937 Cybersecurity Specialists jobs in Malaysia

Join our dynamic Technology Cyber Security and Red Team to explore the cutting edge of offensive cybersecurity. This role focuses on open-source tool exploration, scripting, developing tools for phishing, security incidents, penetration testing, and offensive security research. You'll work in a hands-on environment, contributing to vital projects while developing your skills in cybersecurity innovation.

Duties and Responsibilities:

• Offensive Security Research: Explore and analyze open-source tools and methodologies in offensive security.
• Scripting and Tool Development: Create scripts and tools for phishing simulations, security incident response, and penetration testing.
• Penetration Testing and Vulnerability Analysis: Assist in conducting penetration tests and vulnerability assessments when needed , identifying potential security risks together with Digital Hub team .
• Phishing Simulation and Incident Response: Develop and conduct phishing simulation campaigns and support incident response scenarios.
• Project Management and Documentation: Manage project timelines, ensure thorough documentation, and coordinate among different team components.
• Stay up-to-date on the latest security threats and vulnerabilities.

Requirements:

• Degree in Computer Science, Cybersecurity, Information Technology, or a related field.
• Basic understanding of cybersecurity principles and eagerness to learn.
• Familiarity with programming/scripting languages (Python, Bash, etc.).
• Basic knowledge of network and application security.
• Strong understanding of network security concepts, TCP/IP protocols, and common vulnerabilities.
• Experience with penetration testing tools (e.g., Burp Suite, Metasploit, Nmap).
• Excellent problem-solving and analytical skills.
• Strong organizational and communication abilities.
• Curiosity and passion for cybersecurity

Added Advantages:

• Experience with Capture the Flag (CTF) competitions.
• Engagement with platforms like Tryhackme, Hackthebox, PentestLab and etcs.
• Active participation in cybersecurity communities and conferences.

What We Offer:

• A collaborative and innovative environment.
• Hands-on experience with real-world cybersecurity challenges.
• Guidance and mentorship from industry experts.
• Opportunity to contribute to impactful cybersecurity projects.

Benefits:

• Hybrid and flexible working arrangement
• Leaves: Annual Leave, Medical Leave, Hospitalization Leave, Special Leave.
• Medical Benefits – Sunway Medical Insurance for Outpatient & Inpatient inclusive for dependents.
• Dental and Optical benefits.
• Group Term Life & Personal Accident Insurance Scheme.
• Executive Health Screening for confirmed executive.
• Salary increment based on individual performance.
• Bonus based on company & individual performance.
• Career Development: Training and certification sponsored by the company, Annual Talent Review, Career Planning.
• Rewards and recognition: Long Service Award.
• Additional Benefits: Staff Discount (i.e. ThemePark, Hospitality, Education, Property, Medical, Retail, Food & Beverages), Sports and Recreational, Family Day, Annual Dinner, Flexible Working Arrangement for working mothers.
• Open communication. Young, energetic and fun working environment.

Are you ready to elevate your working skills and experience? Click the 'Apply Now' and you are one step ahead to an outstanding career.

Our recruitment team will reach out to shortlisted candidates only.

Sunway Services Sdn Bhd

As a Cybersecurity Specialist you will be working in the central team with worldwide responsibility for Cybersecurity topics within Continental.

Those will be your future main tasks:

Cybersecurity Consulting

• generic cybersecurity consulting for other teams, IT functions and business functions
• collaboration within the global cybersecurity community
• publishing cybersecurity information to various audiences
• providing technical expertise on IT cybersecurity technologies to other IT and business teams worldwide

Project Support

• cybersecurity consulting (including rule compliance, technical topics, support during provider interviews)
• review of security checklists
• security review of solution / product / architecture documentation
• documentation & solution approval

Service Requests

• consulting for cybersecurity-related service requests (changes, incidents, work orders)
• review and approval of cybersecurity-related service requests (changes)

Trend Evaluation

• evaluation of current technology and cybersecurity trends

Cybersecurity Rules

• definition & review of cybersecurity rules
• definition & review of supporting documents (standards, guidelines, checklists, etc.)
• consulting towards understanding & implementing rule requirements

Audit Support

• support of technical cybersecurity audits, tests and assessments

Cybersecurity Incident Support

• cybersecurity guidance/consulting for other IT functions or cybersecurity teams
• coordination with other IT functions or cybersecurity teams
• technical analysis

Application Security

• evaluation, review, and approval of different types of applications (client, mobile, add-Ins, web applications and more)

As a Cybersecurity Specialist you will be working in the central team with worldwide responsibility for Cybersecurity topics within Continental.

Those will be your future main tasks:

Cybersecurity Consulting

• generic cybersecurity consulting for other teams, IT functions and business functions
• collaboration within the global cybersecurity community
• publishing cybersecurity information to various audiences
• providing technical expertise on IT cybersecurity technologies to other IT and business teams worldwide

Project Support

• cybersecurity consulting (including rule compliance, technical topics, support during provider interviews)
• review of security checklists
• security review of solution / product / architecture documentation
• documentation & solution approval

Service Requests

• consulting for cybersecurity-related service requests (changes, incidents, work orders)
• review and approval of cybersecurity-related service requests (changes)

Trend Evaluation

• evaluation of current technology and cybersecurity trends

Cybersecurity Rules

• definition & review of cybersecurity rules
• definition & review of supporting documents (standards, guidelines, checklists, etc.)
• consulting towards understanding & implementing rule requirements

Audit Support

• support of technical cybersecurity audits, tests and assessments

Cybersecurity Incident Support

• cybersecurity guidance/consulting for other IT functions or cybersecurity teams
• coordination with other IT functions or cybersecurity teams
• technical analysis

Application Security

• evaluation, review, and approval of different types of applications (client, mobile, add-Ins, web applications and more)

• Academic degree in Information Technology or similar qualification
• Several years of experience in IT (Enterprise environment)
• Communication Skills to effectively communicate information to various target groups
• Interest in current technology trends
• Willingness to travel from time to time
• Proficiency in English language

Knowledge on:

• General IT architecture and concepts (computers, network, cloud, storage, etc.)
• Microsoft Active Directory & Entra ID
• applications architectural concepts and technologies
• IndustryCybersecurity standards like security frameworks/standards (OWASP,NIST, CIS, ISO 27000 family, BSI, etc.)
• Software Vulnerabilities handling

• Academic degree in Information Technology or similar qualification
• Several years of experience in IT (Enterprise environment)
• Communication Skills to effectively communicate information to various target groups
• Interest in current technology trends
• Willingness to travel from time to time
• Proficiency in English language

Knowledge on:

• General IT architecture and concepts (computers, network, cloud, storage, etc.)
• operating systems (MacOS, Linux, Windows)
• Microsoft Active Directory & Entra ID
• applications architectural concepts and technologies
• authentication & encryption (Kerberos, OAuth2, SAML, LDAP, certificates, TLS, HSM, disk encryption, etc.)
• IndustryCybersecurity standards like security frameworks/standards (OWASP,NIST, CIS, ISO 27000 family, BSI, etc.)
• Software Vulnerabilities handling

We want our employees to do well with us. That's why we offer them not only an exciting job in an international technology group, but also numerous additional offers such as flexible and hybrid working, sabbaticals and other benefits.

If this sounds like a perfect match for you and if you want to become the next supporter of our core values Trust For One Another, Passion to Win and Freedom to Act, we are looking forward receiving your application.

Ready to drive with Continental? Take the first step and fill in the online application.

Continental develops pioneering technologies and services for sustainable and connected mobility of people and their goods. Founded in 1871, the technology company offers safe, efficient, intelligent and affordable solutions for vehicles, machines, traffic and transportation. In 2024, Continental generated sales of €39.7 billion and currently employs around 190,000 people in 55 countries and markets.

Tire solutions from the Tires group sector make mobility safer, smarter, and more sustainable. Its premium portfolio encompasses car, truck, bus, two-wheel, and specialty tires as well as smart solutions and services for fleets and tire retailers. Continental has been delivering top performance for more than 150 years and is one of the world’s largest tire manufacturers. In fiscal 2024, the Tires group sector generated sales of 13.9 billion euros. Continental's tire division employs more than 57,000 people worldwide and has 20 production and 16 development sites.

Legal Entity
Continental Tyre PJ Malaysia Sdn. Bhd.

About the Role:

We are looking for a skilled Cybersecurity Specialist to join our growing team. You will be responsible for protecting systems, networks, and data from security threats, ensuring compliance with policies, and supporting clients with secure IT solutions.

Key Responsibilities:

• Monitor and assess systems for security vulnerabilities and risks
• Implement, manage, and improve security measures across IT infrastructure
• Respond to security incidents and provide root cause analysis
• Conduct penetration testing, risk assessments, and security audits
• Ensure compliance with data protection regulations (PDPA, ISO standards, etc.)
• Provide guidance and training to internal teams and clients on cybersecurity best practices

Requirements:

• Degree in Computer Science, Information Security, or related field
• Proven experience in cybersecurity, IT security, or network security
• Strong knowledge of firewalls, intrusion detection/prevention systems, SIEM, and endpoint protection
• Familiarity with cloud security (Microsoft, AWS, Google Cloud) is an advantage
• Relevant certifications (CISSP, CISM, CEH, CompTIA Security+) are highly preferred
• Strong problem-solving skills and attention to detail
• Ability to work independently and as part of a team

Benefits:

• Competitive salary and performance bonuses
• Opportunities for professional training and certifications
• Career growth in cybersecurity and compliance fields
• Flexible working arrangements depending on project needs

Job Types: Full-time, Permanent

Pay: RM3, RM12,111.61 per month

Benefits:

• Free parking
• Opportunities for promotion
• Professional development
• Work from home

Work Location: In person

• Assist in the implementation of security solutions and the daily operations of organization's security infrastructure, systems and data.
• Conduct regular risk assessments on networks, systems and applications.
• Assisted in coordinating vulnerability scans and remediation cycles, ensuring prompt communication of security incidents to relevant stakeholders.
• Assist in maintaining and improving enterprise-wide security policies and procedures.
• Support incident response efforts and assist in root cause analysis.
• Coordinate with vendor and internal team for review and response to security alerts and incidents
• Conducting data security training and awareness programs to promote a security-first culture across the organization
• Maintain documentation related to security configurations, incidents, and responses

Job Requirements:

• Degree in Cybersecurity, Computer Science, or related field
• 3-5 years of experience in security engineering, incident response, or security operations.
• Demonstrated understanding of information security concepts, standards, practices, including but not limited to firewalls, intrusion prevention and detection, TCP /IP and related protocols, device monitoring and log management and event monitoring and reporting.
• Able to interpret regulatory requirements and translate them into actionable business processes
• Excellent interpersonal relations skill and demonstrate ability to work effectively with others in a team
• Familiarity with business continuity planning, impact analysis, and recovery testing encryption.
• Strong written and verbal communication skills for both technical and non-technical audiences.
• Strong analytical and problem solving skills with the ability to assess complex security issues and recommend effective solutions.
• Able to work under pressure in fast-paced working environment.

Company Description
Continental develops pioneering technologies and services for sustainable and connected mobility of people and their goods. Founded in 1871, the technology company offers safe, efficient, intelligent and affordable solutions for vehicles, machines, traffic and transportation. In 2024, Continental generated sales of €39.7 billion and currently employs around 190,000 people in 55 countries and markets.

Tire solutions from the Tires group sector make mobility safer, smarter, and more sustainable. Its premium portfolio encompasses car, truck, bus, two-wheel, and specialty tires as well as smart solutions and services for fleets and tire retailers. Continental has been delivering top performance for more than 150 years and is one of the world's largest tire manufacturers. In fiscal 2024, the Tires group sector generated sales of 13.9 billion euros. Continental's tire division employs more than 57,000 people worldwide and has 20 production and 16 development sites.

Job Description
As a
Cybersecurity Specialist
you will be working in the central team with worldwide responsibility for Cybersecurity topics within Continental.

Those will be your future main tasks:

Application Security

• evaluation, review, and approval of different types of applications (client, mobile, add-Ins, web applications and more)

Cybersecurity Consulting

• generic cybersecurity consulting for other teams, IT functions and business functions
• collaboration within the global cybersecurity community
• publishing cybersecurity information to various audiences
• providing technical expertise on IT cybersecurity technologies to other IT and business teams worldwide

Project Support

• cybersecurity consulting (including rule compliance, technical topics, support during provider interviews)
• review of security checklists
• security review of solution / product / architecture documentation
• documentation & solution approval

Service Requests

• consulting for cybersecurity-related service requests (changes, incidents, work orders)
• review and approval of cybersecurity-related service requests (changes)

Trend Evaluation

• evaluation of current technology and cybersecurity trends

Cybersecurity Rules

• definition & review of cybersecurity rules
• definition & review of supporting documents (standards, guidelines, checklists, etc.)
• consulting towards understanding & implementing rule requirements

Audit Support

• support of technical cybersecurity audits, tests and assessments

Cybersecurity Incident Support

• cybersecurity guidance/consulting for other IT functions or cybersecurity teams
• coordination with other IT functions or cybersecurity teams
• technical analysis

Qualifications

• Academic degree in Information Technology or similar qualification
• Several years of experience in IT (Enterprise environment)
• Communication Skills to effectively communicate information to various target groups
• Interest in current technology trends
• Willingness to travel from time to time
• Proficiency in English language

Knowledge on:

• General IT architecture and concepts (computers, network, cloud, storage, etc.)
• operating systems (MacOS, Linux, Windows)
• Microsoft Active Directory & Entra ID
• applications architectural concepts and technologies
• authentication & encryption (Kerberos, OAuth2, SAML, LDAP, certificates, TLS, HSM, disk encryption, etc.)
• Industry Cybersecurity standards like security frameworks/standards (OWASP,NIST, CIS, ISO 27000 family, BSI, etc.)
• Software Vulnerabilities handling

Additional Information
We want our employees to do well with us. That's why we offer them not only an exciting job in an international technology group, but also numerous additional offers such as flexible and hybrid working, and other benefits.

Click here to find out more.

If this sounds like a perfect match for you and if you want to become the next supporter of our core values Trust For One Another, Passion to Win and Freedom to Act, we are looking forward receiving your application.

Ready to drive with Continental? Take the first step and fill in the online application.

Duties and Responsibilities

As the Threat Intelligence Lead, you will be responsible for establishing and managing the bank's cyber threat intelligence (CTI) program. This role requires strong connections with law enforcement agencies such as NACSA, BNM, PDRM, MCMC, and MyCERT/CyberSecurity Malaysia to enhance collaboration on threat intelligence sharing and incident response. You will lead a team of analysts to identify, analyze, and mitigate emerging cyber threats that could impact the bank's operations and financial assets.

Key Performance Areas

1. Threat Intelligence

2. Develop and implement a Cyber Threat Intelligence (CTI) strategy aligned with the bank's cybersecurity objectives.

3. Establish and maintain strong relationships with NACSA, BNM, PDRM, MCMC, MyCERT/CyberSecurity Malaysia, FS-ISAC, and other regulatory/law enforcement bodies for intelligence sharing and incident collaboration.
4. Monitor and analyze cyber threat landscapes, emerging attack techniques, and geopolitical cyber risks that could affect the bank.
5. Collect, process, and analyze threat intelligence from open-source intelligence (OSINT), dark web sources, malware analysis, and private intelligence feeds.
6. Provide actionable intelligence to SOC, Incident Response (IR), Red Team, and Fraud Prevention teams to enhance proactive defense strategies.
7. Lead threat hunting and cyber forensics investigations to detect and neutralize advanced threats.
8. Collaborate with IT security teams to proactively mitigate risks from advanced persistent threats (APTs), cybercriminal groups, and nation-state actors.
9. Conduct cyber threat briefings, intelligence reports, and risk assessments for senior management and the board.
10. Ensure compliance with Bank Negara Malaysia (BNM) RMiT and other cybersecurity regulatory requirements.
11. Develop threat intelligence playbooks and integration strategies for SIEM, SOAR, and EDR/XDR platforms.

12. Represent the bank in cybersecurity forums, intelligence-sharing platforms, and government-led cyber exercises.

13. Information & Cyber Security Program

14. To support information/cyber security programs such as Compromised assessment, threat hunting and Cyber Drill exercise

15. To support a bank wide information security education and awareness campaign.
16. Provide information /cyber security training and education to stakeholders.
17. To provide tracking to the current cyber security programs that has been conducted

Specific Skills/Knowledge and Certification Required

• Strong knowledge of cyber threat intelligence frameworks (MITRE ATT&CK, Diamond Model, Kill Chain, TLP, STIX/TAXII).
• Established connections with NACSA, PDRM, MCMC, MyCERT, and other key regulatory bodies for intelligence collaboration.
• Hands-on experience with threat intelligence platforms (TIPs), OSINT tools, malware analysis, and dark web monitoring.
• Familiarity with cybercriminal tactics, Advanced Persistent Threat (APT) groups, financial cyber fraud, and phishing attacks.
• Experience in cyber threat hunting, forensics, and incident response coordination.
• Strong analytical and investigative skills with the ability to interpret and predict cyber threats.
• Industry certifications such as CTIA, GCTI, GOSI, CISM, CISSP, GCIH, GCFA, or equivalent are preferred.
• Experience working in the financial sector, intelligence agencies, or law enforcement cyber units is highly desirable.
• Excellent communication and presentation skills, with the ability to deliver intelligence reports to technical teams and executive leadership.

Req ID: 7511

Job Description:

Duties and Responsibilities

As the Threat Intelligence Lead, you will be responsible for establishing and managing the bank's cyber threat intelligence (CTI) program. This role requires strong connections with law enforcement agencies such as NACSA, BNM, PDRM, MCMC, and MyCERT/CyberSecurity Malaysia to enhance collaboration on threat intelligence sharing and incident response. You will lead a team of analysts to identify, analyze, and mitigate emerging cyber threats that could impact the bank's operations and financial assets.

Key Performance Areas

1. Threat Intelligence

2. Develop and implement a Cyber Threat Intelligence (CTI) strategy aligned with the bank's cybersecurity objectives.

3. Establish and maintain strong relationships with NACSA, BNM, PDRM, MCMC, MyCERT/CyberSecurity Malaysia, FS-ISAC, and other regulatory/law enforcement bodies for intelligence sharing and incident collaboration.
4. Monitor and analyze cyber threat landscapes, emerging attack techniques, and geopolitical cyber risks that could affect the bank.
5. Collect, process, and analyze threat intelligence from open-source intelligence (OSINT), dark web sources, malware analysis, and private intelligence feeds.
6. Provide actionable intelligence to SOC, Incident Response (IR), Red Team, and Fraud Prevention teams to enhance proactive defense strategies.
7. Lead threat hunting and cyber forensics investigations to detect and neutralize advanced threats.
8. Collaborate with IT security teams to proactively mitigate risks from advanced persistent threats (APTs), cybercriminal groups, and nation-state actors.
9. Conduct cyber threat briefings, intelligence reports, and risk assessments for senior management and the board.
10. Ensure compliance with Bank Negara Malaysia (BNM) RMiT and other cybersecurity regulatory requirements.
11. Develop threat intelligence playbooks and integration strategies for SIEM, SOAR, and EDR/XDR platforms.

12. Represent the bank in cybersecurity forums, intelligence-sharing platforms, and government-led cyber exercises.

13. Information & Cyber Security Program

14. To support information/cyber security programs such as Compromised assessment, threat hunting and Cyber Drill exercise

15. To support a bank wide information security education and awareness campaign.
16. Provide information /cyber security training and education to stakeholders.
17. To provide tracking to the current cyber security programs that has been conducted

Specific Skills/Knowledge and Certification Required

• Strong knowledge of cyber threat intelligence frameworks (MITRE ATT&CK, Diamond Model, Kill Chain, TLP, STIX/TAXII).
• Established connections with NACSA, PDRM, MCMC, MyCERT, and other key regulatory bodies for intelligence collaboration.
• Hands-on experience with threat intelligence platforms (TIPs), OSINT tools, malware analysis, and dark web monitoring.
• Familiarity with cybercriminal tactics, Advanced Persistent Threat (APT) groups, financial cyber fraud, and phishing attacks.
• Experience in cyber threat hunting, forensics, and incident response coordination.
• Strong analytical and investigative skills with the ability to interpret and predict cyber threats.
• Industry certifications such as CTIA, GCTI, GOSI, CISM, CISSP, GCIH, GCFA, or equivalent are preferred.
• Experience working in the financial sector, intelligence agencies, or law enforcement cyber units is highly desirable.
• Excellent communication and presentation skills, with the ability to deliver intelligence reports to technical teams and executive leadership.

Overview

Mindvalley is seeking a Cybersecurity Engineer to strengthen the overall security posture of our platforms, endpoints, cloud services, and applications. This role goes beyond traditional AppSec — you will work across engineering, product, and IT teams to remediate vulnerabilities, improve security tool configurations, and design automated workflows that reduce manual security effort. If you're someone who loves getting hands-on, enjoys teaming up across functions, and gets excited about using AI and automation to turn complex security challenges into streamlined, scalable solutions — we want to hear from you.

• Triage and investigate security alerts from multiple sources (e.g., CrowdStrike, GuardRails, ASM, GCP, GWS).
• Work with Tech, Product, and IT teams to remediate vulnerabilities, misconfigurations, and incidents.
• Improve detection and prevention by tuning/configuring GCP, GWS, and other security tools.
• Automate repetitive security processes (e.g., alert filtering, access reviews, vulnerability reporting) using scripting, APIs, or workflow automation platforms.
• Conduct periodic application and infrastructure security assessments.
• Participate in secure SDLC by providing feedback to engineering teams.
• Document processes and contribute to Mindvalley’s PSPG framework (policies, standards, procedures, guidelines).

• 3–5 years in cybersecurity operations, cloud security, or vulnerability management.
• Solid understanding of web/app/API vulnerabilities (OWASP Top 10) and cloud security basics (preferably GCP/GWS).
• Experience with at least one scripting/automation language (Python, JS, or automation platforms like Make.com).
• Familiarity with vulnerability management and SIEM/log analysis tools.
• Strong problem-solving skills; able to balance firefighting with long-term improvements.
• Preferred: certifications (e.g., OSCP, GCP Security Engineer), prior experience automating security workflows, or participation in bug bounty/security communities.

Mindvalley is an equal opportunity employer and does not discriminate on the basis of race, colour, religion, gender identity or expression, national origin, age, disability, marital status, sexual orientation, or any other legally protected status. We are committed to creating a diverse and inclusive workplace and encourage applications from all qualified individuals.