1,025 Information Security jobs in Malaysia
Senior Analyst, Information Security Engineering
Posted today
Job Viewed
Job Description
Senior Analyst, Information Security Engineering
KL, Malaysia
Join New Era Technology, where People First is at the heart of everything we do. With a global team of over 4,500 professionals, we’re committed to creating a workplace where everyone feels valued, empowered, and inspired to grow. Our mission is to securely connect people, places, and information with end-to-end technology solutions at scale.
At New Era, you’ll join a team-oriented culture that prioritizes your personal and professional development. Work alongside industry-certified experts, access continuous training, and enjoy competitive benefits. Driven by values like Community, Integrity, Agility, and Commitment, we nurture our people to deliver exceptional customer service.
If you want to make an impact in a supportive, growth-oriented environment, New Era is the place for you. Apply today and help us shape the future of work—together.
HiringSenior Analyst, Information Security Engineering – Malaysia (Client Location) | New Era Technology
Client Location: KL, Malaysia
Company: New Era Technology – Type: Permanent
New Era Technology is looking for an experienced Senior Analyst, Information Security Engineering to be deployed at our client in Malaysia at their KL office.
Purpose- Communicate, implement and execute network security initiatives or projects.
- Work closely with Group InfoSec and business units to provide Level 2 or 3 support on FWD Network Security Controls.
- Act as single point of contact for assigned business units regarding these network security controls.
- Conduct investigations and escalate discrepancies in security control deviation.
- Facilitate and guide the implementation of new network security controls for assigned markets.
- Coordinate the collection and generation of logs for issue resolution.
- Prepare network security control metrics for management reporting.
- Perform periodic and ad-hoc network data analytics for security controls improvement.
- Support and participate in project initiatives for remediation, service improvement and/or cost-savings.
- Proactively identify, plan and execute improvements to reporting processes and tools.
- Coach junior team members.
- Minimum 3-5 years of experience in Network Security.
- Degree in Information Technology or an equivalent discipline.
- Hands-on experience implementing or managing networking products such as Checkpoint, Palo Alto, Zscaler, Skybox.
- Detail-oriented, able to work under pressure and with tight deadlines.
- Team-oriented, collaborative, agile, and adaptable to change.
- Good stakeholder management and communication skills.
- Strong written and verbal communication skills and interpersonal abilities.
- Nationality: Open for Malaysians only
- Availability: Candidates who can join within 30-45 days.
Send your updated resume to with the subject line: “Senior Analyst, Information Security Engineering - Malaysia”
About UsNew Era Technology ( is a global IT services provider with a footprint in 80+ countries, delivering digital transformation, consulting, and staffing services across industries.
New Era Technology, Inc., and its subsidiaries are committed to protecting your privacy and providing a positive experience on our websites and solutions. View our Privacy Policy here:
#J-18808-LjbffrHead of Group Cybersecurity & Information Security (SVP Grade)
Posted today
Job Viewed
Job Description
The Enterprise Head of Group Cybersecurity & Information Security is a strategic leadership role responsible for safeguarding the banks digital assets, customer data, and infrastructure across all entities and geographies. The position ensures regulatory compliance and drives cybersecurity maturity aligned with business goals.
Responsibilities
- Develop and execute group-wide cybersecurity strategy
- Lead Information Security Committee and report to Board/ExCo
- Ensure compliance with global and local regulations (BNM, MAS, GDPR, etc.)
- Maintain cybersecurity policies and standards
- Oversee SOC, threat intelligence, incident response
- Implement resilience measures (red-teaming, crisis simulations)
- Drive advanced security technologies (AI, Zero Trust, cloud security)
- Manage Information Security Risk Register
- Collaborate with Audit and Risk for control assurance
- Ensure secure design in digital initiatives and vendor risk management
- Align cybersecurity with data governance and privacy laws
- Implement DLP, data classification, and customer data protection controls
- Lead global cybersecurity teams
- Promote security-first culture and executive engagement
- Mentor future cybersecurity leaders
Requirements:
- 3-5 Year Cybersecurity Strategy & Roadmap
- Quarterly Board/ExCo Risk Reports
- Regulatory & Standards Compliance Certifications
- Annual Incident Response & Crisis Simulation Results
- Cybersecurity Capability Maturity Improvements
- Bachelors/Masters in Cybersecurity or related field
- 15+ years in InfoSec, 5+ years in senior banking leadership
- Deep knowledge of financial regulations (BNM RMiT, MAS TRM, GDPR, etc.)
- Certified in CISSP, CISM, CISA, CRISC, CCISO, SABSA, ISO 27001 LA
- Proven board-level engagement and stakeholder management
- Strategic vision and leadership
- Regulatory and risk management expertise
- Crisis resilience and ethical integrity
- Board-level influence and multicultural team leadership
Product Engineer - Network Security
Posted 1 day ago
Job Viewed
Job Description
Overview
Position overview
Are you passionate about designing resilient, secure, and future-ready networks? allnex invites you to join us as a Product Engineer – Network Security, you’ll play a pivotal role in building, securing, and optimizing a global network infrastructure spanning over 60 locations, including 30+ manufacturing sites, data centers, and public cloud environments. You'll be embedded within a dynamic, agile product team driving IT and OT network solutions that empower over 4,000 colleagues worldwide.
This is more than a support role—it's a strategic engineering opportunity to lead cutting-edge network security initiatives across wired, wireless, WAN, and next-gen ecosystems.
Responsibilities- Network & Security Product Ownership: Take full ownership of the design, performance, availability, and continuous improvement of LAN/WAN, SASE, and next-generation security platforms.
- Operational Leadership & Incident Management: Manage and steer daily network operations delivered by managed service providers. Lead incident resolution, oversee escalations, run post-incident reviews, and drive best-in-class monitoring and automation practices.
- Change Management & Compliance: Direct and implement security and firewall changes, whether hands-on or through MSP coordination, ensuring every change aligns with compliance, performance, and business needs.
- Project Innovation & Strategic Delivery: Lead and execute key projects—including infrastructure upgrades, security rollouts, and future-state architecture—turning industry trends into actionable outcomes.
- Stakeholder & Vendor Collaboration: Work closely with service providers, internal teams, and business units. Oversee contracts, licenses, and budgets while aligning your efforts with enterprise architecture and cybersecurity strategies.
- Drive the Roadmap: Shape our Network Security roadmap by evaluating new technologies, building business cases, running proof-of-concepts, and applying FinOps to drive cost efficiency in cloud operations.
- Knowledge Sharing & Enablement: Create and maintain high-quality documentation, playbooks, training content, and change procedures to empower support teams and scale operational excellence.
- Strong hands-on experience in network/security design and implementation across LAN, WAN, and SD-WAN environments.
- Solid foundation in the OSI model, routing/switching, VLANs, and network segmentation.
- Deep knowledge of firewalls (NGFW), IPS/IDS, SASE, Zero Trust, VPNs, and policy frameworks.
- Experience managing and securing OT/ICS networks in manufacturing environments—familiarity with IEC62443 is highly advantageous.
- Comfortable with solutions from Cisco, Palo Alto, Fortinet, HP, Microsoft, VMware, and others. Relevant certifications are a strong asset.
- Proven ability to lead MSPs, manage SLAs, improve service delivery, and standardize operations—without needing to be hands-on in every detail.
- Thrive in agile teams, juggle priorities effectively, and approach documentation and change management with discipline and clarity.
- Strong communicator who can translate complex technical concepts into business value, and influence both technical teams and senior stakeholders.
- Bachelor’s Degree (or higher) in Computer Science, Information Technology, Network Engineering or related field.
We are proud to offer an international working experience with a tight-knit network of employees, making it easy to connect and learn from people all across our different functions. On top of that we are a truly innovative company with a strong team spirit, openness to new ideas, and great opportunities to grow and develop your career.
Equal Employment Opportunityallnex is proud to be an equal opportunity employer. We celebrate diversity and are committed to an environment where all colleagues contribute for the benefit of our employees, our products, and our communities.
Find out how you can make an impact! Check out our careers page for available opportunities. We look forward to hearing from you.
allnex
#J-18808-LjbffrSenior Manager, Group Information Security Engineering (Endpoint
Posted 1 day ago
Job Viewed
Job Description
Overview
Join New Era Technology, where People First is at the heart of everything we do. With a global team of over 4,500 professionals, we’re committed to creating a workplace where everyone feels valued, empowered, and inspired to grow. Our mission is to securely connect people, places, and information with end-to-end technology solutions at scale. At New Era, you’ll join a team-oriented culture that prioritizes your personal and professional development. Work alongside industry-certified experts, access continuous training, and enjoy competitive benefits. Driven by values like Community, Integrity, Agility, and Commitment, we nurture our people to deliver exceptional customer service. If you want to make an impact in a supportive, growth-oriented environment, New Era is the place for you. Apply today and help us shape the future of work—together.
Hiring: Senior Manager, Group Information Security Engineering (Endpoint) – Malaysia (Client Location) | New Era Technology
Client Location: KL, Malaysia
Company: New Era Technology – Type: Full-Time
Employment: Permanent
About the Role:
New Era Technology is looking for an experienced Senior Manager, Group Information Security Engineering (Endpoint) to be deployed at our prestigious client in Malaysia at their KL office.
Responsibilities- Drive IT Security Engineering function as a SME for Group and all Business Units (10 Business Units) in Asia Pacific.
- Define and partner with stakeholders in a multi-disciplined team structure, designing and implementing cloud security solutions to provide coverage across a variety of projects.
- Lead stakeholders’ and vendors engagements and providing subject matter expertise to Business Units and engagement teams.
- Develop deep working relationships with senior executives across engagement teams.
- Responsible and execute large-scale project deliveries.
- Manage teams and mentor junior resources.
- Oversee infrastructure and microservices security architecture (container security, data security, network security and operational security).
- Review infrastructure & microservices design against security standards (PCI DSS, CSA Containers' security guidelines) and identify necessary security architecture requirements.
- Review network and data architecture for necessary security requirements.
- Ensure final design addresses identified threats and countermeasures during threat modelling.
- Build knowledge capital through research and development and leverage industry insights to deliver best-in-class expertise.
- Lead the growth of cloud security practice across business units, project teams, and other stakeholders.
- Define IT Security Engineering initiatives and projects, select solutions and architectures, and improve the operations framework.
- Managing and engineering endpoint protection solutions such as Microsoft Defender for Endpoint and CrowdStrike Falcon.
- Develop and enforce endpoint hardening standards, ensuring secure configurations are rolled out and maintained throughout the asset lifecycle.
- Align endpoint security initiatives with the broader Information Security strategic roadmap.
- Automate security operations using scripting languages (e.g., PowerShell, Python, KQL).
- Manage and maintain configuration scanning policies to ensure endpoints and servers adhere to security baselines (e.g., CIS Benchmarks).
- Collaborate with cross-functional teams to deliver endpoint security programs on time and within budget.
- Manage device control policies and ensure compliance with regulatory and internal standards.
- Support integration and policy enforcement through platforms like Microsoft Intune.
- Drive the successful delivery of network security projects, ensuring alignment with Group Information Security strategies and objectives.
- Drive awareness and support to Group IT Security, Group IT and Business Units IT, to understand IT Security Solutions and Processes and their implications.
- Collaborate with cross-functional teams to ensure consistent execution of security initiatives.
- Partner with the Head of IT Security Engineering and Group CISO, through tracking and reporting, to ensure regular updates to management on the IT Security Engineering Program and risks.
- Provide technical leadership and mentorship to junior engineers and project teams.
- Continuously evaluate emerging technologies and recommend improvements to enhance the security infrastructure.
- Minimum 8 years of experience in IT Security Management, preferably in Financial Services.
- Proven track record in delivering endpoint security projects and managing enterprise-grade solutions.
- Regional experience in IT Security Technical or Engineering roles.
- Strong analytical and problem-solving abilities with a proactive and collaborative mindset.
- Degree in Information Technology or equivalent discipline.
- Technical experience in Identify, Protect, Detect, Respond or Recover areas.
- Good understanding of cloud environments and how networks work in cloud environments.
- Possess relevant Information security and cloud-related certifications. CISSP is a plus.
- Proficiency in scripting and automation tools to streamline security operations.
- Proven track records in designing and implementing endpoint security solutions.
- Excellent interpersonal and influential skills to enable the IT Security Engineering program.
- Good communication and presentation skills.
- On-time on-budget delivery of key IT Security Engineering program uplifts or deployments, aligned with Group IT Security roadmap.
- Support the Head of IT Security Engineering in continuous uplift of the IT Security Engineering program.
- Ensure IT Security Engineering Program across Business Units is carried out in alignment with business objectives and timelines.
- Group IT Security Engineering Framework implementation and controls delivered cost-effectively using processes and resources aligned with business goals.
- Group IT Security Engineering support and governance provided for all Business Units.
- IT Security Engineering Program awareness is conducted when necessary.
- Maintain a people-first approach and foster synergies with overall goals and objectives.
- Head of IT Security Engineering
- Group CISO
- Business Units IT Security Teams
- Group and Business Units Chief of Technology and Operations
- Group and Business Units IT & Operations
- Group and Business Units Internal Audit
- External Auditors
- Vendors and/or Service Providers
- Availability: Candidates who can join a maximum of 30-60 days.
Send your updated resume to with the subject line: Senior Manager, Group Information Security Engineering (Endpoint) – Malaysia
About UsNew Era Technology ( is a global IT services provider with a footprint in 80+ countries, delivering cutting-edge digital transformation, consulting, and staffing services across industries.
New Era Technology, Inc., and its subsidiaries are committed to protecting your privacy and managing Personal Data. View our Privacy Policy here:
Interested in building your career at New Era Technology?Get future opportunities sent straight to your email.
#J-18808-LjbffrNetwork & Security Engineer
Posted 1 day ago
Job Viewed
Job Description
Overview
MSP SYSTEMS (M) SDN BHD' is looking for a talented Network & Security Engineer to join our rapidly growing team in Kuala Lumpur. This full-time position is an excellent opportunity to play a key role in maintaining and securing our clients' critical IT infrastructure. You will be responsible for designing, implementing and monitoring robust network solutions that enable our customers to operate efficiently and securely.
What you'll be doing- Designing, configuring and maintaining secure network infrastructures for our clients
- Implementing and managing firewalls, VPNs, intrusion detection/prevention systems and other security solutions
- Monitoring network traffic and security events, and responding to incidents
- Troubleshooting and resolving complex network and security-related issues
- Providing technical support and guidance to clients
- Documenting network and security configurations, and maintaining accurate records
- Staying up-to-date with the latest networking and security technologies, trends and best practices
- Candidate must possess at least a Diploma, Advanced/Higher/Graduate Diploma, Bachelor's Degree, Post Graduate Diploma, Professional Degree in Computer Science/Information Technology or equivalent.
- Strong technical expertise in network design, configuration and troubleshooting, with hands-on experience working with routers, switches, firewalls and other network devices (Cisco, Aruba & etc.)
- Proficiency in network security technologies, such as VPNs, firewalls, IDS/IPS and content filtering (FortiGate, Palo Alto, Sangfor & etc.)
- Familiarity with network monitoring and management tools, and experience in incident response and remediation (SolarWinds & etc.)
- Good understanding of network protocols, such as TCP/IP, DNS, DHCP, and routing protocols
- Excellent problem-solving, analytical and communication skills
- Certification in networking or security related technology would be an advantage
- Based in KL (Publika), but willing to travel as and when required. Must possess driving license and own transport.
At MSP SYSTEMS (M) SDN BHD', we are committed to providing our employees with a supportive and rewarding work environment. We offer competitive salaries, comprehensive health benefits, and opportunities for professional development and career growth. Join us and be a part of our mission to deliver world-class IT solutions to our valued customers.
#J-18808-LjbffrAssociate Director, Application Security
Posted 1 day ago
Job Viewed
Job Description
The incumbent will be managing 9 team members and responsible for defining and overseeing the organization’s application security architecture, ensuring alignment with target architectures and modern development practices.
Strategic Oversight of Security Architecture
- Define, design, and implement the target application security architecture in line with organizational goals and industry/regulatory standards.
- Establish a comprehensive application security strategy, ensuring seamless integration into enterprise architecture and technology roadmaps.
- Conduct architectural reviews to identify risks and recommend mitigation strategies, focusing on secure and scalable solutions.
- Lead the integration of security controls into CI/CD pipelines, ensuring automated detection and remediation of vulnerabilities.
Secure Software Development Lifecycle (SDLC)
- Develop and enforce secure development guidelines, ensuring security is incorporated at every stage of the SDLC.
- Provide leadership in threat modelling, secure coding practices, and software code quality management across development teams.
- Work with application teams to prioritize security requirements, balancing business objectives with technical risks.
Vulnerability Management and Mitigation
- Oversee the overall strategy for SAST, DAST, to identifying and remediating vulnerabilities.
- Ensure timely resolution of identified issues, coordinating efforts across development, QA, and DevOps teams.
- Maintain and communicate detailed metrics and dashboards on the security posture of applications and pipelines.
Cross-Functional Collaboration
- Partner with application teams to align security architecture with business needs and project timelines.
- Act as the primary liaison between technical teams and executive leadership, effectively conveying security risks and architectural priorities.
Education and Certifications:
- Bachelor’s degree in computer science, Information Security, or a related field. A Master’s degree is desired.
- Relevant certifications such as CISSP, CSSLP, CEH, OSCP or CREST
Professional Experience:
- At least 15 years of experience in cybersecurity, with a focus on application security, security architecture, and secure development practices.
- Proven expertise in designing and implementing security controls within CI/CD pipelines in Agile and DevOps environments.
- Demonstrated success in defining and overseeing secure application architectures for cloud-native and hybrid environments.
- Deep understanding of secure software development lifecycle (SDLC) methodologies and best practices.
- A team-player with systematic problem-solving approach and have sense of ownership and drive.
- Must have strong people skill to lead a team effectively and demonstrable experience of working at the most senior levels of large and complex organizations.
- Excellent interpersonal skills and stakeholders' management.
- Always have customer in mind when dealing with any situations/projects/deliverables.
- Interprets customer needs, assesses requirements and identifies solutions to non-standard requests.
- Able to negotiate with, influence and engage others in complex and conflicting situations across multiple parties to drive a positive outcome.
- Good communication skills and the communication network of the incumbent is expected to be internally within the enterprise (80%) and external with Vendors and Service Providers (20%).
- Seniority level Director
- Employment type Full-time
- Job function Information Technology
- Industries IT Services and IT Consulting
Referrals increase your chances of interviewing at AIA Digital+ by 2x
Get notified about new Director of Application Security jobs in Greater Kuala Lumpur .
Expression of Interest - Cyber Security ManagerKuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago
Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago
Senior Application Operations Engineer - PuneWe’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-LjbffrSecurity Engineer
Posted 1 day ago
Job Viewed
Job Description
This job is a Security Engineer position where you'll help businesses protect their data. You might like this job because it involves collaborating with teams, solving security issues, and staying ahead of tech trends to keep customer information safe!
- Collaborate with the sales team to understand customer business requirements and translate them into technical DLP solutions.
- Conduct discovery sessions, gather technical requirements, and develop customized DLP solution proposals.
- Deliver compelling product demonstrations, proof-of-concepts (PoCs), and presentations to showcase DLP capabilities.
- Provide pre-sales technical support including solution design, sizing, and deployment planning for DLP implementations.
- Act as a trusted advisor to clients by providing insights on data protection strategies and regulatory compliance (e.g., PDPA, ISO 27001, PCI-DSS, RMiT).
- Respond to RFPs/RFIs and assist in creating technical documentation and diagrams to support proposals.
- Maintain deep technical expertise on DLP products and adjacent technologies (e.g., CASB, SIEM, endpoint security).
2. Senior Security Engineer
Responsibilities:
- Provide advice, guidance, and risk mitigation solutions to a variety of stakeholders to drive the IT security strategy and implementation to mitigate security exposure.
- Perform daily administrative tasks including monitoring, reporting, documentation, and communication with relevant departments within the organization.
- Collaborate with the pre-sales account team to develop technical strategies that address customer business needs.
- Respond promptly to security incidents, investigate root causes, and implement corrective actions to prevent future occurrences.
- Analyze security logs and events from various solutions, providing threat analysis reports and actionable insights as needed.
- Consult and guide customers on security standard best practices methodologies and act as a trusted advisor for clients.
- Stay updated on current and emerging technology issues, security trends, vulnerabilities, and threats.
3. Security Resident Engineer
Responsibilities:
- Act as a dedicated onsite resource to support the customer's security operations.
- Serve as the primary contact and respond promptly to security incidents, investigate root causes, and implement corrective actions to prevent future occurrences.
- Provide technical assistance in implementing and maintaining security tools (Cloud Security/PAM, etc).
- Analyze security logs and events from various solutions, providing threat analysis reports and actionable insights as needed.
- Guide the customer on best practices, threat intelligence, and policy enforcement to enhance the business effectiveness.
- Support regular audits, security assessments, and compliance checks.
- Execution of daily tasks, support tickets, and provisioning tasks as assigned or routed via the ticketing system.
- Stay updated on the latest PAM technologies and best practices
Qualification, Experience & Knowledge
- Degree holder in or related disciplines in Information Technology / Computer Science, Cyber Security, or equivalent professional experience.
- 2–5 years of experience in relevant cybersecurity roles (DLP security, Network/Cloud security, Resident Engineer or SOC operations, etc.).
- Experience in implementing and managing Data solutions or Identity solutions.
- Experience with networking technologies such as MLPS, SDWAN, SASE, VPN, MCN, WAN, SAN, and network monitoring tools.
- Experience in scripting or automation tools (e.g., PowerShell, Bash, Python) is advantages.
- Experience working in multi-stakeholder environments and managing technical conversations across customer IT and security teams.
- Strong documentation, communication, and analytical skills.
- Knowledge of modern security principles, tools, cloud technologies and compliance requirements is essential.
- Knowledge of frameworks such as PDPA, ISO 27001, PCI DSS, RMiT, and industry best practices.
Windows PowerShell
Firewall
McAfee VirusScan
Privileged Access Management
Python (Programming Language)
Bash (Scripting Language)
Unix
McAfee Network Security
Company Benefits14 days per calendar year.
Medical Leave14 days of medical leave. Entitlement as per employment contract or statutory law.
Public HolidayEmployees are entitled to paid holidays on gazetted Federal and State holidays. Replacement leave will be given if a holiday falls on Saturday.
Group Personal Accident (GPA) & Group Hospital & Surgical Insurance (GHS)All confirmed employees are covered by the Company’s GPA and GHS.
Confirmed employee will be eligible for three (3) days of marriage leave and is applicable for first legal marriage only.
LaptopEmployees will be provided with a company laptop to support their work and ensure productivity.
Cybersecurity for enterprise comes with unique set of challenges. One needs a distinctive skillset to be able to identify day-to-day cybersecurity issues and provide useful and practical solutions for them.The founders of Digital Defense Solution collectively have over 50+ years of experience in the cybersecurity sector. Henceforth, with founding pillars of abundant knowledge and experiences, our organization and.
#J-18808-LjbffrBe The First To Know
About the latest Information security Jobs in Malaysia !
Senior Security Penetration Tester
Posted 2 days ago
Job Viewed
Job Description
Location(s):Asia-Pacific & Middle East : Malaysia : Kuala Lumpur
BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.
About Us
Our mission at BAE Systems Digital Intelligence is to collect, connect and understand complex data, so that our customers can unlock digital advantage in the most demanding environments.
At our Malaysian Global Delivery Centre, we work with clients from around the world to deliver cyber technical services to support our customers in keeping their systems secure in today’s hostile digital world.
As a Senior Penetration Tester, you will perform comprehensive penetration testing assessments across a wide range of sectors and produce comprehensive written reports to meet high industry standards. Beyond the testing itself, you will be involved in client pre-engagement processes, contributing to scoping tasks and drafting proposals.
This position is part of our global Cyber Technical Services team, which includes adjacent areas such as Threat Intelligence and SOC Consulting.
Your role will involve:
- Delivery of end-to-end security testing engagements, including scoping and client wash-up meetings.
- Performing a wide range of security testing types such as web application, infrastructure and objective based/red teaming.
- Production of detailed reporting and presentations for both technical and non-technical stakeholders.
- Safe and responsible use of testing tools, ensuring controls are in place to limit risks during customer engagements.
- Developing improvements in terms of scripts, tools, or techniques to enhance the Security Testing team's capabilities.
- Maintaining an up-to-date knowledge of information security issues, continuously learning about new technologies, methodologies, and techniques.
- Knowledge sharing with colleagues in other teams, such as Threat Intelligence, Incident Response, and the wider Security Consulting community.
- Assist and support team members in troubleshooting complex technical issues, reviewing vulnerability findings, and validating penetration test results to uphold high standards of accuracy, consistency, and reporting quality.
Role requirements
- We are looking for those with a passion for cybersecurity. Those who contribute to cybersecurity related blogs, engage in vulnerability research/bug bounties or other community related events will be looked at favourably
- Experience in common offensive penetration testing domains such as testing of web applications, infrastructure and red teaming. Experience with wireless and mobile testing also an advantage.
- Evidenced skills through industry recognised certifications such OSCP, CREST or CRTO
- Confident communicator with excellent spoken and written English communication skills
- Experience using common industry tools such as Kali Linux, Nessus & Burpsuite
Desirable
- Knowledge of C2 frameworks such as Cobalt Strike
- Threat hunting or compromised assessment experience
What We Offer
- You’ll have a dedicated line Manager to help you develop your career and guide you on your journey through BAE Systems Digital Intelligence
- We will support your personal training and development in the areas of cybersecurity by sponsoring training courses and certification exams (i.e OSCP, CREST, CRTO)
- Work-life balance is important; you’ll get 18 days holiday a year (increases to 21 after 5 years’ service)
- We support hybrid working and give flexibility for teams to decide on the balance between remote and office-based working
- Our benefits package includes private family medical cover, maternity (4 months), paternity (2 weeks), study leave & a Optical/Dental/Health screening allowance
- You’ll be part of our annual bonus and share award scheme
Life at BAE Systems Digital Intelligence
We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day.
By embracing technology, we can interact, collaborate and create together, even when we’re working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance well-being.
Diversity and inclusion are integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds – the best and brightest minds – can work together to achieve excellence and realise individual and organisational potential.
#J-18808-LjbffrSenior Manager, Group Information Security Engineering (Cloud)
Posted 3 days ago
Job Viewed
Job Description
Senior Manager, Group Information Security Engineering (Cloud)
Join to apply for the Senior Manager, Group Information Security Engineering (Cloud) role at New Era Technology.
OverviewNew Era Technology is looking for an experienced Senior Manager, Group Information Security Engineering (Cloud) to be deployed at our client in Malaysia (KL office). Work in a team-oriented environment that emphasizes development, collaboration, and delivery of secure cloud solutions.
Key Responsibilities- Define and partner with stakeholders in a multi-disciplined team to design and implement cloud security solutions across various projects.
- Lead stakeholder and vendor engagements; provide subject matter expertise to Business Units and engagement teams.
- Develop relationships with senior executives across engagement teams.
- Deliver large-scale projects; manage and mentor junior resources.
- Oversee infrastructure and microservices security architecture (container, data, network, and operational security).
- Review infrastructure and microservices designs against security standards (e.g., PCI DSS, CSA Containers) and identify architecture requirements.
- Ensure final designs address identified threats and countermeasures during threat modelling.
- Engineering and management of endpoint protection solutions (e.g., Microsoft Defender for Endpoint, CrowdStrike Falcon).
- Develop and enforce endpoint hardening standards; maintain secure configurations throughout asset lifecycles.
- Align endpoint security initiatives with the broader Information Security roadmap.
- Automate security operations using scripting (PowerShell, Python, KQL).
- Maintain configuration scanning policies to ensure adherence to security baselines (e.g., CIS Benchmarks).
- Collaborate with cross-functional teams to deliver endpoint security programs on time and within budget.
- Manage device control policies; ensure regulatory and internal standard compliance; support integration via platforms like Microsoft Intune.
- Drive delivery of network security projects aligned with Group Information Security strategies and business objectives.
- Promote IT Security understanding across IT and Business Units and collaborate on security initiatives.
- Provide technical leadership and mentorship to junior engineers and project teams; evaluate emerging technologies for security improvements.
- Minimum 8 years in IT Security Management, preferably in Financial Services.
- Proven track record delivering endpoint security projects and enterprise-grade solutions.
- Regional experience in IT Security Technical or Engineering roles.
- Strong analytical and problem-solving abilities with a proactive, collaborative mindset.
- Degree in Information Technology or equivalent.
- Experience in Identify, Protect, Detect, Respond or Recover areas.
- Understanding of cloud environments and how networks operate in the cloud.
- Nationality: Open for Malaysians only
- Availability: able to join within 30-45 days
Send your updated resume to with the subject line: "Senior Manager, Group Information Security Engineering (Cloud) - Malaysia"
About UsNew Era Technology is a global IT services provider with a footprint in 80+ countries, delivering digital transformation, consulting, and staffing services. Privacy policy: View our Privacy Policy at
#J-18808-LjbffrNetwork Security Engineer.
Posted 3 days ago
Job Viewed
Job Description
#J-18808-Ljbffr