249 Cybersecurity jobs in Malaysia

Canonical Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia Join or sign in to find your next job

Join to apply for the

Threat Intelligence Lead

role at

Canonical Continue with Google Continue with Google Canonical Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia Join to apply for the

Threat Intelligence Lead

role at

Canonical The Threat Intelligence Lead will own Canonical's threat intelligence strategy and execution, including understanding of which cyber threat actors are targeting Canonical, and the use of intelligence on Tactics, Techniques and Procedures (TTP) to better our products and internal cybersecurity controls. You will collaborate with internal stakeholders as well as with the wider cybersecurity community, making sure that Canonical is recognised as a thought leader on open source threat intelligence.

This role will report to the CISO.

You will lead intelligence gathering and development activities on threat actors targeting software supply chains. You'll study attack trends across the wider open source software landscape, report findings to internal security teams, and advise the wider engineering community on the best course of action to detect and mitigate possible threats.

As the publisher of Ubuntu, Canonical products are directly or indirectly present in almost every organisation and household in the world, making them a prime target for threat actors. This team's mission is to help Canonical, and by extension countless community members and companies around the world, secure their software infrastructure.

What you'll do in this role

Build and own Canonical's threat intelligence strategy Build and maintain OSINT research environments Develop OSINT tradecraft, principals, and techniques Identify and track targeted intrusion cyber threats, trends, and new developments by cyber threat actors through analysis of proprietary and open source datasets Collaborate across teams to inform on activity of interest Coordinate adversary/campaign tracking Contribute to the wider threat intelligence community, establishing Canonical as a key contributor and thought leader in the space Work with product and engineering teams to explain cybersecurity threats and advise on mitigation strategies Work with the OPSEC and IS team to help implement/update security controls prioritising cyber defence Identify intelligence gaps and propose new tools and research projects to fill them Conduct briefings for executives, internal stakeholders and external customers

The successful Threat Intelligence Lead will be

An experienced threat intelligence leader (or similar) Knowledgeable about the current open source threat landscape and computer networking/infrastructure concepts Highly competent with OSINT tools (e.g., Buscador, Trace Labs OSINT VM, OSINT Framework, Maltego, Shodan, social media scraping tools, etc.) Able to identify, organise, catalogue, and track adversary tradecraft trends — often with incomplete data Experienced using threat intelligence data to influence enterprise architecture or product development decisions An excellent communicator with the ability to clearly articulate and tailor technical content to a variety of audiences Able to travel twice a year, for company events up to two weeks long

Desired Characteristics

A professional portfolio of OSINT related scripts, tools, or frameworks Demonstrated involvement in the larger OSINT community (please share relevant links) Degree qualified, with a bachelor's degree in computer science, information security, or a related field Certifications in related areas (e.g. GOSI, SANS SEC487 & SEC587, IntelTechniques OSIP, etc) Experience in a tech company or government/military signal intelligence departments

What we offer you

We consider geographical location, experience, and performance in shaping compensation worldwide. We revisit compensation annually (and more often for graduates and associates) to ensure we recognise outstanding performance. In addition to base pay, we offer a performance-driven annual bonus. We provide all team members with additional benefits, which reflect our values and ideals. We balance our programs to meet local needs and ensure fairness globally.

Distributed work environment with twice-yearly team sprints in person Personal learning and development budget of USD 2,000 per year Annual compensation review Recognition rewards Annual holiday leave Maternity and paternity leave Employee Assistance Programme Opportunity to travel to new locations to meet colleagues Priority Pass, and travel upgrades for long haul company events

About Canonical

Canonical is a pioneering tech firm at the forefront of the global move to open source. As the company that publishes Ubuntu, one of the most important open source projects and the platform for AI, IoT and the cloud, we are changing the world on a daily basis. We recruit on a global basis and set a very high standard for people joining the company. We expect excellence - in order to succeed, we need to be the best at what we do. Canonical has been a remote-first company since its inception in 2004. Working here is a step into the future, and will challenge you to think differently, work smarter, learn new skills, and raise your game.

Canonical is an equal opportunity employer

We are proud to foster a workplace free from discrimination. Diversity of experience, perspectives, and background create a better work environment and better products. Whatever your identity, we will give your application fair consideration.

Seniority level

Seniority level Mid-Senior level Employment type

Employment type Full-time Job function

Job function Information Technology Industries Software Development Referrals increase your chances of interviewing at Canonical by 2x Sign in to set job alerts for “Threat Intelligence Lead” roles.

Continue with Google Continue with Google Continue with Google Continue with Google We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

Job Description

As a Cybersecurity Specialist , you will work in the central team with worldwide responsibility for cybersecurity topics within Continental.

Your main tasks will include:

1. Cybersecurity Consulting

• Providing cybersecurity consulting to other teams, IT functions, and business units
• Collaborating within the global cybersecurity community
• Publishing cybersecurity information to various audiences
• Offering technical expertise on IT cybersecurity technologies to worldwide IT and business teams

Project Support

• Cybersecurity consulting, including rule compliance and technical topics, supporting provider interviews
• Reviewing security checklists
• Conducting security reviews of solutions, products, and architecture documentation
• Documenting and approving solutions

Service Requests

• Consulting on cybersecurity-related service requests such as changes, incidents, and work orders
• Reviewing and approving cybersecurity-related service requests

Trend Evaluation

• Assessing current technology and cybersecurity trends

Cybersecurity Rules

• Defining and reviewing cybersecurity rules
• Developing and reviewing supporting documents like standards, guidelines, and checklists
• Advising on understanding and implementing rule requirements

Audit Support

• Supporting technical cybersecurity audits, tests, and assessments

Cybersecurity Incident Support

• Providing cybersecurity guidance and consulting for IT functions and cybersecurity teams
• Coordinating with other IT functions and cybersecurity teams
• Performing technical analysis

Application Security

• Evaluating, reviewing, and approving various applications (client, mobile, add-ins, web applications, etc.)

Additional Information

We support our employees' growth by offering a dynamic international environment, flexible and hybrid working options, sabbaticals, and other benefits.

If this role aligns with your skills and aspirations and you wish to support our core values of Trust, Passion, and Freedom, we look forward to your application.

Take the first step towards a career with Continental by filling out our online application.

Qualifications

• An academic degree in Information Technology or a comparable qualification
• Several years of experience in an enterprise IT environment
• Effective communication skills for diverse audiences
• Interest in current technology trends
• Willingness to travel occasionally
• Proficiency in English

Knowledge required includes:

• IT architecture and concepts (computers, networks, cloud, storage, etc.)
• Operating systems (MacOS, Linux, Windows)
• Microsoft Active Directory & Entra ID
• Application architecture and technologies
• Authentication & encryption methods (Kerberos, OAuth2, SAML, LDAP, certificates, TLS, HSM, disk encryption, etc.)
• Cybersecurity standards (OWASP, NIST, CIS, ISO 27000, BSI, etc.)
• Handling software vulnerabilities

Company Description

Continental develops innovative technologies for sustainable and connected mobility. Founded in 1871, it offers solutions for vehicles, machinery, traffic, and transportation. In 2024, it generated €39.7 billion in sales and employs around 190,000 people across 55 countries.

The Tires group sector focuses on making mobility safer, smarter, and more sustainable with a range of tires and smart solutions. It has been a leader in the industry for over 150 years, with a global workforce of over 57,000 and multiple production and development sites.

#J-18808-Ljbffr

Job Description

As a Cybersecurity Specialist you will be working in the central team with worldwide responsibility for Cybersecurity topics within Continental.

Those will be your future main tasks:

Application Security

• evaluation, review, and approval of different types of applications (client, mobile, add-Ins, web applications and more)

Cybersecurity Consulting

• generic cybersecurity consulting for other teams, IT functions and business functions
• collaboration within the global cybersecurity community
• publishing cybersecurity information to various audiences
• providing technical expertise on IT cybersecurity technologies to other IT and business teams worldwide

Project Support

• cybersecurity consulting (including rule compliance, technical topics, support during provider interviews)
• review of security checklists
• security review of solution / product / architecture documentation
• documentation & solution approval

Service Requests

• consulting for cybersecurity-related service requests (changes, incidents, work orders)
• review and approval of cybersecurity-related service requests (changes)

Trend Evaluation

• evaluation of current technology and cybersecurity trends

Cybersecurity Rules

• definition & review of cybersecurity rules
• definition & review of supporting documents (standards, guidelines, checklists, etc.)
• consulting towards understanding & implementing rule requirements

Audit Support

• support of technical cybersecurity audits, tests and assessments

Cybersecurity Incident Support

• cybersecurity guidance/consulting for other IT functions or cybersecurity teams
• coordination with other IT functions or cybersecurity teams
• technical analysis

Additional Information

We want our employees to do well with us. That's why we offer them not only an exciting job in an international technology group, but also numerous additional offers such as flexible and hybrid working, and other benefits.

Click here to find out more.

If this sounds like a perfect match for you and if you want to become the next supporter of our core values Trust For One Another, Passion to Win and Freedom to Act, we are looking forward receiving your application.

Ready to drive with Continental? Take the first step and fill in the online application.

Qualifications

• Academic degree in Information Technology or similar qualification
• Several years of experience in IT (Enterprise environment)
• Communication Skills to effectively communicate information to various target groups
• Interest in current technology trends
• Willingness to travel from time to time
• Proficiency in English language

Knowledge on:

• General IT architecture and concepts (computers, network, cloud, storage, etc.)
• operating systems (MacOS, Linux, Windows)
• Microsoft Active Directory & Entra ID
• applications architectural concepts and technologies
• authentication & encryption (Kerberos, OAuth2, SAML, LDAP, certificates, TLS, HSM, disk encryption, etc.)
• IndustryCybersecurity standards like security frameworks/standards (OWASP,NIST, CIS, ISO 27000 family, BSI, etc.)
• Software Vulnerabilities handling

Company Description

Continentaldevelops pioneering technologies and services for sustainable and connected mobility of people and their goods. Founded in 1871, the technology company offers safe, efficient, intelligent and affordable solutions for vehicles, machines, traffic and transportation. In 2024, Continental generated sales of €39.7 billion and currently employs around 190,000 people in 55 countries and markets.

Tire solutions from theTires group sectormake mobility safer, smarter, and more sustainable. Its premium portfolio encompasses car, truck, bus, two-wheel, and specialty tires as well as smart solutions and services for fleets and tire retailers. Continental has been delivering top performance for more than 150 years and is one of the world’s largest tire manufacturers. In fiscal 2024, the Tires group sector generated sales of 13.9 billion euros. Continental's tire division employs more than 57,000 people worldwide and has 20 production and 16 development sites.

#J-18808-Ljbffr

Join to apply for the Cybersecurity Analyst role at ELSA ENERGY

5 days ago Be among the first 25 applicants

Join to apply for the Cybersecurity Analyst role at ELSA ENERGY

• Monitor IT systems, networks, and applications for potential cybersecurity incidents.
• Analyze security alerts, investigate incidents, and coordinate timely response actions.
• Assist in implementing cybersecurity policies, controls, and procedures in line with company standards.
• Support vulnerability assessments, penetration testing, and risk analysis activities.
• Work with IT and business teams to ensure compliance with cybersecurity frameworks and regulatory requirements.
• Maintain accurate records of incidents, risks, and remediation activities.
• Raise awareness and provide training to employees on cybersecurity practices.
• Support continuous improvement initiatives to strengthen the companys security environment.
  
  
  
• Bachelors Degree in Cybersecurity, Information Technology, Computer Science, or related field.
• 2-4 years of experience in cybersecurity, IT security operations, or network/system administration (fresh graduates with strong knowledge may also be considered).
  
  
  

Position : Cybersecurity Analyst

Industry : Oil & Gas

Location : Sabah

Scope of Works:

• Monitor IT systems, networks, and applications for potential cybersecurity incidents.
• Analyze security alerts, investigate incidents, and coordinate timely response actions.
• Assist in implementing cybersecurity policies, controls, and procedures in line with company standards.
• Support vulnerability assessments, penetration testing, and risk analysis activities.
• Work with IT and business teams to ensure compliance with cybersecurity frameworks and regulatory requirements.
• Maintain accurate records of incidents, risks, and remediation activities.
• Raise awareness and provide training to employees on cybersecurity practices.
• Support continuous improvement initiatives to strengthen the companys security environment.
  
  
  

Minimum Requirement(s):

• Bachelors Degree in Cybersecurity, Information Technology, Computer Science, or related field.
• 2-4 years of experience in cybersecurity, IT security operations, or network/system administration (fresh graduates with strong knowledge may also be considered).
  
  
  

Note: Only those applicants who meet the above criteria will be contacted as part of shortlisting process Seniority level

• Seniority level Not Applicable

Employment type

• Employment type Full-time

Job function

• Job function Information Technology
• Industries Oil and Gas

Referrals increase your chances of interviewing at ELSA ENERGY by 2x

Get notified about new Cyber Security Analyst jobs in Sabah, Malaysia .

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

As a Cybersecurity Specialist , you will work in the central team with worldwide responsibility for cybersecurity topics within Continental.

Key responsibilities include:

1. Application Security: Evaluation, review, and approval of various applications (client, mobile, add-ins, web applications, etc.).
2. Cybersecurity Consulting: Providing cybersecurity advice to teams and business units, collaborating within the global cybersecurity community, publishing cybersecurity information, and offering technical expertise on IT cybersecurity technologies.
3. Project Support: Consulting on cybersecurity, reviewing security checklists, and approving solutions and architecture documentation.
4. Service Requests: Handling cybersecurity-related service requests, including changes and incidents, and reviewing these requests.
5. Trend Evaluation: Analyzing current technology and cybersecurity trends.
6. Cybersecurity Rules: Defining and reviewing cybersecurity rules and related documents, and advising on their implementation.
7. Audit Support: Supporting technical cybersecurity audits, tests, and assessments.
8. Cybersecurity Incident Support: Providing guidance, coordinating, and conducting technical analysis during cybersecurity incidents.

Your profile should include:

• An academic degree in Information Technology or similar qualification.
• Several years of experience in an enterprise IT environment.
• Strong communication skills for effective information dissemination.
• Interest in current technology trends.
• Willingness to travel occasionally.
• Proficiency in English.

Knowledge requirements include:

• General IT architecture and concepts (computers, networks, cloud, storage).
• Microsoft Active Directory & Entra ID.
• Application architecture and technologies.
• Industry cybersecurity standards (OWASP, NIST, CIS, ISO 27000, BSI, etc.).
• Handling software vulnerabilities.

We offer an exciting role in an international group with benefits such as flexible and hybrid working arrangements. If you share our core values of Trust, Passion, and Freedom, we look forward to your application.

Join us and take the first step by filling out our online application.

About us

Continental develops innovative technologies for sustainable mobility. Founded in 1871, it offers solutions for vehicles, machinery, traffic, and transportation. In 2024, it generated €39.7 billion in sales and employs about 190,000 people worldwide.

#J-18808-Ljbffr

Company Overview :

Our client is a leading provider of Managed IT Security Services and Network Solutions, dedicated to safeguarding digital infrastructures and ensuring the seamless operation of IT systems for businesses of all sizes. Specializing in end-to-end solutions, they are committed to enhancing security, performance, and reliability across diverse industries.

The New Roles :

1. Lead team of cyber security analysts
2. Attend calls/complaints/requests on all operational issues
3. Analyse, investigate, and provide security consultation for all security incidents
4. Be the point of contact for the customer and the SOC for security logs monitoring, security systems, management consoles, and other monitoring tools
5. Act as a focal point for IT security investigations and direct a full investigation with recommended courses of action
6. Strategize remedial action plans for detected security incidents. Execute remedial action discovery and follow up on the effectiveness of incident solutions
7. Notify the customer on the latest advisories and threat intelligence based on new trends, threats, emerging campaigns, malicious attacks, and hacker groups
8. Coordinate with relevant parties to deliver security services in a multi-vendor environment.
9. Engage with clients and assess their digital forensic and cyber security needs
10. Lead security projects and engage in strategic planning for the deployment of information security technologies and enhancements to achieve technical solutions for all projects
11. Develop solutions to handle security incidents and coordinate investigative activities
12. Ensure that all milestones stipulated in the project plan are met within the time, quality, resource, and budget constraints
13. Prepare senior-level technical reports for executive management
14. Create and maintain close relationships with the customer and partners

Requirement to succeed:

1. At least a degree in Computer Security, Network Security, or equivalent
2. Minimum 2 years of working experience
3. Good command of spoken and written English is a must

To Apply:

If you’re interested in this role, click ‘apply now’ to submit your resume (in MS Word format) to Due to overwhelming responses, we will only be able to contact shortlisted candidates.

Job Ref: /097

Consultant: Hui Cheng Heng

Registration No: -W)

EA Licence No: JTKSM 949A

#J-18808-Ljbffr

As a Cybersecurity Specialist you will be working in the central team with worldwide responsibility for Cybersecurity topics within Continental.

Those will be your future main tasks:

Cybersecurity Consulting

• generic cybersecurity consulting for other teams, IT functions and business functions
• collaboration within the global cybersecurity community
• publishing cybersecurity information to various audiences
• providing technical expertise on IT cybersecurity technologies to other IT and business teams worldwide

Project Support

• cybersecurity consulting (including rule compliance, technical topics, support during provider interviews)
• review of security checklists
• security review of solution / product / architecture documentation
• documentation & solution approval

Service Requests

• consulting for cybersecurity-related service requests (changes, incidents, work orders)
• review and approval of cybersecurity-related service requests (changes)

Trend Evaluation

• evaluation of current technology and cybersecurity trends

Cybersecurity Rules

• definition & review of cybersecurity rules
• definition & review of supporting documents (standards, guidelines, checklists, etc.)
• consulting towards understanding & implementing rule requirements

Audit Support

• support of technical cybersecurity audits, tests and assessments

Cybersecurity Incident Support

• cybersecurity guidance/consulting for other IT functions or cybersecurity teams
• coordination with other IT functions or cybersecurity teams
• technical analysis

Application Security

• evaluation, review, and approval of different types of applications (client, mobile, add-Ins, web applications and more)

As a Cybersecurity Specialist you will be working in the central team with worldwide responsibility for Cybersecurity topics within Continental.

Those will be your future main tasks:

Cybersecurity Consulting

• generic cybersecurity consulting for other teams, IT functions and business functions
• collaboration within the global cybersecurity community
• publishing cybersecurity information to various audiences
• providing technical expertise on IT cybersecurity technologies to other IT and business teams worldwide

Project Support

• cybersecurity consulting (including rule compliance, technical topics, support during provider interviews)
• review of security checklists
• security review of solution / product / architecture documentation
• documentation & solution approval

Service Requests

• consulting for cybersecurity-related service requests (changes, incidents, work orders)
• review and approval of cybersecurity-related service requests (changes)

Trend Evaluation

• evaluation of current technology and cybersecurity trends

Cybersecurity Rules

• definition & review of cybersecurity rules
• definition & review of supporting documents (standards, guidelines, checklists, etc.)
• consulting towards understanding & implementing rule requirements

Audit Support

• support of technical cybersecurity audits, tests and assessments

Cybersecurity Incident Support

• cybersecurity guidance/consulting for other IT functions or cybersecurity teams
• coordination with other IT functions or cybersecurity teams
• technical analysis

Application Security

• evaluation, review, and approval of different types of applications (client, mobile, add-Ins, web applications and more)

Read moreYour profile

• Academic degree in Information Technology or similar qualification
• Several years of experience in IT (Enterprise environment)
• Communication Skills to effectively communicate information to various target groups
• Interest in current technology trends
• Willingness to travel from time to time
• Proficiency in English language

Knowledge on:

• General IT architecture and concepts (computers, network, cloud, storage, etc.)
• Microsoft Active Directory & Entra ID
• applications architectural concepts and technologies
• IndustryCybersecurity standards like security frameworks/standards (OWASP,NIST, CIS, ISO 27000 family, BSI, etc.)
• Software Vulnerabilities handling

• Academic degree in Information Technology or similar qualification
• Several years of experience in IT (Enterprise environment)
• Communication Skills to effectively communicate information to various target groups
• Interest in current technology trends
• Willingness to travel from time to time
• Proficiency in English language

Knowledge on:

• General IT architecture and concepts (computers, network, cloud, storage, etc.)
• operating systems (MacOS, Linux, Windows)
• Microsoft Active Directory & Entra ID
• applications architectural concepts and technologies
• authentication & encryption (Kerberos, OAuth2, SAML, LDAP, certificates, TLS, HSM, disk encryption, etc.)
• IndustryCybersecurity standards like security frameworks/standards (OWASP,NIST, CIS, ISO 27000 family, BSI, etc.)
• Software Vulnerabilities handling

Read moreOur offer

We want our employees to do well with us. That's why we offer them not only an exciting job in an international technology group, but also numerous additional offers such as flexible and hybrid working, sabbaticals and other benefits.

If this sounds like a perfect match for you and if you want to become the next supporter of our core values Trust For One Another, Passion to Win and Freedom to Act, we are looking forward receiving your application.

Ready to drive with Continental? Take the first step and fill in the online application.

About us

Continental develops pioneering technologies and services for sustainable and connected mobility of people and their goods. Founded in 1871, the technology company offers safe, efficient, intelligent and affordable solutions for vehicles, machines, traffic and transportation. In 2024, Continental generated sales of €39.7 billion and currently employs around 190,000 people in 55 countries and markets.

Tire solutions from the Tires group sector make mobility safer, smarter, and more sustainable. Its premium portfolio encompasses car, truck, bus, two-wheel, and specialty tires as well as smart solutions and services for fleets and tire retailers. Continental has been delivering top performance for more than 150 years and is one of the world’s largest tire manufacturers. In fiscal 2024, the Tires group sector generated sales of 13.9 billion euros. Continental's tire division employs more than 57,000 people worldwide and has 20 production and 16 development sites.

Legal Entity
Continental Tyre PJ Malaysia Sdn. Bhd.

#J-18808-Ljbffr

Press Tab to Move to Skip to Content Link

Select how often (in days) to receive an alert:

The Cybersecurity Manager will lead the organisation's security posture, deliver the execution of key security initiatives in the GDC air gapped and hybrid environments, and support Gamuda Dnex Cloud’s market presence within the specialised air gapped sovereign cloud sector. This role demands a unique blend of technical cybersecurity expertise, robust management skills, and a strong operations acumen to navigate the complexities of this highly regulated and security-sensitive market.

Key Responsibilities

1. Cybersecurity Operations Management & Support

• Manage 24/7 security monitoring through SIEM, EDR, IDS/IPS.
• Lead incident response processes including triage, containment, recovery, and reporting.
• Conduct threat hunting and integrate controlled threat intelligence sources.
• Maintain post-incident analysis and manage security documentation.

2. Vulnerability Management

• Perform vulnerability assessments and categorization using tools like Tenable/Nessus.
• Manage secure patch acquisition and deployment with validation and rollback procedures.
• Enforce secure system configurations and monitor unauthorized changes.

3. Identity & Access Management (IAM)

• Monitor access logs for anomalies and enforce least privilege principles.
• Manage privileged access (PAM), and oversee authentication token issuance and revocation.
• Conduct periodic audits of access rights and activities.

4. Data Security

• Manage encryption key lifecycle and monitor Hardware Security Modules (HSM).
• Implement data loss prevention (DLP) strategies within air-gapped constraints.

5. Compliance & Auditing

• Maintain and secure audit logs for user, admin, and system activity.
• Monitor and report on compliance with frameworks like NIST, FedRAMP, and FIPS.
• Support external audits, regulatory reviews, and compliance reporting.

6. Security Engineering & Optimisation

• Manage and optimize security tools (SIEM, EDR, SOAR).
• Implement automation to improve threat detection and incident response.
• Maintain playbooks and regularly update security documentation.
• Drive continuous improvement of cybersecurity processes and tooling
• Lead a team of cybersecurity professionals with focus on sovereign cloud and air-gapped operations.
• Provide technical training, mentorship, and ensure knowledge

Press Tab to Move to Skip to Content Link

The Cybersecurity Manager will lead the organisation's security posture, deliver the execution of key security initiatives in the GDC air gapped and hybrid environments, and support Gamuda Dnex Cloud’s market presence within the specialised air gapped sovereign cloud sector. This role demands a unique blend of technical cybersecurity expertise, robust management skills, and a strong operations acumen to navigate the complexities of this highly regulated and security-sensitive market.

Key Responsibilities

1. Cybersecurity Operations Management & Support

• Manage 24/7 security monitoring through SIEM, EDR, IDS/IPS.
• Lead incident response processes including triage, containment, recovery, and reporting.
• Conduct threat hunting and integrate controlled threat intelligence sources.
• Maintain post-incident analysis and manage security documentation.

2. Vulnerability Management

• Perform vulnerability assessments and categorization using tools like Tenable/Nessus.
• Manage secure patch acquisition and deployment with validation and rollback procedures.
• Enforce secure system configurations and monitor unauthorized changes.

3. Identity & Access Management (IAM)

• Monitor access logs for anomalies and enforce least privilege principles.
• Manage privileged access (PAM), and oversee authentication token issuance and revocation.
• Conduct periodic audits of access rights and activities.

4. Data Security

• Manage encryption key lifecycle and monitor Hardware Security Modules (HSM).
• Implement data loss prevention (DLP) strategies within air-gapped constraints.

5. Compliance & Auditing

• Maintain and secure audit logs for user, admin, and system activity.
• Monitor and report on compliance with frameworks like NIST, FedRAMP, and FIPS.
• Support external audits, regulatory reviews, and compliance reporting.

6. Security Engineering & Optimisation

• Manage and optimize security tools (SIEM, EDR, SOAR).
• Implement automation to improve threat detection and incident response.
• Maintain playbooks and regularly update security documentation.
• Drive continuous improvement of cybersecurity processes and tooling
• Lead a team of cybersecurity professionals with focus on sovereign cloud and air-gapped operations.
• Provide technical training, mentorship, and ensure knowledge