201 Cybersecurity Specialist jobs in Malaysia

As a Cybersecurity Specialist you will be working in the central team with worldwide responsibility for Cybersecurity topics within Continental.

Those will be your future main tasks:

Cybersecurity Consulting

• generic cybersecurity consulting for other teams, IT functions and business functions
• collaboration within the global cybersecurity community
• publishing cybersecurity information to various audiences
• providing technical expertise on IT cybersecurity technologies to other IT and business teams worldwide

Project Support

• cybersecurity consulting (including rule compliance, technical topics, support during provider interviews)
• review of security checklists
• security review of solution / product / architecture documentation
• documentation & solution approval

Service Requests

• consulting for cybersecurity-related service requests (changes, incidents, work orders)
• review and approval of cybersecurity-related service requests (changes)

Trend Evaluation

• evaluation of current technology and cybersecurity trends

Cybersecurity Rules

• definition & review of cybersecurity rules
• definition & review of supporting documents (standards, guidelines, checklists, etc.)
• consulting towards understanding & implementing rule requirements

Audit Support

• support of technical cybersecurity audits, tests and assessments

Cybersecurity Incident Support

• cybersecurity guidance/consulting for other IT functions or cybersecurity teams
• coordination with other IT functions or cybersecurity teams
• technical analysis

Application Security

• evaluation, review, and approval of different types of applications (client, mobile, add-Ins, web applications and more)

As a Cybersecurity Specialist you will be working in the central team with worldwide responsibility for Cybersecurity topics within Continental.

Those will be your future main tasks:

Cybersecurity Consulting

• generic cybersecurity consulting for other teams, IT functions and business functions
• collaboration within the global cybersecurity community
• publishing cybersecurity information to various audiences
• providing technical expertise on IT cybersecurity technologies to other IT and business teams worldwide

Project Support

• cybersecurity consulting (including rule compliance, technical topics, support during provider interviews)
• review of security checklists
• security review of solution / product / architecture documentation
• documentation & solution approval

Service Requests

• consulting for cybersecurity-related service requests (changes, incidents, work orders)
• review and approval of cybersecurity-related service requests (changes)

Trend Evaluation

• evaluation of current technology and cybersecurity trends

Cybersecurity Rules

• definition & review of cybersecurity rules
• definition & review of supporting documents (standards, guidelines, checklists, etc.)
• consulting towards understanding & implementing rule requirements

Audit Support

• support of technical cybersecurity audits, tests and assessments

Cybersecurity Incident Support

• cybersecurity guidance/consulting for other IT functions or cybersecurity teams
• coordination with other IT functions or cybersecurity teams
• technical analysis

Application Security

• evaluation, review, and approval of different types of applications (client, mobile, add-Ins, web applications and more)

Read moreYour profile

• Academic degree in Information Technology or similar qualification
• Several years of experience in IT (Enterprise environment)
• Communication Skills to effectively communicate information to various target groups
• Interest in current technology trends
• Willingness to travel from time to time
• Proficiency in English language

Knowledge on:

• General IT architecture and concepts (computers, network, cloud, storage, etc.)
• Microsoft Active Directory & Entra ID
• applications architectural concepts and technologies
• IndustryCybersecurity standards like security frameworks/standards (OWASP,NIST, CIS, ISO 27000 family, BSI, etc.)
• Software Vulnerabilities handling

• Academic degree in Information Technology or similar qualification
• Several years of experience in IT (Enterprise environment)
• Communication Skills to effectively communicate information to various target groups
• Interest in current technology trends
• Willingness to travel from time to time
• Proficiency in English language

Knowledge on:

• General IT architecture and concepts (computers, network, cloud, storage, etc.)
• operating systems (MacOS, Linux, Windows)
• Microsoft Active Directory & Entra ID
• applications architectural concepts and technologies
• authentication & encryption (Kerberos, OAuth2, SAML, LDAP, certificates, TLS, HSM, disk encryption, etc.)
• IndustryCybersecurity standards like security frameworks/standards (OWASP,NIST, CIS, ISO 27000 family, BSI, etc.)
• Software Vulnerabilities handling

Read moreOur offer

We want our employees to do well with us. That's why we offer them not only an exciting job in an international technology group, but also numerous additional offers such as flexible and hybrid working, sabbaticals and other benefits.

If this sounds like a perfect match for you and if you want to become the next supporter of our core values Trust For One Another, Passion to Win and Freedom to Act, we are looking forward receiving your application.

Ready to drive with Continental? Take the first step and fill in the online application.

About us

Continental develops pioneering technologies and services for sustainable and connected mobility of people and their goods. Founded in 1871, the technology company offers safe, efficient, intelligent and affordable solutions for vehicles, machines, traffic and transportation. In 2024, Continental generated sales of €39.7 billion and currently employs around 190,000 people in 55 countries and markets.

Tire solutions from the Tires group sector make mobility safer, smarter, and more sustainable. Its premium portfolio encompasses car, truck, bus, two-wheel, and specialty tires as well as smart solutions and services for fleets and tire retailers. Continental has been delivering top performance for more than 150 years and is one of the world’s largest tire manufacturers. In fiscal 2024, the Tires group sector generated sales of 13.9 billion euros. Continental's tire division employs more than 57,000 people worldwide and has 20 production and 16 development sites.

Legal Entity
Continental Tyre PJ Malaysia Sdn. Bhd.

#J-18808-Ljbffr

Join Our Team as a Cybersecurity Specialist at ATG Nexus Sdn Bhd!
Are you a cybersecurity professional with hands-on experience and a drive to protect critical systems and data? We’re looking for a talented Cybersecurity Specialist to strengthen our security posture and help defend against ever-evolving threats. If you’re ready to take your career to the next level and make a meaningful impact in a collaborative, forward-thinking environment — this role is for you! br>
Why You’ll Love This Role < r>As a Cybersecurity Specialist, you’ll play a key role in safeguarding our organization and clients by implementing and maintaining robust security measures. Your responsibilities will include: < r>- Designing, implementing, and maintaining security controls, tools, and procedures
- Monitoring networks and systems to detect, respond to, and mitigate threats and vulnerabilities
- Investigating and responding to security incidents and breaches
- Performing vulnerability assessments and coordinating penetration testing
- Managing and maintaining security technologies (e.g., SIEM, firewalls, IDS/IPS, endpoint protection)
- Supporting compliance with standards and regulations such as ISO 27001, NIST, or PDPA
- Developing and maintaining security documentation, policies, and procedures
- Providing guidance and training to staff on cybersecurity best practices
- Staying updated with the latest threats, tools, and trends in cybersecurity

What We’re Looking For < r>- Bachelor’s degree in Computer Science, Information Security, Information Technology, or a related field. < r>- Experience working in regulated industries or with critical infrastructure
- Minimum 2 years of hands-on experience in cybersecurity or IT security-related roles.
- Proficiency in security technologies: firewalls, IPS/IDS, EDR/XDR, VPNs, ZTNA, SIEM, and encryption.
- Strong understanding of networking protocols, operating systems (Windows/Linux), private and public cloud environments.
- Knowledge of Identity & Access Management (IAM)
- Solid knowledge of cybersecurity frameworks (e.g. ISO27001, RMIT, NIST).
- Experience with incident response, threat intelligence, and vulnerability management.

Bonus Points for:
- Certifications such as CISSP, CISM, CEH, CompTIA Security+, or equivalent
- Cloud certifications (AWS, Azure, GCP, OCI, Alibaba)
- Network or directory services certifications (e.g., Cisco, Active Directory)
- Experience working in regulated industries or with critical infrastructure

What’s In It for You? < r>- Growth Opportunities: We invest in your professional development through training, mentorship, and clear career paths
- Collaborative Team Culture: Be part of a supportive, innovative team where your contributions are valued
- Convenient Location: Easily accessible office at Damansara Phileo II (near MRT Phileo Damansara)
- Great Benefits: Health insurance, performance recognition, and opportunities for promotion

Ready to Make an Impact?
If you’re passionate about cybersecurity, eager to tackle challenges, and want to thrive in a vibrant team — we’d love to hear from you!

Continental develops pioneering technologies and services for sustainable and connected mobility of people and their goods. Founded in 1871, the technology company offers safe, efficient, intelligent and affordable solutions for vehicles, machines, traffic and transportation. In 2024, Continental generated sales of 39.7 billion and currently employs around 190,000 people in 55 countries and markets.
Tire solutions from the Tires group sector make mobility safer, smarter, and more sustainable. Its premium portfolio encompasses car, truck, bus, two-wheel, and specialty tires as well as smart solutions and services for fleets and tire retailers. Continental has been delivering top performance for more than 150 years and is one of the world's largest tire manufacturers. In fiscal 2024, the Tires group sector generated sales of 13.9 billion euros. Continental's tire division employs more than 57,000 people worldwide and has 20 production and 16 development sites.
As a **Cybersecurity Specialist** you will be working in the central team with worldwide responsibility for Cybersecurity topics within Continental.
Those will be your future main tasks:
**Application Security**
+ evaluation, review, and approval of different types of applications (client, mobile, add-Ins, web applications and more)
**Cybersecurity Consulting**
+ generic cybersecurity consulting for other teams, IT functions and business functions
+ collaboration within the global cybersecurity community
+ publishing cybersecurity information to various audiences
+ providing technical expertise on IT cybersecurity technologies to other IT and business teams worldwide
**Project Support**
+ cybersecurity consulting (including rule compliance, technical topics, support during provider interviews)
+ review of security checklists
+ security review of solution / product / architecture documentation
+ documentation & solution approval
**Service Requests**
+ consulting for cybersecurity-related service requests (changes, incidents, work orders)
+ review and approval of cybersecurity-related service requests (changes)
**Trend Evaluation**
+ evaluation of current technology and cybersecurity trends
**Cybersecurity Rules**
+ definition & review of cybersecurity rules
+ definition & review of supporting documents (standards, guidelines, checklists, etc.)
+ consulting towards understanding & implementing rule requirements
**Audit Support**
+ support of technical cybersecurity audits, tests and assessments
**Cybersecurity Incident Support**
+ cybersecurity guidance/consulting for other IT functions or cybersecurity teams
+ coordination with other IT functions or cybersecurity teams
+ technical analysis
+ Academic degree in Information Technology or similar qualification
+ Several years of experience in IT (Enterprise environment)
+ Communication Skills to effectively communicate information to various target groups
+ Interest in current technology trends
+ Willingness to travel from time to time
+ Proficiency in English language
Knowledge on:
+ General IT architecture and concepts (computers, network, cloud, storage, etc.)
+ operating systems (MacOS, Linux, Windows)
+ Microsoft Active Directory & Entra ID
+ applications architectural concepts and technologies
+ authentication & encryption (Kerberos, OAuth2, SAML, LDAP, certificates, TLS, HSM, disk encryption, etc.)
+ Industry Cybersecurity standards like security frameworks/standards (OWASP,NIST, CIS, ISO 27000 family, BSI, etc.)
+ Software Vulnerabilities handling
We want our employees to do well with us. That's why we offer them not only an exciting job in an international technology group, but also numerous additional offers such as flexible and hybrid working, and other benefits.
Click here to find out more. ( this sounds like a perfect match for you and if you want to become the next supporter of our core values Trust For One Another, Passion to Win and Freedom to Act, we are looking forward receiving your application.
Ready to drive with Continental? Take the first step and fill in the online application.

**Continental** develops pioneering technologies and services for sustainable and connected mobility of people and their goods. Founded in 1871, the technology company offers safe, efficient, intelligent and affordable solutions for vehicles, machines, traffic and transportation. In 2024, Continental generated sales of 39.7 billion and currently employs around 190,000 people in 55 countries and markets.
Tire solutions from the **Tires group sector** make mobility safer, smarter, and more sustainable. Its premium portfolio encompasses car, truck, bus, two-wheel, and specialty tires as well as smart solutions and services for fleets and tire retailers. Continental has been delivering top performance for more than 150 years and is one of the world's largest tire manufacturers. In fiscal 2024, the Tires group sector generated sales of 13.9 billion euros. Continental's tire division employs more than 57,000 people worldwide and has 20 production and 16 development sites.
As a **Cybersecurity Specialist** you will be working in the central team with worldwide responsibility for Cybersecurity topics within Continental.
Those will be your future main tasks:
**Cybersecurity Consulting**
+ generic cybersecurity consulting for other teams, IT functions and business functions
+ collaboration within the global cybersecurity community
+ publishing cybersecurity information to various audiences
+ providing technical expertise on IT cybersecurity technologies to other IT and business teams worldwide
**Project Support**
+ cybersecurity consulting (including rule compliance, technical topics, support during provider interviews)
+ review of security checklists
+ security review of solution / product / architecture documentation
+ documentation & solution approval
**Service Requests**
+ consulting for cybersecurity-related service requests (changes, incidents, work orders)
+ review and approval of cybersecurity-related service requests (changes)
**Trend Evaluation**
+ evaluation of current technology and cybersecurity trends
**Cybersecurity Rules**
+ definition & review of cybersecurity rules
+ definition & review of supporting documents (standards, guidelines, checklists, etc.)
+ consulting towards understanding & implementing rule requirements
**Audit Support**
+ support of technical cybersecurity audits, tests and assessments
**Cybersecurity Incident Support**
+ cybersecurity guidance/consulting for other IT functions or cybersecurity teams
+ coordination with other IT functions or cybersecurity teams
+ technical analysis
**Application Security**
+ evaluation, review, and approval of different types of applications (client, mobile, add-Ins, web applications and more)
+ Academic degree in Information Technology or similar qualification
+ Several years of experience in IT (Enterprise environment)
+ Communication Skills to effectively communicate information to various target groups
+ Interest in current technology trends
+ Willingness to travel from time to time
+ Proficiency in English language
Knowledge on:
+ General IT architecture and concepts (computers, network, cloud, storage, etc.)
+ operating systems (MacOS, Linux, Windows)
+ Microsoft Active Directory & Entra ID
+ applications architectural concepts and technologies
+ authentication & encryption (Kerberos, OAuth2, SAML, LDAP, certificates, TLS, HSM, disk encryption, etc.)
+ Industry Cybersecurity standards like security frameworks/standards (OWASP,NIST, CIS, ISO 27000 family, BSI, etc.)
+ Software Vulnerabilities handling
We want our employees to do well with us. That's why we offer them not only an exciting job in an international technology group, but also numerous additional offers such as flexible and hybrid working, sabbaticals and other benefits.
If this sounds like a perfect match for you and if you want to become the next supporter of our core values Trust For One Another, Passion to Win and Freedom to Act, we are looking forward receiving your application.
Ready to drive with Continental? Take the first step and fill in the online application.

As a

Cybersecurity Specialist

you will be working in the central team with worldwide responsibility for Cybersecurity topics within Continental. Those will be your future main tasks: Cybersecurity Consulting generic cybersecurity consulting for other teams, IT functions and business functions collaboration within the global cybersecurity community publishing cybersecurity information to various audiences providing technical expertise on IT cybersecurity technologies to other IT and business teams worldwide Project Support cybersecurity consulting (including rule compliance, technical topics, support during provider interviews) review of security checklists security review of solution / product / architecture documentation documentation & solution approval Service Requests consulting for cybersecurity-related service requests (changes, incidents, work orders) review and approval of cybersecurity-related service requests (changes) Trend Evaluation evaluation of current technology and cybersecurity trends Cybersecurity Rules definition & review of cybersecurity rules definition & review of supporting documents (standards, guidelines, checklists, etc.) consulting towards understanding & implementing rule requirements Audit Support support of technical cybersecurity audits, tests and assessments Cybersecurity Incident Support cybersecurity guidance/consulting for other IT functions or cybersecurity teams coordination with other IT functions or cybersecurity teams technical analysis Application Security evaluation, review, and approval of different types of applications (client, mobile, add-Ins, web applications and more) As a

Cybersecurity Specialist

you will be working in the central team with worldwide responsibility for Cybersecurity topics within Continental. Those will be your future main tasks: Cybersecurity Consulting generic cybersecurity consulting for other teams, IT functions and business functions collaboration within the global cybersecurity community publishing cybersecurity information to various audiences providing technical expertise on IT cybersecurity technologies to other IT and business teams worldwide Project Support cybersecurity consulting (including rule compliance, technical topics, support during provider interviews) review of security checklists security review of solution / product / architecture documentation documentation & solution approval Service Requests consulting for cybersecurity-related service requests (changes, incidents, work orders) review and approval of cybersecurity-related service requests (changes) Trend Evaluation evaluation of current technology and cybersecurity trends Cybersecurity Rules definition & review of cybersecurity rules definition & review of supporting documents (standards, guidelines, checklists, etc.) consulting towards understanding & implementing rule requirements Audit Support support of technical cybersecurity audits, tests and assessments Cybersecurity Incident Support cybersecurity guidance/consulting for other IT functions or cybersecurity teams coordination with other IT functions or cybersecurity teams technical analysis Application Security evaluation, review, and approval of different types of applications (client, mobile, add-Ins, web applications and more) Read more Your profile

Academic degree in Information Technology or similar qualification Several years of experience in IT (Enterprise environment) Communication Skills to effectively communicate information to various target groups Interest in current technology trends Willingness to travel from time to time Proficiency in English language Knowledge on: General IT architecture and concepts (computers, network, cloud, storage, etc.) Microsoft Active Directory & Entra ID applications architectural concepts and technologies IndustryCybersecurity standards like security frameworks/standards (OWASP,NIST, CIS, ISO 27000 family, BSI, etc.) Software Vulnerabilities handling Academic degree in Information Technology or similar qualification Several years of experience in IT (Enterprise environment) Communication Skills to effectively communicate information to various target groups Interest in current technology trends Willingness to travel from time to time Proficiency in English language Knowledge on: General IT architecture and concepts (computers, network, cloud, storage, etc.) operating systems (MacOS, Linux, Windows) Microsoft Active Directory & Entra ID applications architectural concepts and technologies authentication & encryption (Kerberos, OAuth2, SAML, LDAP, certificates, TLS, HSM, disk encryption, etc.) IndustryCybersecurity standards like security frameworks/standards (OWASP,NIST, CIS, ISO 27000 family, BSI, etc.) Software Vulnerabilities handling Read more Our offer

We want our employees to do well with us. That's why we offer them not only an exciting job in an international technology group, but also numerous additional offers such as flexible and hybrid working, sabbaticals and other benefits. If this sounds like a perfect match for you and if you want to become the next supporter of our core values Trust For One Another, Passion to Win and Freedom to Act, we are looking forward receiving your application. Ready to drive with Continental? Take the first step and fill in the online application. About us

Continental

develops pioneering technologies and services for sustainable and connected mobility of people and their goods. Founded in 1871, the technology company offers safe, efficient, intelligent and affordable solutions for vehicles, machines, traffic and transportation. In 2024, Continental generated sales of €39.7 billion and currently employs around 190,000 people in 55 countries and markets. Tire solutions from the

Tires group sector

make mobility safer, smarter, and more sustainable. Its premium portfolio encompasses car, truck, bus, two-wheel, and specialty tires as well as smart solutions and services for fleets and tire retailers. Continental has been delivering top performance for more than 150 years and is one of the world’s largest tire manufacturers. In fiscal 2024, the Tires group sector generated sales of 13.9 billion euros. Continental's tire division employs more than 57,000 people worldwide and has 20 production and 16 development sites. Legal Entity Continental Tyre PJ Malaysia Sdn. Bhd.

#J-18808-Ljbffr

As a

Cybersecurity Specialist , you will work in the central team with worldwide responsibility for cybersecurity topics within Continental. Key responsibilities include: Application Security:

Evaluation, review, and approval of various applications (client, mobile, add-ins, web applications, etc.). Cybersecurity Consulting:

Providing cybersecurity advice to teams and business units, collaborating within the global cybersecurity community, publishing cybersecurity information, and offering technical expertise on IT cybersecurity technologies. Project Support:

Consulting on cybersecurity, reviewing security checklists, and approving solutions and architecture documentation. Service Requests:

Handling cybersecurity-related service requests, including changes and incidents, and reviewing these requests. Trend Evaluation:

Analyzing current technology and cybersecurity trends. Cybersecurity Rules:

Defining and reviewing cybersecurity rules and related documents, and advising on their implementation. Audit Support:

Supporting technical cybersecurity audits, tests, and assessments. Cybersecurity Incident Support:

Providing guidance, coordinating, and conducting technical analysis during cybersecurity incidents. Your profile should include: An academic degree in Information Technology or similar qualification. Several years of experience in an enterprise IT environment. Strong communication skills for effective information dissemination. Interest in current technology trends. Willingness to travel occasionally. Proficiency in English. Knowledge requirements include: General IT architecture and concepts (computers, networks, cloud, storage). Microsoft Active Directory & Entra ID. Application architecture and technologies. Industry cybersecurity standards (OWASP, NIST, CIS, ISO 27000, BSI, etc.). Handling software vulnerabilities. We offer an exciting role in an international group with benefits such as flexible and hybrid working arrangements. If you share our core values of Trust, Passion, and Freedom, we look forward to your application. Join us and take the first step by filling out our online application. About us

Continental develops innovative technologies for sustainable mobility. Founded in 1871, it offers solutions for vehicles, machinery, traffic, and transportation. In 2024, it generated €39.7 billion in sales and employs about 190,000 people worldwide.

#J-18808-Ljbffr

What You Will Do:

• Provide IT security guidance to global teams, ensuring alignment with global security strategy, policies, and standards (e.g., Nexperia security framework).

• Support regional projects and initiatives to ensure compliance with security requirements.

• Address security incidents and alerts affecting global systems, coordinating resolution with global teams.

• Monitor vulnerability management, threat detection, and remediation efforts.

• Contribute to the development of the global IT security strategy and annual security awareness training.

• Develop, update, and enforce IT security policies, processes, and best practices.

• Lead global security projects (e.g., risk assessments, security improvements).

• Act as the regional security liaison for stakeholders in China, Malaysia, the Philippines, and Europe.

What You Will Need:

• 5+ years of experience in IT/OT cybersecurity, preferably in semiconductor or manufacturing industries.

• Expertise in security frameworks such as NIST 2, ISO 27001/2, IEC 62443, or similar.

• Experience leading IT (SOC).

• Security strategy development and assessments.

• Incident response, vulnerability management, and monitoring tools.

• Policy and procedure documentation.

• Relevant certifications such as CISSP, CISM (or actively working toward them).

• Bachelor’s degree in IT, Cybersecurity, or a related field.

• Strong analytical, problem-solving, and communication skills.

• Ability to work under tight deadlines and adapt to challenges.

• Willingness to travel 10%, depending on project requirements.

• Preferred: Knowledge of semiconductor industry risks (e.g., supply chain, IP protection).

• Experience with OT/ICS security (if applicable).

Talent acquisition based on Nexperia vacancies is not appreciated. Nexperia job adverts are Nexperia copyright material and the word Nexperia is a registered trademark.

D&I Statement

As an equal-opportunity employer, Nexperia values diversity not just because it is the right thing to do but because diverse teams perform better. We are dedicated to being inclusive, and a proof point of this dedication is that we were the main partner of the very first Dutch Paralympic Team NL House during the Paris 2024 Paralympic Games. Our recruitment process is inclusive and accessible to all, and we consider all applicants fairly, as well as providing a safe work environment and reasonable adjustments where requested.

In addition, we offer our colleagues the possibility to join employee resource groups such as the Pride Network Group or global and local Women's groups. Nexperia is committed to increasing women in management positions to 30% by 2030.

#J-18808-Ljbffr

Senior principal - AI Cybersecurity Specialist

Safeguard Malaysia’s national payment rails against sophisticated, AI‑enabled cyber‑threats by owning the strategy, design, and continuous improvement of PayNet’s SecureAIDevelopmentFramework (SADF) and related security controls. As a senior technical leader, you will drive research programmes, architect end‑to‑end defences, mentor engineers, and partner with regulators to ensure PayNet’s AI systems remain trustworthy, resilient, and compliant.

KEY AREAS OF RESPONSIBILITIES

Strategic Leadership & Governance

• Define the multi‑year AI security roadmap, aligning SADF milestones with PayNet’s risk appetite, cybersecurity strategy, corporate strategy, and regulatory requirements such as , BNM’s RMiT and NACSA’s CSA 2024 guidelines
• Execute and oversee the implementation of the AI security roadmap
• Present quarterly AI risk posture updates to the CISO and Board Risk Committees.

Advanced Research & Threat Hunting

• Lead red/blue‑team exercises on adversarial ML, model extraction, data poisoning, and prompt‑injection against production LLM services.
• Publish peer‑reviewed white‑papers and threat intelligence briefs that influence industry best practice.
• Continuously research and apply new ways to attack and defend LLM-enabled products and services

Secure AI Architecture & Engineering

• Design reference architectures for robust training pipelines, encrypted model artefact registries, and in‑line LLM firewalling.
• Implement and oversee code reviews, IaC templates, and CI/CD gates enforcing OWASP best practices and NISTAIRMF controls.

Framework Development (SADF)

• Own SADF requirements, threat models, test harnesses, and compliance checklists; ensure artefacts are version‑controlled and reproducible (MLflow / DVC).
• Integrate bias & robustness evaluation, differential privacy, and SBOM generation into every model promotion.
• Act as AI security SME during cyber incidents; develop playbooks for model rollback, drift detection, and malicious payload sanitisation.
• Conduct post‑mortems and drive remediation across engineering squads.

Regulatory & Ecosystem Engagement

• Track regional and global AI‑cyber regulations (MASTRM, ISO42001) and advise Risk, Legal/Compliance, and Legal, and senior management on implementation gaps.
• Represent PayNet in Bank Negara working groups and speak at industry events.

People & Knowledge Development

• Mentor engineers, guide interns, and deliver internal masterclasses on topics such as secure prompt engineering and homomorphic encryption.
• Foster a culture of secure coding, pair programming, and continuous learning.

QUALIFICATIONS

Experience

• Minimum 8years in cybersecurity or ML security, with 3+years leading AI/ML security initiatives in regulated environments.
• Demonstrable track record shipping or securing production‑grade ML/LLM systems.

Education

• Bachelor’s degree in Computer Science, SoftwareEngineering, DataScience, Cybersecurity, AI, or related field.
• Master’s or PhD in Information Security, Machine Learning, or equivalent is highly advantageous.

Technical Mastery

• Deep knowledge of adversarial ML, differential privacy, secure federated learning, and cryptographic protocols.
• Cloud security (AWS/GCP/Azure) and IaC (Terraform/CDK) at production scale.

Security Certifications

• At least one: CISSP, GIACGWEB/GWAPT/GMLE, OSCP, or CCSK.
• Bonus: MITREATT&CK(ML)certifications, AWSSecuritySpecialty.

Leadership & Communication

• Proven ability to lead cross‑functional teams, influence executives, and translate complex research into actionable controls.
• Strong written & verbal communication; published blogs, conference talks, or patents.

NICE TO HAVE

• Experience with payment messaging standards (ISO20022, DuitNow, RPTP) and Malaysian financial regulations (BNM, MCMC).
• Contributions to open‑source AI security tooling (e.g., AdversarialRobustnessToolbox, TracIn, LlamaGuard).
• Familiarity with GenAI policy enforcement (RLHF, RLAIF, content filters) and real‑time LLM observability platforms.

Embark on an exciting career journey with Payments Network Malaysia Sdn Bhd (PayNet), the heartbeat of Malaysia's financial markets!

As the national payments network and a pivotal infrastructure for Malaysia’s dynamic financial markets, PayNet is a linchpin in advancing the nation’s digital economy.

Our comprehensive suite of retail payment solutions - encompassing DuitNow (QR and P2P), JomPAY (Bill Payments), FPX (Online), MyDebit (Domestic Debit), MEPS (ATM), and IBG (Interbank GIRO) - not only offer wide accessibility but are seamlessly integrated into the fabric of daily life in Malaysia. These services have revolutionised the way Malaysians handle financial transactions, marking a significant leap in consumer convenience and efficiency.

At PayNet, our focus is on providing a safe, efficient, and innovative payments system. We are dedicated to improving and managing payment services that meet the evolving needs of consumers and businesses. Our work ensures the stability and reliability of Malaysia’s financial system, supporting the growth of the economy.

Learn more about our work and how we are contributing to Malaysia's financial future at

Join us in embracing digital payments and advancing Malaysia's financial landscape.

#J-18808-Ljbffr

Senior principal - AI Cybersecurity Specialist

Safeguard Malaysia’s national payment rails against sophisticated, AI‑enabled cyber‑threats by owning the strategy, design, and continuous improvement of PayNet’s SecureAIDevelopmentFramework (SADF) and related security controls. As a senior technical leader, you will drive research programmes, architect end‑to‑end defences, mentor engineers, and partner with regulators to ensure PayNet’s AI systems remain trustworthy, resilient, and compliant. KEY AREAS OF RESPONSIBILITIES Strategic Leadership & Governance Define the multi‑year AI security roadmap, aligning SADF milestones with PayNet’s risk appetite, cybersecurity strategy, corporate strategy, and regulatory requirements such as , BNM’s RMiT and NACSA’s CSA 2024 guidelines Execute and oversee the implementation of the AI security roadmap Present quarterly AI risk posture updates to the CISO and Board Risk Committees. Advanced Research & Threat Hunting Lead red/blue‑team exercises on adversarial ML, model extraction, data poisoning, and prompt‑injection against production LLM services. Publish peer‑reviewed white‑papers and threat intelligence briefs that influence industry best practice. Continuously research and apply new ways to attack and defend LLM-enabled products and services Secure AI Architecture & Engineering Design reference architectures for robust training pipelines, encrypted model artefact registries, and in‑line LLM firewalling. Implement and oversee code reviews, IaC templates, and CI/CD gates enforcing OWASP best practices and NISTAIRMF controls. Framework Development (SADF) Own SADF requirements, threat models, test harnesses, and compliance checklists; ensure artefacts are version‑controlled and reproducible (MLflow / DVC). Integrate bias & robustness evaluation, differential privacy, and SBOM generation into every model promotion. Act as AI security SME during cyber incidents; develop playbooks for model rollback, drift detection, and malicious payload sanitisation. Conduct post‑mortems and drive remediation across engineering squads. Regulatory & Ecosystem Engagement Track regional and global AI‑cyber regulations (MASTRM, ISO42001) and advise Risk, Legal/Compliance, and Legal, and senior management on implementation gaps. Represent PayNet in Bank Negara working groups and speak at industry events. People & Knowledge Development Mentor engineers, guide interns, and deliver internal masterclasses on topics such as secure prompt engineering and homomorphic encryption. Foster a culture of secure coding, pair programming, and continuous learning. QUALIFICATIONS Experience Minimum 8years in cybersecurity or ML security, with 3+years leading AI/ML security initiatives in regulated environments. Demonstrable track record shipping or securing production‑grade ML/LLM systems. Education Bachelor’s degree in Computer Science, SoftwareEngineering, DataScience, Cybersecurity, AI, or related field. Master’s or PhD in Information Security, Machine Learning, or equivalent is highly advantageous. Technical Mastery Deep knowledge of adversarial ML, differential privacy, secure federated learning, and cryptographic protocols. Cloud security (AWS/GCP/Azure) and IaC (Terraform/CDK) at production scale. Security Certifications At least one: CISSP, GIACGWEB/GWAPT/GMLE, OSCP, or CCSK. Bonus: MITREATT&CK(ML)certifications, AWSSecuritySpecialty. Leadership & Communication Proven ability to lead cross‑functional teams, influence executives, and translate complex research into actionable controls. Strong written & verbal communication; published blogs, conference talks, or patents. NICE TO HAVE Experience with payment messaging standards (ISO20022, DuitNow, RPTP) and Malaysian financial regulations (BNM, MCMC). Contributions to open‑source AI security tooling (e.g., AdversarialRobustnessToolbox, TracIn, LlamaGuard). Familiarity with GenAI policy enforcement (RLHF, RLAIF, content filters) and real‑time LLM observability platforms. Embark on an exciting career journey with Payments Network Malaysia Sdn Bhd (PayNet), the heartbeat of Malaysia's financial markets! As the national payments network and a pivotal infrastructure for Malaysia’s dynamic financial markets, PayNet is a linchpin in advancing the nation’s digital economy. Our comprehensive suite of retail payment solutions - encompassing DuitNow (QR and P2P), JomPAY (Bill Payments), FPX (Online), MyDebit (Domestic Debit), MEPS (ATM), and IBG (Interbank GIRO) - not only offer wide accessibility but are seamlessly integrated into the fabric of daily life in Malaysia. These services have revolutionised the way Malaysians handle financial transactions, marking a significant leap in consumer convenience and efficiency. At PayNet, our focus is on providing a safe, efficient, and innovative payments system. We are dedicated to improving and managing payment services that meet the evolving needs of consumers and businesses. Our work ensures the stability and reliability of Malaysia’s financial system, supporting the growth of the economy. Learn more about our work and how we are contributing to Malaysia's financial future at Join us in embracing digital payments and advancing Malaysia's financial landscape.

#J-18808-Ljbffr