206 Information Security jobs in Malaysia

Great that you're thinking about a career with BSI!

Head of Information Security – APAC

Hong Kong OR Kuala Lumpur – Hybrid

About the role

As the Head of Information Security for our APAC region, you be the business facing part of the information security team within the region. You will work to partner and engage with the business to provide consultancy, support, guidance and advice on all Information Security matters. You will also help support projects and programmes relating to the region and any changes required.

Responsibilities:

• Support the implementation of global policies, strategies, processes, standards, procedures, roles and controls within the region.
• Act as regional contact for all IT Security related incidents, providing support the IT Security Operations team, IT Infrastructure teams and local business to resolve the incident quickly.
• Investigate and report on hazards, potential risk events within a specific function or business area and carry out risk assessments as directed.
• Take responsibility for understanding client requirements, collecting data, delivering analysis and problem resolution in relation to information security.
• Review compliance to information security policies and standards, taking legal and regulatory requirements into consideration.
• Ensuring security controls are reviewed, implemented and maintained where appropriate.
• Provide authoritative advice and guidance on security strategies to manage identified risk and ensure adoption.
• Continue to develop and maintain knowledge within technical specialism, and keep up to date with technical specialism across BSI, industries and appropriate professional and trade bodies.

To be successful in the role, you will have:

• Previous experience working in a multi-national, matrix style organisation.
• Demonstrable experience working with teams across multiple time-zones.
• High levels of risk management experience (quantify, assess, document and manage).
• Experience of working with/for businesses in China.
• Great understanding of PIPL.
• Fluent language skills in Cantonese and/or Mandarin.
• English language skills both written and verbal to business conversation level.

It is not essential, but if you have the following it would be beneficial:

• Previous hands on technical background.
• An understanding of both highly regulated and lesser regulated industries.
• Previous experience of training within the Information Security sector.
• Experience and or interest in AI.
• Network security skills.
• Security architecture experience.

Grow your career and expand your skills and knowledge. At BSI, we offer opportunities to work across industries and across the globe. You’ll benefit from the different perspectives and experiences of your international colleagues, as well as ongoing training and development. We offer flexible working, as well as competitive local benefits.

We’re building an organisation that meets the challenges of tomorrow. Want to grow with us?

We exist to have a positive impact. Our people influence international thinking and action on important issues. Our 86,000 customers are based in 193 countries across the globe.

Now we’re taking on society’s biggest challenges. We’re developing standards and guidelines that will help our customers get to net zero, and we’re defining the way new technologies such as AI impact all our lives.

We’re focused on our future – and we’re looking for people who want to grow with us as we take on the challenges of tomorrow. At BSI, you’ll find a workplace where everyone can flourish and thrive, where innovation is encouraged and where learning is part of your everyday. You’ll contribute to work that shapes industries and enhances lives – and you’ll take pride in what you do.

We’re looking for passionate people who want to make a difference in a purpose-led organisation. If that sounds like you, apply now. Together, we can help create a better society and a more sustainable world.

D&I Policy

The world needs fresh thinking and new perspectives to tackle its biggest challenges. It’s why, at BSI, we’re committed to creating a collaborative environment where everyone can contribute. Whatever your background, experience or outlook, here you can be your best self and do your best work.

If you have a disability or a health condition, please let us know if you need any reasonable adjustments to the recruitment process.

#LI-NC1

#LI-HYBRID

Our Excellence Behaviours: Client-centric, Agile, Collaborative. These three behaviours represent how we do things at BSI. They help us ensure that BSI is a great place to work and a highly successful business.

BSI is conducting face-to-face interviews where appropriate and possible. If you are invited to a face-to-face interview but feel more comfortable with conducting the interview virtually, please speak to a member of our recruitment team.

Join to apply for the Network Security Engineer role at NS BlueScope

1 day ago Be among the first 25 applicants

Join to apply for the Network Security Engineer role at NS BlueScope

Get AI-powered advice on this job and more exclusive features.

This key individual will be the technical lead for SMART Factory aspirations including Automation, Operational Technology (OT) systems and Level 3 process control leadership.

This is a critical role and we are looking for an experienced and motivated Engineer with high energy to join the existing team. This is a great development and career opportunity for someone who wants to progress in to an Engineering Leadership role.

You will be the technical lead for SMART Factory aspirations including Automation, Operational Technology (OT) systems and Level 3 process control leadership.

What You'll Do

• Promoting a safe and healthy work environment including leading by example in the development of and adherence to safe systems of work.
• Process Control leadership to ensure automated systems meet the technical and quality requirements.
• Development and continuous improvement of OT systems and equipment in line with site master plan.
• Troubleshooting and maintenance of automation equipment, L3 systems, data loggers and other OT systems.
• Deliver Engineering to a high Industrial standard with a focus of safety in design.
• Provides mentoring of Instrumentation technicians to ensure a system is in place for inspection, calibration and repair of all instrumentation devices including transmitter, transducer, control valve etc. within the area of responsibilities.
• Ensure all software and hardware of PLC, DCS, VSD and PC are available and that an effective maintenance strategy is in place.
  
  

• Degree in Computer Engineering or related discipline.
• At least 2 years of experience in Project Engineering of Automation systems, instrumentation and control.
• Experience in heavy industry or complex manufacturing environment is an added advantage.
• Strong technical knowledge of heavy industrial control equipment; PLC or DCS, Closed Loop Control and Instrumentation
• Understands safety rated automation and hardware requirements, ensures systems are in place to maintain safety ratings
• Has experience of implementing quality management systems and enforcing safety and environmental regulations.
• Able to initiate, propose and execute continuous improvement and development initiatives in OT systems to support Digitalization efforts.
  
  

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Manufacturing
• Industries Wholesale Building Materials

Referrals increase your chances of interviewing at NS BlueScope by 2x

Get notified about new Network Security Engineer jobs in Kapar, Selangor, Malaysia .

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 5 months ago

Petaling Jaya, Selangor, Malaysia 4 months ago

Petaling Jaya, Selangor, Malaysia 4 days ago

Petaling Jaya, Selangor, Malaysia 4 months ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 3 weeks ago

Petaling Jaya, Selangor, Malaysia 10 hours ago

Kuala Lumpur City, Federal Territory of Kuala Lumpur, Malaysia 5 hours ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 4 days ago

Petaling Jaya, Selangor, Malaysia 2 days ago

Federal Territory of Kuala Lumpur, Malaysia 3 days ago

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 3 weeks ago

Federal Territory of Kuala Lumpur, Malaysia 2 days ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 5 days ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 days ago

Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 day ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

With a global team of 5800 IT professionals, DHL IT Services connects people and keeps the global economy running by continuously innovating and creating sustainable digital solutions. We work beyond global borders and push boundaries across all dimensions of logistics. You can leave your mark shaping the technology backbone of the biggest logistics company in the world. Our locations in Malaysia, Czech Republic, and India have earned the #GreatPlaceToWork certification, reflecting our commitment to exceptional employee experience.

Digitalization. Simply delivered.
At IT Services, we are passionate about Cloud Technologies and Information Security. Our SPCS Cloud Security, Compliance, and Resiliency team is continuously expanding. No matter your level of proficiency as a Principal Information Security Engineer, you can always grow within our diverse environment.

#DHL #DHLITServices #GreatPlace

Grow together
As part of the SPCS Cloud Security, Compliance, and Resiliency team, you will support posture management and workload protection for DHL's public cloud platforms (Azure, GCP, OCI, AWS, etc.) using various tools. Your responsibilities include identifying non-compliance security issues and working with stakeholders to address them according to requirements. Additionally, as threat landscapes evolve, defining and implementing new controls is essential at all times.

• Cloud Security Expertise: Extensive experience in securing cloud environments (Azure, AWS, GCP), with strong knowledge of cloud-native security services, IAM, network security, and encryption. Familiarity with securing IaaS, PaaS, and SaaS deployments and applying security best practices in cloud architecture.
• Risk Management, Compliance, and Threat Profiling: Deep understanding of security risk assessments, regulatory compliance (ISO 27001, SOC 2, GDPR), and cloud security frameworks (CIS, NIST). Skilled in risk identification, assessment, mitigation, threat modeling, and profiling.
• Automation and DevSecOps Integration: Proficient in embedding security into DevOps pipelines using Infrastructure as Code (IaC) and CI/CD tools. Experience with automation tools for security monitoring, threat detection, and vulnerability management.
• Architectural Design, Security Governance, and Continuous Monitoring: Strong capability in designing secure, scalable cloud architectures, defining security policies, and implementing controls. Experience with continuous monitoring and incident response.
• Having Microsoft Azure and GCP certifications is highly recommended.

What we are looking for:

Experience with Cloud Security Posture Management and Vulnerability Management solutions is a plus. Good knowledge of Cloud Security (Azure, GCP, OCI), Posture Management, and alert reporting is essential.

You should have a good understanding of scripting languages such as Python, PowerShell, and CLI tools. Ability to work independently, prioritize tasks, and collaborate across regions in a multinational environment. Fluency in spoken and written English is important.

Benefits include:

• Hybrid work arrangements
• Unlimited outpatient and inpatient medical coverage
• Flexible benefit plans for you and your family
• Choice of public holidays, including weekends and ad-hoc days off
• Modern offices with free parking

DHL is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other protected characteristic.

This job is for a Presales Network Engineer who designs and showcases tech solutions like networking and security. You might like this job because you get to collaborate with sales, solve real problems, and work with the latest technology.

We’re seeking a technically versatile Presales Engineer who thrives in a fast-paced environment and can design, demo, and defend end-to-end solutions spanning Cisco networking, cybersecurity, SD-WAN, and cloud infrastructure. You’ll partner with our sales team to architect winning proposals, lead Proof of Concepts (PoCs), and act as the bridge between customer challenges and cutting-edge tech.

• Solution Design & Technical Sales Support
• Collaborate with sales to understand customer needs and propose customized solutions (Cisco-led but vendor-agnostic when needed).
• Networking: Cisco LAN/WAN, SD-WAN (Viptela, Fortinet, Velocloud), Data Center (ACI, Nexus).
• Develop BoMs, High-Level Designs (HLDs), and SOWs.
• Conduct hands-on demos, PoCs, and workshops (e.g., Cisco DNAC, SD-WAN controllers, security tools).
• Articulate why our solutions outperform competitors (Juniper, Fortinet, Huawei).
• Stay ahead of trends (e.g., AI-driven networking, cloud-native security) and quickly master new technologies.
• Work with vendors (Cisco, Palo Alto, and other principals) to leverage latest product updates.
• RFP/RFI Responses & Technical Documentation
• Lead technical sections of proposals, ensuring clarity and compliance.

• Presentations
• Storytelling

Medical card for our permanent staff.

We have a coffee machine and snacks for staff.

Established in 2014, Dynamic Link Solutions specialises in helping businesses achieve digital transformation through innovative solutions. We started off as a service provider that focuses on solution implementation and providing support and maintenance to critical network infrastructure. Over the years, we have progressed to offering a complete range of ICT Infrastructure services.

About the role

• As a Senior Security Engineer SecOps, you’ll report directly to the Director of Security Operations. Your responsibilities will include coordinating incident response, improving security configurations and integrations of the SOC toolset, managing vulnerabilities, analyzing threat intelligence, performing threat hunting, developing security monitoring use-cases and IR procedures, conducting resilience exercises in collaboration with cybersecurity partners and other teams. Working closely with professionals across Digital and Security teams, you’ll leverage cutting-edge tools to enhance our Barry Callebaut’s cyber resilience. If you thrive in a dynamic environment and are passionate about cybersecurity, seize this opportunity to make a tangible impact!

Key responsibilities include

• Proactively analyze security alerts and identify vulnerabilities across the entire IT/OT and cloud landscape, working closely with the 24/7 SOC to implement effective mitigation strategies.
• Collaborate with cross-functional teams to enforce security controls and ensure adherence to best practices.
• Develop security monitoring use-cases and automations.
• Perform threat hunting and threat intelligence analysis.
• Develop and improve IR security procedures.
• Conduct in-depth root cause analyses, extract key learnings, and drive remediation efforts to prevent recurrence.
• Optimize and maintain security tools including vulnerability management, posture management, SIEM, and XDR/EDR solutions.
• Actively participate in security awareness initiatives to foster a culture of security within the organization.
• Spearhead regular threat and vulnerability assessments, as well as red and purple team exercises to enhance security posture.
• Provide essential operational support, including incident response planning and execution, post-incident analysis, and business continuity management.
• Identify process and system improvement opportunities, gathering requirements to enhance IT security practices.
• Support the implementation of robust security policies and systems to safeguard the IT environment.

About you

• Degree in IT/technology, data, business administration, or infrastructure security in a comparable field.
• CISSP, CISM, GIAC, CompTIA Security+, or other relevant security-related certifications are appreciated, but not required.
• Proficient in English.
• Advanced knowledge of infrastructure security layered security approaches including network security measures, endpoint security, and cloud security with a minimum of 5 years of relevant working experience.
• Experience in security operations, analyzing security threats / security alerts and responding to security incidents.
• Knowledge of threat hunting and experience in analyzing threat intelligence data sources.
• Experience in performing security incident analysis and improving the configurations for the following types of technologies:
  • SIEM (eg. Microsoft Sentinel knowledge is a plus),
  • XDR (eg. Microsoft Defender for Endpoint knowledge is a plus),
  • SOAR,
  • Vulnerability Management.
• Experience in implementing SOC security solutions and configuration enhancement (SIEM/EDR/Vulnerability Management/SOAR etc.) is a plus.
• Good knowledge of vulnerability testing, incident management, or business continuity management is a plus.
• Scripting or programming experience (Python, PowerShell) is beneficial.
• Knowledge of security orchestration, automation and response (SOAR) to optimize the day-to-day activities.
• Independent and self-driven personality, taking responsibility and owning tasks.
• The ability to bring people together and mobilize individuals to pursue a joint agenda.
• Strong analytical and problem-solving skills.
• Ability to interpret business requirements and draw insights.
• Excellent written and verbal communication skills, ability to present to diverse audiences.
• Willingness to learn and try new technologies and topics.

Location: Malaysia (Kuala Lumpur), Hong Kong, Singapore

Join Fortinet, a cybersecurity pioneer with over two decades of excellence, as we continue to shape the future of cybersecurity and redefine the intersection of networking and security. At Fortinet, our mission is to safeguard people, devices, and data everywhere. We are currently seeking a dynamic Lead Consultant (FortiGuard Incident Response) to contribute to the success of our rapidly growing business.

You will work directly with members of a world-class incident response and forensics team. Our team is comprised of individuals with strong knowledge in malware hunting and analysis, reverse engineering, multiple scripting languages, forensics and threat actors TTPs.

• Lead IR engagements and mentoring/training junior analysis.
• Continue to focus on process improvement for the customer-facing incident response services.
• Conduct host-based analysis and forensic functions on Windows, Linux, and Mac OS X systems.
• Review firewall, web, database, and other log sources to identify evidence and artifacts of malicious and compromised activity.
• Leverage our FortiEDR Platform to conduct investigations to rapidly detect and analyze security threats.
• Perform basic reverse engineering of threat actor’s malicious tools.
• Develop complete and informative reports and presentations for both executive and technical audience.
• Availability during nights/weekends as needed for IR engagements.
• Perform memory forensics and file analysis as needed.
• Monitor underground forums, our FortiGuard Threat Labs, along with other open-source intelligence outlets to maintain proficiency in latest actor tactics and techniques.

An insightful and influential collaborator to join our team. We encourage you to apply for this position if you have the following qualities:

• Experience with at least one scripting language: Shell, Ruby, Perl, Python, etc.
• Ability to data mine using YARA, RegEx or other techniques to identify new threats.
• Experience with EnCase, FTK, X-Ways, SIFT, Splunk, Redline, Volatility, WireShark, TCPDump, and open source forensic tools a plus.
• Experience with malware analysis tools such as IDA Pro, OllyDbg, Immunity Debugger.
• Hands-on experience dealing with APT campaigns, attack Tactics, Techniques and Procedures (TTPs), memory injection techniques, static and dynamic malware analysis and malware persistence mechanism.
• Strong knowledge of operating system internals and endpoint security experience.
• Able to communicate with both technical and executive personnel.
• Static and dynamic malware and log analysis.
• Excellent written and verbal communication skills a must.
• Reading and writing skills of non-English languages such as Chinese and Russian a plus.
• Analysis of Linux and MAC binary files and the understanding of MAC internals is a plus but not required.
• Highly motivated, self-driven and able to work both independently and within a team.
• Able to work under pressure in time-critical situations and occasional nights and weekends work.
• A good understanding of Active Directory a plus.
• Bachelor’s Degree in Computer Engineering, Computer Science or related field.
• Or 10+ years’ experience with incident response and or Forensics.

At Fortinet, we embrace diversity and inclusivity. We encourage applications from diverse backgrounds and identities. Explore our welcoming work environment designed for a rewarding career journey with an attractive Total Rewards package to support you with your overall health and financial well-being. Join us in bringing solutions that make a meaningful and lasting impact to our 660,000+ customers around the globe.

We will only notify shortlisted candidates.

• Implement and maintain website security measures to protect against cyber threats.
• Conduct penetration testing and vulnerability assessments to identify and mitigate security risks.
• Monitor and respond to cybersecurity incidents promptly.
• Develop and enforce security policies and procedures to safeguard sensitive data.
• Collaborate with IT teams to implement secure coding practices and infrastructure protection.

Requirements:

• Bachelor's degree in Computer Science, Information Technology, or related field.
• Proven experience in website security, cybersecurity, or information security roles.
• Familiarity with hacking techniques, penetration testing tools, and security best practices.
• Strong problem-solving skills and the ability to analyze complex security issues.
• Knowledge of industry standards and regulations related to cybersecurity.
• Excellent communication skills and the ability to work effectively in a fast-paced environment.

Now Hiring: Senior Information Security Engineer
Employment Type: Full-timeExperience Required: Minimum 3 Years | Certification: CISSP Mandatory

We are seeking a proactive and technically strong Senior Information Security Engineer to design and implement enterprise-wide security infrastructure. The ideal candidate will have solid hands-on experience, strong technical implementation skills, and a passion for safeguarding critical business systems.

Design and implement robust, scalable, and secure IT infrastructure.

Embed security into system and software designs across platforms.

Evaluate and recommend appropriate security tools and solutions.

Automate security tasks for efficiency and consistency.

Implement and manage threat intelligence tools and monitoring systems.

Lead incident response and conduct root cause analysis.

Continuously monitor for vulnerabilities and intrusions.

Perform vulnerability assessments and penetration testing.

Partner with development and operations teams to remediate findings.

Enhance patch management practices to reduce risk exposure.

Mentor junior security engineers and analysts.

Support and lead internal security training and awareness campaigns.

Advise business units on security best practices and compliance measures.

Minimum 3 years experience as an IT Security Engineer.

Hands-on experience with security technical solution implementation (mandatory).

CISSP Certification is mandatory.

Experience working with security vendors and industry-standard tools.

Proficient knowledge in:

Network, application, and database security

Security baselines and policy implementation

1 month ago Be among the first 25 applicants

(#wearehiring) (If you are not viewing this at our career site, please go to tinyurl.com/wcgcareers for a better application experience)

WhiteCoat ( is a regional digital healthcare provider founded and headquartered in Singapore, offering on-demand telemedicine services and other services through innovation and data-driven technology. WhiteCoat’s core services include primary care tele-consultations, chronic disease management, health screening services and home-based medical services. As a digital healthcare leader, WhiteCoat partners global insurance giant, AIA, large conglomerates and other government, and financial organisations to spearhead the way for wider access to affordable healthcare across the Southeast Asia region.

WhiteCoat Holdings Pte. Ltd. is seeking a skilled and passionate Information Security & DevOps Manager to join our growing team in Kuala Lumpur. This is an exciting opportunity to contribute to the development and maintenance of our digital healthcare solutions. As an Information Security & DevOps Manager , you will Lead WhiteCoat’s information security and DevOps initiatives to maintain our infosecurity posture, ensure partner compliance (TPSA, HIPAA), and support secure, reliable technology operations.

Key Responsibilities:

Information Security (60%)

• Maintain and enhance ISMS aligned with ISO 27001:2022
• Lead risk assessments, vulnerability management, and patch management
• Develop and maintain security policies and audit documentation
• Oversee third-party/vendor security assessments
• Respond to incidents (e.g. SMS bot attacks, data exposures)
  
  
  

• Manage AWS configurations, IAM, encryption, backups
• Implement CI/CD pipelines and infrastructure as code (IaC)
• Handle deployment automation, monitoring, and alerting
• Support service uptime (e.g. CMS outages), performance, and availability
  
  
  

• Minimum 5 years in IS or DevOps roles
• Strong experience with ISO 27001, AWS, encryption, CI/CD, and pentesting
• Familiarity with HIPAA, GDPR, and regional data protection laws
• Technical troubleshooting and documentation skills
• Proven experience managing cross-functional security and infra scope
  
  
  

• Seniority level Not Applicable

• Employment type Full-time

• Job function Health Care Provider
• Industries Hospitals and Health Care

Referrals increase your chances of interviewing at WhiteCoat Global by 2x

Continue with Google Continue with Google

Continue with Google Continue with Google

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia MYR216,000 - MYR300,000 1 day ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 month ago

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 day ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 6 days ago

Petaling Jaya, Selangor, Malaysia 1 day ago

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 5 days ago

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 4 weeks ago

Bukit Jalil, Federal Territory of Kuala Lumpur, Malaysia 1 day ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 4 weeks ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 20 hours ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 5 days ago

Petaling Jaya, Selangor, Malaysia 6 days ago

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 4 weeks ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia MYR72,000 - MYR150,000 1 week ago

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 months ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.