while thinking two steps ahead of evolving threats. This is a high‑responsibility position reporting directly to senior management, designed for someone who thrives in high‑stakes environments and is energized by fast execution, shifting priorities, and full accountability. If you’re looking for predictability and handholding, this isn’t for you. If you operate with urgency, think like an owner, and love solving complex problems with autonomy, you’ll feel right at home.

What You’ll Do

Own and lead the end‑to‑end cybersecurity function across infrastructure, cloud, endpoints, and applications.

Monitor SOC alerts, conduct threat intelligence analysis, and drive incident response from detection to closure.

Implement, configure, and manage EDRs, firewalls, antivirus, intrusion detection systems, and other security platforms.

Perform vulnerability assessments and penetration testing, prioritise risks, and implement fixes proactively.

Drive DevSecOps practices across the software development lifecycle, ensuring security is embedded at every stage.

Evaluate and secure cloud infrastructure (GCP, AWS, or Azure), including identity and access controls, encryption, and audit logging.

Lead security audits and support regulatory compliance activities, including ISO 27001, NIST, or equivalent frameworks.

Collaborate with cross‑functional teams (DevOps, Compliance, Legal, Product) to build a culture of security across the company.

Conduct security awareness training and simulate real‑world attack scenarios to improve employee readiness.

Own the security risk register and continuously improve controls based on current and emerging threats.

Interface with external auditors, regulators, and third‑party vendors to demonstrate readiness and resolve findings quickly.

You’ll Thrive Here If You…

Think and operate like an owner – no excuses, no delays, just action.

Stay calm under pressure, decisive in incidents, and effective when things break.

Are self‑directed and proactive – you don’t wait to be told what to do.

Are comfortable wearing multiple hats and handling shifting priorities.

Care deeply about protecting users, systems, and business integrity.

Take initiative to improve what’s broken – even if it’s outside your scope.

Have a strong bias for speed, clarity, and delivering real outcomes, not just activity.

Want to be part of a tight‑knit, high‑output team where your work directly impacts millions.

What You Bring

Bachelor’s degree in Computer Science, Cybersecurity or a related technical field.

3+ years of hands‑on experience in cybersecurity or information security roles, preferably in high‑growth or regulated environments.

Strong knowledge of cybersecurity tools and practices – including EDR, firewalls, SIEM, IDS/IPS, and antivirus platforms.

Proven track record in handling real incidents, performing root cause analysis, and improving controls.

Experience with cloud security (GCP, AWS, Azure) and a working knowledge of IAM, encryption, and cloud‑native threat modelling.

Familiarity with regulatory and compliance frameworks (e.g., ISO 27001, NIST, HIPAA, local data protection laws).

Solid understanding of DevSecOps, secure software development, and CI/CD pipeline security.

Able to communicate clearly across functions and escalating with clarity when needed.

Immediate availability is highly preferred.

Nice to Have

Cybersecurity certifications such as CISSP, CEH, OSCP, or equivalent.

Experience in fintech, banking, or any high‑risk digital platform environment.

Experience interfacing directly with auditors, regulators, or compliance committees.

Familiarity with ethical hacking, red‑teaming, or adversary simulation tools.

Scripting or automation skills to improve security operations at scale.

Our Team & Culture We’re not a big corporate – we’re a high‑speed, high‑trust startup. We solve hard problems, move fast, and keep execution at the centre of everything. Titles don’t matter here. Impact does. Everyone is expected to think independently, act fast, and take full ownership. Security at BJAK is a leadership‑level responsibility. If you want a seat at the table, take it. If you care about doing things right, not just ticking boxes, you’ll thrive here. We value clarity, urgency, and execution, not red tape.

What You’ll Get

Competitive salary and performance‑based bonuses.

Hybrid working model with high autonomy and trust.

Direct access to senior leadership and visibility on strategic matters.

High‑impact role with ownership from day one – your work protects millions.

Opportunity to shape BJAK’s security architecture from the ground up.

Fast‑tracked growth in a mission‑driven fintech company backed by tech.

About BJAK BJAK is Southeast Asia’s largest digital insurance platform. Headquartered in Malaysia with operations in Thailand, Taiwan, and Japan, we help millions of users access transparent, affordable financial protection through Bjak.com. We simplify complex financial services through automation, AI, and secure digital infrastructure, making finance faster, smarter, and safer for everyone. If you’re ready to lead cybersecurity in a startup that demands speed, integrity, and ownership, we want to talk to you.

#J-18808-Ljbffr

Safeguard the Infrastructure Powering Southeast Asia’s Leading Fintech

At BJAK, technology is our backbone, from real-time insurance quoting to payment infrastructure and claims automation. With millions of users across Southeast Asia and rapidly growing operations, security is not just a function - it's mission‑critical. We are hiring a Cybersecurity Engineer to own and drive the protection of our platforms, devices, and data. This is not a passive role. It’s for someone who can build, monitor, respond, and harden systems in real time, while thinking two steps ahead of evolving threats. This is a high‑responsibility position reporting directly to senior management, designed for someone who thrives in high‑stakes environments and is energized by fast execution, shifting priorities, and full accountability. If you're looking for predictability and handholding, this isn’t for you. If you operate with urgency, think like an owner, and love solving complex problems with autonomy, you’ll feel right at home. What You’ll Do

Own and lead the end‑to‑end cybersecurity function across infrastructure, cloud, endpoints, and applications.

Monitor SOC alerts, conduct threat intelligence analysis, and drive incident response from detection to closure.

Implement, configure, and manage EDRs, firewalls, antivirus, intrusion detection systems, and other security platforms.

Perform vulnerability assessments and penetration testing, prioritize risks, and implement fixes proactively.

Drive DevSecOps practices across the software development lifecycle, ensuring security is embedded at every stage.

Evaluate and secure cloud infrastructure (GCP, AWS, or Azure), including identity and access controls, encryption, and audit logging.

Lead security audits and support regulatory compliance activities, including ISO 27001, NIST, or equivalent frameworks.

Collaborate with cross-functional teams (DevOps, Compliance, Legal, Product) to build a culture of security across the company.

Conduct security awareness training and simulate real‑world attack scenarios to improve employee readiness.

Own the security risk register and continuously improve controls based on current and emerging threats.

Interface with external auditors, regulators, and third‑party vendors to demonstrate readiness and resolve findings quickly.

You’ll Thrive Here If You…

Think and operate like an owner – no excuses, no delays, just action.

Stay calm under pressure, decisive in incidents, and effective when things break.

Are self‑directed and proactive – you don't wait to be told what to do.

Are comfortable wearing multiple hats and handling shifting priorities.

Care deeply about protecting users, systems, and business integrity.

Take initiative to improve what’s broken – even if it's outside your scope.

Have a strong bias for speed, clarity, and delivering real outcomes, not just activity.

Want to be part of a tight‑knit, high‑output team where your work directly impacts millions.

What You Bring

Bachelor’s degree in Computer Science, Cybersecurity or a related technical field.

3+ years of hands‑on experience in cybersecurity or information security roles, preferably in high‑growth or regulated environments.

Strong knowledge of cybersecurity tools and practices – including EDR, firewalls, SIEM, IDS/IPS, and antivirus platforms.

Proven track record in handling real incidents, performing root cause analysis, and improving controls.

Experience with cloud security (GCP, AWS, Azure) and a working knowledge of IAM, encryption, and cloud‑native threat modeling.

Familiarity with regulatory and compliance frameworks (e.g., ISO 27001, NIST, HIPAA, local data protection laws).

Solid understanding of DevSecOps, secure software development, and CI/CD pipeline security.

Able to communicate clearly across functions and escalate with clarity when needed.

Immediate availability is highly preferred.

Nice to Have

Cybersecurity certifications such as CISSP, CEH, OSCP, or equivalent.

Experience in fintech, banking, or any high‑risk digital platform environment.

Experience interfacing directly with auditors, regulators, or compliance committees.

Familiarity with ethical hacking, red teaming, or adversary simulation tools.

Scripting or automation skills to improve security operations at scale.

Our Team & Culture

We’re not a big corporate – we’re a high‑speed, high‑trust startup. We solve hard problems, move fast, and keep execution at the center of everything. Titles don’t matter here. Impact does. Everyone is expected to think independently, act fast, and take full ownership. Security at BJAK is a leadership‑level responsibility. If you want a seat at the table, take it. If you care about doing things right, not just ticking boxes, you’ll thrive here. We value clarity, urgency, and execution, not red tape. What You’ll Get

Competitive salary and performance‑based bonuses.

Hybrid working model with high autonomy and trust.

Direct access to senior leadership and visibility on strategic matters.

High‑impact role with ownership from day one – your work protects millions.

Opportunity to shape BJAK’s security architecture from the ground up.

Fast‑tracked growth in a mission‑driven fintech company backed by tech.

About BJAK

BJAK is Southeast Asia’s largest digital insurance platform. Headquartered in Malaysia with operations in Thailand, Taiwan, and Japan, we help millions of users access transparent, affordable financial protection through Bjak.com. We simplify complex financial services through automation, AI, and secure digital infrastructure, making finance faster, smarter, and safer for everyone. If you’re ready to lead cybersecurity in a startup that demands speed, integrity, and ownership, we want to talk to you.

#J-18808-Ljbffr

Protecting computer systems and networks. Develop & maintain Information Security Plans and Policies with yearly review or as need arise. Develop & maintain hardening checklist by adopting industrial best practice and review yearly. Plan and carry out an organization's information security strategy. Develop a set of security standards and best practices for the organization and recommend security enhancements to management as needed. Develop strategies to respond to and recover from a security breach. Educating the workforce on information security through training and building awareness. Use of firewalls and data encryption programs to protect organizations sensitive information. Also assist computer users with installation or processing of new security products and procedures. Conducts quarterly scans of networks to find any vulnerability. Conduct bi-yearly penetration testing, in which they simulate an attack on the system to highlight or find any weaknesses that might be exploited by a malicious party. Must constantly monitor organizations networks and systems for security breaches or intrusions with software that helps to notify of intrusions and watch out for irregular system behavior. Leads incident response activities to maximize the impact. Afterwards, lead a technical and forensic investigation into how the breach happened and the extent of the damage. Prepare reports of the findings to be reported to management. Play a "hands on" role in the above mentioned areas when required by the situation, ensuring delivery in the different areas of responsibility. Follow up and optimize the contracts and Service Level Agreements in the areas of responsibility, both in offered services and value for money, as well as structuring their monitoring and delivery through the ISO9001, ISO20001, ISO27001, ISO14298 & PCI standard of operating processes. Report in a time fashion to the Head of Unit and Head of Division and ensure availability and consistency of appropriate management information by areas. Follow up and evaluate emerging technologies. To carry out any other duties and job functions as and when required by the Company or persons acting on behalf of the Company. Strong organizational skills. Very good interpersonal and negotiating skills. Ability to work within a team and handle internal and external contacts. Capacity to co-ordinate projects and external teams. Analytical and problem solving skills. Facility for technical report writing. A disciplined approach to organizing work and priorities and to documenting work. A strong multi tasker with a keen eye for detail, can think one step ahead of criminals. Well organized and thrive in fast paced, high stress scenarios. Direct experience with anti-virus software , intrusion detection, firewalls and content filtering. Knowledge of risk assessment tools, technologies and methods. Experience designing secure networks, systems and application architectures. Knowledge of disaster recovery, computer forensic tools, technologies and methods. Experience planning, researching and developing security policies, standards and procedures. Professional experience in a system administration role supporting multiple platforms and applications. Ability to communicate network security issues to peers and management. Ability to read and use the results of mobile code, malicious code and anti-virus software. Job Requirement

At least 4 years working experience on related field. Bachelors Degree in IT/ Computer Science/ Computer Engineering/ Information System or equivalent. Specific training or certificates in security is an added advantage. Familiar with Industry's Security standards such as NIST and ISO/ IEC27001. Any relevant certification in Security or other relevant IT Security certifications.

#J-18808-Ljbffr

Overview

UOB WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia United Overseas Bank Limited (UOB) is a leading bank in Asia with a global network of more than 500 branches and offices in 19 countries and territories in Asia Pacific, Europe and North America. The following role is within Group Technology and Operations (GTO), which provides software and system development, information technology support services and banking operations. Key Responsibilities

Manage and support the organization’s cyber security deployments and infrastructure. Support a wide array of security solutions and infrastructure deployed within the organization. Propose, develop, test, and manage application, system and infrastructure changes, upgrades, troubleshooting, patching, and improvements. Drive upgrades and migrations to ensure solutions and related platforms are maintained in operational condition with proper documentation and RCA. Suggest new process improvements to optimize the current workflow. Manage and coordinate change process engagement with regards to current security solutions. Support for all audit requests and provide timely resolution for the findings. Other Requirements

Work within established practices and handling guidelines to triage and support the maintenance of the organization’s security solutions. Work with internal and external engineers in technical discussions, troubleshooting sessions and forums. Able to respond to requests, provide clear advice and recommendations. Able to work independently with minimal guidance. Able to establish effective communication across different stakeholders. Able to prioritize and manage tasks based on deliverables and timelines. Education

ITC/Diploma/Degree in Engineering/Computer Science/IT/Cyber Security from a recognized institution. Professional or vendor-specific security solutions related qualification (e.g., Microsoft, AWS, GCP, Palo Alto Networks, McAfee, Splunk, Cisco, etc.) will be favorable though not mandatory. Technical Skills

7+ years of working experience. 3+ years of relevant security experience in a similar role; candidates without relevant experience may apply with training provided. Good knowledge in network and endpoint security (firewalls, WAF, IDS/IPS, VPN, HIPS, ADS and TCP/IP). Hands-on experience in Unix/Linux and Windows system administration. Hands-on experience in EDR, SIEM and antivirus security solutions. Good understanding of network protocols and troubleshooting. Minimal 2–3 years of relevant experience in a SOC environment; related processes are an added advantage. Soft Skills

Good written and verbal communication skills. Process and procedure adherence. Strong analytical and problem-solving skills. Effective time management and organizational skills. Other Requirements

Willingness to perform on-call duties. Seniority level

Mid-Senior level Employment type

Full-time Job function

Information Technology Industries

Banking and Financial Services We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

Overview

Join to apply for the

Delivery Cyber Security Engineer

role at

Noventiq Malaysia . We are seeking a Cloud Security Engineer to join the Delivery team in Kuala Lumpur, Malaysia. About Us:

Noventiq

(Noventiq Holdings PLC) is a premier global provider of digital transformation and cybersecurity solutions, with a headquarters in London. We support businesses with IT vendors, innovative services, and proprietary solutions. Responsibilities

Collaborates with Solution Sales and Customers to understand business requirements. Deliver security projects primarily based on Microsoft technologies, including Microsoft Azure Active Directory, Intune, Information Protection, Defender, Azure, Azure Sentinel, Log Analytics, and Defender for Cloud. Design, deploy, and implement security strategies, policies, and procedures for customer environments. Implement and manage identity and access solutions using Azure Active Directory. Deploy and manage vulnerability assessment and penetration testing tools. Implement and manage data protection solutions such as Azure Information Protection and Microsoft 365 Data Loss Prevention. Design and deploy secure architectures for cloud and on-premises environments. Propose security solutions and updates based on compliance needs. Create technical documentation for security configurations. What You’ll Do

Work with Project Managers to identify the best solution for each project. Scope and gather customers’ security requirements and provide tailored solutions. Deliver Proof-of-Concept activities to demonstrate the value and effectiveness of security products and services. Continuously upskill on the latest cybersecurity technologies and obtain certifications from partnered vendors and organizations. Showcase platforms to clients with engaging demos and presentations. Implement and improve platforms for clients, provide support and solutions, offer consulting, prepare quotes, and manage projects within company standards and goals. Review the delivery plan with Project Managers, review proposal scope, deliver, and stay engaged until project closure. Position Qualifications

Relevant qualification: CISSP / CompTIA Security+ / MTA / MCSA / MCSE / MS 500 Excellent communication and organizational skills Experience in deployment and technical support of security solutions Ability to handle multiple projects simultaneously Office 365 / M365 / EMS deployment and configuration Experience with technologies including: Microsoft Azure Active Directory / Entra ID, Microsoft Intune / Endpoint Manager, Defender suite, Cloud App Security, Information Protection / Purview, CrowdStrike, Fortinet, and SIEM tools What We Offer

Working hours: Mon–Fri, 9am–6pm Attractive salary, bonus, and allowances for mobile, transportation, and parking Premium health insurance Opportunities to work with global colleagues from diverse cultures Annual health check-up External and internal training opportunities, English classes sponsored by the company Birthday paid day-off and birthday gift Recognition and referral programs Device provided or reimbursement for personal device Other activities: annual company trip, Christmas events, coaching opportunities, etc. Annual salary review and promotion opportunities Location: Kuala Lumpur, Malaysia

#J-18808-Ljbffr

(

Conduct penetration tests and vulnerability assessments on components including, but not limited to, web & mobile applications, servers, networks, databases and technological devices. Participate and take lead in client projects in delivering cyber security professional services including consultancy and advisory. Perform cyber security evaluations and cyber security audits in accordance to international standards. Prepare detailed findings, reports and remediation plans on security testing results/findings. Research and analyze emerging threats, vulnerabilities, and attack vectors. Support incident response, internal development projects and tasks as assigned. (Apply now at #J-18808-Ljbffr

Installing and configuring hardware and software related to networks and security Participate in planning and working with suppliers, principals and internal teams to ensure smooth project delivery Communicate with customers' technical team to ensure smooth project delivery Perform RCA and assessments as part of project delivery if needed Preparing projects' documentations (URS, pre-installation checklist, As-built, UAT or Similar) Ensure compliance with network security policies, standards, and regulatory requirements. Related assigned network and security tasks deemed relevant and needed Job Requirements: Bachelor’s degree in Computer Science major in networks/security or any related field Minimum of 3 years as post sales engineer Strong knowledge of network and security fundamentals, with certifications such as

CCNA, CCNP, or FCP in Network Security , or an equivalent level of expertise. Team player and works cohesively Strong problem-solving skills, resilient and independent, with the ability to work well Excellent communication skills and ability to work effectively with cross-functional teams.

#J-18808-Ljbffr

The Dell Security & Resiliency organization manages the security risk across all aspects of Dell’s business. You will have an excellent opportunity to influence the security culture at Dell and further develop your career. Join us as a Network Security Engineer Sr. Advisor on our Cybersecurity Engineering and Operations team in Malaysia to do the best work of your career and make a profound social impact. What you’ll achieve

As a Network Security (Edge) Engineer, you will be responsible for designing, implementing, and maintaining robust DDoS mitigation strategies to protect our infrastructure from distributed denial-of-service attacks. You will: Design and implement WAF, BoT Protection, and DDoS mitigation strategies using tools such as Arbor, Akamai, or F5. Monitor network traffic for anomalies and potential DDoS activity, and respond to and mitigate active DDoS attacks in real time. Collaborate with Incident Response & application teams to ensure rapid incident response and recovery. Maintain and optimize DDoS detection and mitigation systems. Offer on-call support approximately one weekend in six. Take the first step towards your dream career

Every Dell Technologies team member brings something unique to the table. Here’s what we are looking for with this role: Bachelor’s degree in a related field, or equivalent work experience. A minimum of 5+ years’ experience in network. Strong understanding of networking fundamentals, such as TCP/IP, DNS, and SSL. Excellent communication, interpersonal & skills. Experience with security processes and documentation. Hands-on experience with DDoS mitigation platforms and cloud-based protection services. Hands-on experience on WAF technology for policy creation, tuning, and configuration management. Familiarity with SIEM tools, packet capture analysis, and threat intelligence platforms. Experience with automation and scripting. Be careful - Don’t provide your bank or credit card details when applying for jobs. Don't transfer any money or complete suspicious online surveys. If you see something suspicious, report this job ad.

#J-18808-Ljbffr

**Network Security Engineer.**The Dell Security & Resiliency organization manages the security risk across all aspects of Dell’s business. You will have an excellent opportunity to influence the security culture at Dell and further develop your career.Join us as a Network Security Engineer Sr. Advisor on our Cybersecurity Engineering and Operations team in Malaysia to do the best work of your career and make a profound social impact.# **What you’ll achieve**As a Network Security (Edge) Engineer, you will be responsible for designing, implementing, and maintaining robust DDoS mitigation strategies to protect our infrastructure from distributed denial-of-service attacks.**You will:*** Design and implement WAF, BoT Protection, and DDoS mitigation strategies using tools such as Arbor, Akamai, or F5.* Monitor network traffic for anomalies and potential DDoS activity,and respond to and mitigate active DDoS attacks in real time.* Collaborate with Incident Response & application teams to ensure rapid incident response and recovery.* Maintain and optimize DDoS detection and mitigation systems.* Offer on-call support approximately one weekend in six.# **Take the first step towards your dream career**# Every Dell Technologies team member brings something unique to the table. Here’s what we are looking for with this role:# **Essential Requirements*** Bachelor’s degree in a related field, or equivalent work experience. A minimum of 5+ years’ experience in network.* Strong understanding of networking fundamentals, such as TCP/IP, DNS, and SSL.* Excellent communication, interpersonal & skills.* Experience with security processes and documentation.**Desirable Requirements*** Hands-on experience with DDoS mitigation platforms and cloud-based protection services.* Hands-on experience on WAF technology for policy creation, tuning, and configuration management.* Familiarity with SIEM tools, packet capture analysis, and threat intelligence platforms.* Experience with automation and scripting.* Knowledge of CDN and WAF technologies.**Who we are**We believe that each of us has the power to make an impact. That’s why we put our team members at the center of everything we do. If you’re looking for an opportunity to grow your career with some of the best minds and most advanced tech in the industry, we’re looking for you.

Dell Technologies is a unique family of businesses that helps individuals and organizations transform how they work, live and play. Join us to build a future that works for everyone because Progress Takes All of Us.

Application closing date: DD Month YYY

Dell Technologies is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. Read the full Equal Employment Opportunity Policy . #J-18808-Ljbffr