524 Military & Public Safety jobs in Malaysia

Senior Manager, Group Information Security Engineering (Cloud)

Join to apply for the Senior Manager, Group Information Security Engineering (Cloud) role at New Era Technology.

Overview

New Era Technology is looking for an experienced Senior Manager, Group Information Security Engineering (Cloud) to be deployed at our client in Malaysia (KL office). Work in a team-oriented environment that emphasizes development, collaboration, and delivery of secure cloud solutions.

Key Responsibilities

• Define and partner with stakeholders in a multi-disciplined team to design and implement cloud security solutions across various projects.
• Lead stakeholder and vendor engagements; provide subject matter expertise to Business Units and engagement teams.
• Develop relationships with senior executives across engagement teams.
• Deliver large-scale projects; manage and mentor junior resources.
• Oversee infrastructure and microservices security architecture (container, data, network, and operational security).
• Review infrastructure and microservices designs against security standards (e.g., PCI DSS, CSA Containers) and identify architecture requirements.
• Ensure final designs address identified threats and countermeasures during threat modelling.

Key Accountabilities

• Engineering and management of endpoint protection solutions (e.g., Microsoft Defender for Endpoint, CrowdStrike Falcon).
• Develop and enforce endpoint hardening standards; maintain secure configurations throughout asset lifecycles.
• Align endpoint security initiatives with the broader Information Security roadmap.
• Automate security operations using scripting (PowerShell, Python, KQL).
• Maintain configuration scanning policies to ensure adherence to security baselines (e.g., CIS Benchmarks).
• Collaborate with cross-functional teams to deliver endpoint security programs on time and within budget.
• Manage device control policies; ensure regulatory and internal standard compliance; support integration via platforms like Microsoft Intune.
• Drive delivery of network security projects aligned with Group Information Security strategies and business objectives.
• Promote IT Security understanding across IT and Business Units and collaborate on security initiatives.
• Provide technical leadership and mentorship to junior engineers and project teams; evaluate emerging technologies for security improvements.

Qualification & Experience

• Minimum 8 years in IT Security Management, preferably in Financial Services.
• Proven track record delivering endpoint security projects and enterprise-grade solutions.
• Regional experience in IT Security Technical or Engineering roles.
• Strong analytical and problem-solving abilities with a proactive, collaborative mindset.
• Degree in Information Technology or equivalent.
• Experience in Identify, Protect, Detect, Respond or Recover areas.
• Understanding of cloud environments and how networks operate in the cloud.

Preferred Candidate

• Nationality: Open for Malaysians only
• Availability: able to join within 30-45 days

How to Apply

Send your updated resume to with the subject line: "Senior Manager, Group Information Security Engineering (Cloud) - Malaysia"

About Us

New Era Technology is a global IT services provider with a footprint in 80+ countries, delivering digital transformation, consulting, and staffing services. Privacy policy: View our Privacy Policy at

#J-18808-Ljbffr

Overview

Join to apply for the Risk Manager, Third Party Security Risk role at Standard Chartered .

Get AI-powered advice on this job and more exclusive features.

Job Summary

We are looking for a passionate Third-Party Cybersecurity Risk Assessor to join our dynamic cybersecurity team. In this critical role, you will assess and manage the cybersecurity risks posed by third-party vendors, suppliers, and service providers, ensuring alignment with our organization's information and cyber security standards. You'll play a pivotal part in safeguarding sensitive data, protecting infrastructure, and enabling secure digital ecosystems in an ever-evolving threat landscape.

If you thrive in a fast-paced environment, are excited by emerging technologies and have a keen eye for risk and resilience, this opportunity is for you.

About Our Technology & Operations Team

Our Technology & Operations (T&O) team is the powerhouse for the Bank. We aim to go further, faster, to ensure we're agile and ready for tomorrow, today. Our diverse network enables us to innovate and build banking solutions that support communities to prosper. We're a place where talented people are encouraged to grow, learn, and thrive, to drive their own career journeys, to reach their full potential. When you work with us, you’re protecting the reputation and legacy of a 170-year organisation and building on it. We’re driven by progress and continuously evolving to ensure we’re agile and ready for tomorrow, today.

Key Responsibilities

• Strategy
  • The main responsibilities will be to support the Head of Third Party Security Risk in delivering the third party security risk program within the Bank.
• Business
  • Perform cybersecurity risk assessments on third-party vendors, suppliers, and service providers.
  • Lead due diligence assessments, security reviews, and continuous vendor risk monitoring.
  • Evaluate vendor responses to security questionnaires, attestations, and evidence artifacts.
  • Assess vendors' cybersecurity posture against standards like ISO 27001, NIST, GDPR, SOC 2, PCI-DSS, and best practices.
  • Analyse third-party cloud security controls, data protection measures, and threat management capabilities.
  • Document findings, provide risk ratings, remediation recommendations, and track actions to closure.
  • Partner with CISO, procurement, and business teams on vendor onboarding and contract renewals.
  • Continuously evolve and optimize third-party risk assessment methodologies and frameworks.
  • Leverage AI/ML tools and data analytics to enhance risk detection and predictive assessments.
  • Stay informed on the latest cybersecurity trends, threat intelligence, and regulatory developments.
  • Support audits, regulatory reviews, and compliance assessments related to third-party risk.
  • Communicate risk insights and reporting to executive leadership and stakeholders.
• Processes
  • Diligently provide weekly and ad hoc reporting on status of reviews.
  • Support any training and awareness initiatives relating to third party security risk.
  • Support and assist in third party program improvement initiatives.
  • Assist in the development of new/amended processes, innovative ways of working and reviewing risk and control assessments.
  • Assist in the forward planning and prioritisation of vendor assessments or requests from business stakeholders, and resource allocations.
• People & Talent
  • Manage a register of third party security risks and ensure that deficiencies are mitigated.
  • Support any training and awareness initiatives relating to third party security risk.
• Risk Management
  • Maintain a register of third party security risks and ensure that deficiencies are mitigated.
  • Support the Head of TPSR to ensure compliance with relevant regulations covering third party security risk.
  • Monitor and report on third party security risk compliance to stakeholders.
  • Remain current on industry trends and regulatory requirements related to third party information security.
• Governance
  • Diligently provide weekly and ad hoc reporting on status of reviews.
• Regulatory & Business Conduct
  • Display exemplary conduct and live by the Group’s Values and Code of Conduct.
  • Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
  • Exercise authorities delegated by the Board of Directors and act in accordance with Articles of Association (or equivalent).
• Key stakeholders
  • Supply Chain Management
  • Business Functions

Skills & Experience

• Bachelor degree or above from an accredited college/university in an appropriate field.
• Ideally 3 years of experience in information security / IT auditing, with Big 4 and/or Banking & Financial services experience.
• Experience in third party audits is a plus, but understanding of auditing standards, compliance, risk assessment and internal control frameworks is a requirement.
• Familiarity with working in a multinational or cross-cultural setting.
• Excellent written and interpersonal skills.
• Strong time management skills.
• Ability to draft reports that clearly communicate observations and risks.
• Strong stakeholder engagement skills, and ability to interact at all levels across an organisation.
• Strong audit project organisation and management skills.
• Ability to multitask and ensure that all key priorities are delivered as per agreed timelines.
• Preferred certifications (e.g. CISSP, CCSP, CISA).
• Knowledge of security frameworks (e.g. COBIT, ISF, COSO), standards (e.g. ISO, NIST, CIS), information security principles, security architecture and regulatory requirements will be a plus.
• Competency with Microsoft Office Suite (Word, PowerPoint, Excel, Visio, SharePoint).

About Standard Chartered

We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us. Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.

What We Offer

In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

• Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
• Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
• Flexible working options based around home and office locations, with flexible working patterns.
• Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits.
• A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
• Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.

Recruitment Assessments

Some of our roles use assessments to help us understand how suitable you are for the role you've applied to. If you are invited to take an assessment, this is great news. It means your application has progressed to an important stage of our recruitment process.

Visit our careers website

Note: This is a refined, self-contained description and does not include disallowed formatting or extraneous content from the original version.

#J-18808-Ljbffr

**About FWD Group**FWD Group (1828.HK) is a pan-Asian life and health insurance business that serves approximately 34 million customers across 10 markets, including BRI Life in Indonesia. FWD’s customer-led and tech-enabled approach aims to deliver innovative propositions, easy-to-understand products and a simpler insurance experience. Established in 2013, the company operates in some of the fastest-growing insurance markets in the world with a vision of changing the way people feel about insurance. FWD Group is listed on the main board of the Hong Kong Stock Exchange under the stock code 1828.For more information, please visitFWD Technology and Innovation Malaysia Sdn. Bhd., known as FWD TIM, was established in late 2019. Strategically located in Kuala Lumpur, FWD TIM serves as a pivotal shared service location within FWD Group, providing services to multiple markets across the Group. FWD TIM houses a diverse and talented workforce focused on essential business and technology services such as information security, cloud operations, IT solutions delivery, digital and data, actuarial, finance, investments, and customer service, among many others. FWD TIM is dedicated to drive and deliver operational excellence and efficiency, foster innovation and ensure regulatory compliance across all business functions as well as maintain a competitive edge in the market.PURPOSEThis role serves as a trusted security advisor to business unit leadership, bridging the gap between the One Information Security (OneIS) team and business unit operations, and ensuring alignment of security initiatives with both OneIS strategy and business unit goals.Key responsibilities include risk identification and mitigation, translating complex security concepts into business-relevant language, promoting security awareness, and supporting audit and compliance efforts.The role also involves monitoring and managing issues, leading risk assessments, advising on technology business risks, and ensuring adherence to internal policies and regulatory guidelines.Additionally, the manager will assist with defining and reporting Key Risk Indicators (KRIs) and Key Performance Indicators (KPIs), manage technology and security threats, and support audits and regulatory reviews.KEY ACCOUNTABILITIES* **Operational Liaison**: Bridge the gap between the One Information Security (OneIS) team and business unit operations, ensuring that security policies, standards, and processes are clearly communicated and effectively adopted.* **Strategic Alignment:** Collaborate with business stakeholders to ensure that security initiatives are aligned with both the OneIS strategy and the specific goals of the business unit.* **Risk Identification and Mitigation:** Continuously assess and monitor risks unique to the business unit, including cybersecurity threats and compliance obligations. Support the development and execution of tailored mitigation strategies.* **Security Awareness and Communication**: Translate complex security concepts into business-relevant language. Promote a culture of security through targeted awareness efforts and training programs.* **Audit and Compliance Support**: Assist in preparing for and responding to audits and regulatory assessments. Ensure the business unit adheres to applicable laws, regulations, and internal security policies.* **Monitor and Action Issues:** Track and manage issues and intake requests to ensure timely resolution.* **Risk Assessments:** Lead or contribute to business technology risk assessments, control gap assessments, and develop risk mitigation and remediation plans.* **Advisory Role:** Advise partners on Technology Business Risks and Information Security regulations, policies, standards, and incidents.* **Risk Monitoring:** Assess and monitor Business Technology Risk, including information security, cyber security, resilience, third-party management, project/operations/change management quality, architecture, data quality, and IT compliance.* **KRI and KPI Reporting**: Assist with the definition, monitoring, and reporting of Key Risk Indicators (KRIs) and Key Performance Indicators (KPIs).* **Policy Adherence**: Adhere to internal policies and procedures, technology control standards, and applicable regulatory guidelines.* **Threat Management:** Ensure technology, processes, and governance are in place to monitor, detect, prevent, and react to both current and emerging technology and security threats to FWD.* **Risk Reporting**: Communicate timely on identified and ongoing technology risks, monitor key trends and ensure BU key stakeholders are up-to date.* **Audit Support:** Provide support and consulting for audits and regulatory reviews; help compose management responses and appropriate remediation activities.* Align security reviews to FWD One Information Security and overall IT Strategy needsKEY PERFORMANCE INDICATORS* Risk Reduction rate: Percentage decrease in identified of security risks over time.* Ensuring compliance to One Information Security standards.* Conduct reviews and advise business on mitigation steps* The timely remediation of key risks identified without undue delay to the delivery of business objectives.* Supporting in uplifting Vulnerability management program* Identify opportunities to automate security initiativesEXTERNAL & INTERNAL CONTACTS* Group CISO* Office of the CISO* Business Units IT Security Teams* Group and Business Units Chief of Technology and Operations* Business Units IT & Operations* Group and Business Units Internal Audit* External Auditors* Vendors and/or Service ProvidersQUALIFICATIONS / EXPERIENCE* University degree from Information Technology or equivalent discipline.* Minimum 7 years working experience in IT Security Management role, preferably in Financial Services.* Regional experience in IT Security Technical or Engineering roles.* Technical experience in Identify, Protect, Detect, Response or Recover areas.* Sufficient experience and Subject Matter Expert level of knowledge in fields of Information Security & solid understanding of project teams’ needs. For instance, secure architecture design, risk assessment and remediation & general IT technologies.* Sound consulting capability including, clear and concise written and verbal communications, ability to manage senior stakeholders, and work on high profile projects with tight timelines, always present logical thinking and problem- solving capabilities even under pressures.KNOWLEDGE & TECHNICAL SKILLS* Must hold ISO 27001 certification* Must posses any of the following certification: CISSP|CISM|CISA* Good to have: CEH| Comptia* Excellent interpersonal and influential skills.* Good communication and presentation skills.* Collaborative, consultative and customer service focussed approach to delivery.* Problem solving and decision making skills; as the incumbent has to deal with a cross section of stakeholders
#J-18808-Ljbffr

**About FWD Group**FWD Group (1828.HK) is a pan-Asian life and health insurance business that serves approximately 34 million customers across 10 markets, including BRI Life in Indonesia. FWD’s customer-led and tech-enabled approach aims to deliver innovative propositions, easy-to-understand products and a simpler insurance experience. Established in 2013, the company operates in some of the fastest-growing insurance markets in the world with a vision of changing the way people feel about insurance. FWD Group is listed on the main board of the Hong Kong Stock Exchange under the stock code 1828.For more information, please visitFWD Technology and Innovation Malaysia Sdn. Bhd., known as FWD TIM, was established in late 2019. Strategically located in Kuala Lumpur, FWD TIM serves as a pivotal shared service location within FWD Group, providing services to multiple markets across the Group. FWD TIM houses a diverse and talented workforce focused on essential business and technology services such as information security, cloud operations, IT solutions delivery, digital and data, actuarial, finance, investments, and customer service, among many others. FWD TIM is dedicated to drive and deliver operational excellence and efficiency, foster innovation and ensure regulatory compliance across all business functions as well as maintain a competitive edge in the market.**PURPOSE*** Manage and drive end-to-end ISCOE Network Security Operations projects and operations for Group Office and all markets, in accordance with Group information security standards and requirements as well as FWD Group technology strategy, policies and procedures.* Act as the SME and primary technical contact and ensure timely and effective resolutions within SLA and the established processes and SOPs for Firewall technology operations and management.**KEY ACCOUNTABILITIES*** Develop and maintain deep technical and functional knowledge and be the SME for Firewall technologies, while supporting the ZTNA and emerging tools/services, as part of the new ISCOE Network Security Operations & other SecEng team.* Lead, coordinate and ensure the delivery of change implementation are carried out in accordance with the defined ITILv3 processes.* Function as the L3 Technical Engineer and primary escalation point for Firewall and ZTNA services to business units and internal teams within Group IT Security and Group Technology.* Lead, coordinate and manage planned change requests and implementation as well as coach ISCOE Network Security engineers in providing support on Incidents (P1/P2) and service requests.* Manage and coordinate potential incidents escalations, for investigation, along with the relevant internal or external stakeholders* Lead and manage the communication and coordination of the ISCOE Network Security incident response actions with business units and ensure smooth and proper closure of the Incident Response cases.* Contribute to the design & planning requirements on new initiatives and upgrades related to Firewall and ZTNA through close collaboration with vendors and internal teams within Group Security Engineering.* Contribute to build, review and handover BAU requirements including guidelines, baselines and SOPs for Group IT Security Operations, to manage the implemented IT Security solutions and controls.* Assist to research on process improvement for existing solutions and services by working closely with internal teams and vendors.* Work closely with Service Management, Security Governance, Security Operations, and Incident Response teams to deliver objectives.* Provide guidance and expertise to stakeholders and business units as and when needed with regards to ISCOE Network Security services, mainly on Firewall management.* Adopt a Cloud-first strategic mindset on deliverables.* Manage relationships and performance quality delivered by vendors.* Contribute to the review and implementation of key areas defined for improvement for Firewall and ZTNA management.* Contribute to the regular ISCOE Network Security Operations updates for management reporting.**KEY PERFORMANCE INDICATORS*** Ensure operations and management of services are delivered within agreed SLAs across FWD group and business units.* Support the ISCOE Network Security Lead and Head of Security Engineering in continuous uplift of deliverables.* Ensure deliverables across Business Units are carried out in alignment with FWD business objectives and mandated timelines.* Ensure deliverables are carried out in a cost-effective manner utilising available processes and resources (including people and technologies) aligned with the FWD business goals.* Provide continuous support and consultation with regards to deliverables across FWD Group and Business Units.* Conduct periodic review assessments on existing controls and processes related to deliverables.* Doing things right, creating synergies for the overall FWD goals and objectives, along with a people-first approach.**EXTERNAL & INTERNAL CONTACTS*** Senior Manager (Network Security) – Group Security Engineering* ISCOE Network Security Lead – Group Security Engineering* Head of Security Engineering* Group CISO* Group and Business Units Chief of Technology and Operations* Group and Business Units IT & Operations* Group and Business Units Internal Audit* External Auditors* Vendors and/or Service Providers**QUALIFICATIONS / EXPERIENCE*** Minimum 6 years working experience in IT Security Management role, preferably in Financial Services.* Bachelor’s Degree from Information Technology or any equivalent discipline.* Minimum 3 years of working experience with Firewall technology and products, especially Checkpoint and Palo Alto.* Reasonable experience on supporting firewall technologies such as Algosec, IPS/IDS* Good understanding on next-generation technologies such as ZTNA, FWaaS & WAF.* Certifications such as CISSP, or anything related to Cloud/ISCOE Network Security would be an added advantage.* Enterprise-level experience in managing IT Security processes and Engineering initiatives.* Sound understanding of the NIST framework and CIS Benchmarks.**KNOWLEDGE & TECHNICAL SKILLS*** Firewall Products: Checkpoint, Palo Alto, Cisco* Analyzer & Management Tools: Algosec, Skybox, Panorama, CPSM* ZTNA, WAF & Web Proxy: Palo Alto, F5, Zscaler* Familiar with Cloud technology providers such as Azure and AWS.* Certifications or official training on any of the above would be an added advantage.* Basic understanding on Automation/AI/Machine Learning to simplify operations would be an added advantage.* Excellent team player and fast learner with good leadership skills.* Good communication and presentation skills.
#J-18808-Ljbffr

Working within the Personnel Security Team in the RN Service Lead Command (SLC), this role involves initially assessing casework of service personnel as a first-line vetting decision maker. The position has no staff requirements and is not a Line Manager. You will make decisions in accordance with the Vetting Decision Framework (VDF) based on electronic referrals from the Case Management System (CMS) of the National Security Vetting Solution (NSVS).

Responsibilities:

1. Risk manage serving Naval Service personnel across all TLBs, identifying security concerns through ongoing personnel security measures in conjunction with the Chain of Command and United Kingdom Security Vetting (UKSV). Priority includes Special Employment Groups (SEG).
2. Provide personnel security advice and Subject Matter Expertise on Vetting and other personnel security matters within the NC TLB, in accordance with JSP 440 – Security Clearances and Vetting.
3. Assess UKSV recommendations to SO2 Vetting TL to withdraw, deny, or suspend security clearances for RN/RM & RFA personnel.
4. Evaluate security clearance referrals from UKSV requiring Service Lead Command (SLC) consideration and endorsement.
5. Prepare casework documentation related to 'withdrawal' of security clearances for submission to the Navy Vetting Appeal Panel (NVAP) or Security Vetting Appeal Panel (SVAP).

Additional Information:

This role offers remote working options, which can be discussed during the interview or with your future line manager if successful.

Please note, candidates will be redirected to the Civil Service Jobs website to submit their application. The closing date mentioned above is incorrect and cannot be amended; please check the Civil Service Jobs site for the accurate closing date and ensure timely application submission.

#J-18808-Ljbffr

Description

The Amazon Web Services Professional Services (ProServe) team is seeking a skilled Delivery Consultant to join our team at Amazon Web Services (AWS). In this role, you'll work closely with customers to design, implement, and manage AWS solutions that meet their technical requirements and business objectives. You'll be a key player in driving customer success through their cloud journey, providing technical expertise and best practices throughout the project lifecycle.

Possessing a deep understanding of AWS products and services, as a Delivery Consultant you will be proficient in architecting complex, scalable, and secure solutions tailored to meet the specific needs of each customer. You’ll work closely with stakeholders to gather requirements, assess current infrastructure, and propose effective migration strategies to AWS. As trusted advisors to our customers, providing guidance on industry trends, emerging technologies, and innovative solutions, you will be responsible for leading the implementation process, ensuring adherence to best practices, optimizing performance, and managing risks throughout the project.

The AWS Professional Services organization is a global team of experts that help customers realize their desired business outcomes when using the AWS Cloud. We work together with customer teams and the AWS Partner Network (APN) to execute enterprise cloud computing initiatives. Our team provides assistance through a collection of offerings which help customers achieve specific outcomes related to enterprise cloud adoption. We also deliver focused guidance through our global specialty practices, which cover a variety of solutions, technologies, and industries.

This role specialises in enabling security outcomes in the cloud and in upholding the high security bar our builders and customers adopt to enable security and compliance at scale.

Key job responsibilities

As an experienced technology professional, you will be responsible for:

1. Designing and implementing complex, scalable, and secure AWS solutions tailored to customer needs;

2. Providing technical guidance and troubleshooting support throughout project delivery;

3. Collaborating with stakeholders to gather requirements and propose effective migration strategies;

4. Acting as a trusted advisor to customers on industry trends and emerging technologies; and

5. Sharing knowledge within the organization through mentoring, training, and creating reusable artifacts.

A day in the life

Working with customers to understand their business challenges around security "in" the cloud and to help design / architect technical solutions to address those business needs.

Support Amazonians and customers across ASEAN region in ongoing projects as the field security SME to consult with and provide prescriptive guidance on standards of good practice around AWS's well-architected, secure and resilient design principles to ensure all customer deliverables and work products are secure by design and in practice.

Lead builders in innovation and build initiatives to deliver innovative solutions to address emerging business needs.

About the team

Diverse Experiences

AWS values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.

Why AWS?

Amazon Web Services (AWS) is the world’s most comprehensive and broadly adopted cloud platform. We pioneered cloud computing and never stopped innovating — that’s why customers from the most successful startups to Global 500 companies trust our robust suite of products and services to power their businesses.

Inclusive Team Culture

Here at AWS, it’s in our nature to learn and be curious. Our employee-led affinity groups foster a culture of inclusion that empower us to be proud of our differences. Ongoing events and learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences, inspire us to never stop embracing our uniqueness.

Mentorship & Career Growth

We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.

Work/Life Balance

We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve in the cloud.

Basic Qualifications

• 10+ years of technical specialist, design and architecture experience

• 7+ years of consulting, design and implementation of serverless distributed solutions experience

• 5+ years of cloud based solution (AWS or equivalent), system, network and operating system experience

• 7+ years of external or internal customer facing, complex and large scale project management experience

• Bachelor's degree

• Relevant cyber security accreditation including CISSP, CISA, CRISC, etc. and working knowledge of cyber security and technology risk management frameworks including NIST CSP, CIS Benchmarks, ISO27001, etc.

Preferred Qualifications

• 7+ years of IT platform implementation in a technical and analytical role experience

• 7+ years of scripting language experience

• AWS experience preferred, with proficiency in a wide range of AWS services (e.g., EC2, S3, RDS, Lambda, IAM, VPC, CloudFormation), AWS Professional level certifications (e.g., Solutions Architect Professional, DevOps Engineer Professional) preferred

Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.

#J-18808-Ljbffr

Manager, Information Security page is loadedManager, Information Security Apply locations ASIA > MYS > Kuala Lumpur > KL Office time type Full time posted on Posted 30+ Days Ago job requisition id R-

The Cyber Security Manager will support VF’s Global Cyber Security Team by ensuring that information security risks associated with complex business operations are within acceptable tolerances.

You will perform information security risk assessments, provide direction and guidance to stakeholders concerning the handling of security risks associated with assessment findings, assist with the design of appropriate risk mitigation strategies, and serve as an audit quality assurance gate for internal and external auditors while driving compliance and audit work related to data privacy.

How You Will Make a Difference

You will achieve this by:

• Collaborating with information technology and other business units to identify cybersecurity risks associated with current and planned projects.
• Performing assessments of external party information security controls to ensure they meet or exceed VF’s information security risk management requirements for the services to be provided.
• Determining information security risk profiles for various vendor and business partner services using questionnaires, relevant industry best practices and standards, and knowledge of VF policies.
• Recommending solutions to eliminate, reduce, or mitigate cybersecurity risk, and communicate said solutions to external parties and/or internal business stakeholders as appropriate.
• Providing direction and guidance as needed to internal project stakeholders concerning statutory, regulatory, and VF policy requirements.
• Reporting status of engagements to Global Cyber Security management, project managers, and other business stakeholders as appropriate.
• Assisting in enforcing information security policies, standards, and procedures. Review requests for exceptions to security policies and provide recommendations to management.
• Serving as a focal point for MLPS and provide advisory around MLPS and other APAC data privacy laws related controls and processes.
• Acting as focal point for Regional PCI-DSS assessments, vulnerability assessments and other security operations.
• Researching and advocate new technologies, architectures, and products that will support security requirements for the enterprise and its customers, business partners, and vendors.
• Performing other information security risk management tasks as assigned.

Skills for Success

Aformal education and subsequent University Bachelor or Master’s degree in information systems, computer science, or related field are preferred, but we are mostinterested in your total experience and professional achievements. That’s why:

• You rely on 5+ years of information security risk management, IT audit, and/or IT controls design and implementation experience.
• You possess a Certified Information Systems Security Professional (CISSP) certification, Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC) or similar credentials.
• You are familiar with industry best practises related to security and data privacy in Cloud environments.
• You have functional understanding of industry frameworks, regulations, legislation, and audit methodologies, including SOC 1, SOC 2, ISO 27001, SIG, NIST Cybersecurity Framework, Sarbanes-Oxley (SOX), PCI-DSS, MLPS and various other privacy laws.
• You are apt to broker complex discussions to achieve the proper balance between business needs and cybersecurity best practices.
• You possess the ability to influence others through persuasion to arrive at desired outcomes.
• You communicate effectively with a broad range of people and roles, including vendors, information technology professionals, and other business personnel.
• You desire to seize the initiative, operate proactively, and work in a highly independent manner.
• You are fluent in English and Mandarin, any other Asian languages are a plus.

R-

About Us

VF Corporation outfits consumers around the world with its diverse portfolio of iconic lifestyle brands, including Vans, The North Face, Timberland, and Dickies. Founded in 1899, VF is one of the world's largest apparel, footwear and accessories companies with socially and environmentally responsible operations spanning numerous geographies, product categories and distribution channels. VF is committed to delivering innovative products to consumers and creating long-term value for its customers and shareholders.

VF Vision Statement
VF is committed to creating an inclusive environment that welcomes and values the differences among all of our associates, customers, suppliers and the communities in which we live and conduct business. The continued success and growth of VF is enhanced through initiatives that promote inclusion throughout VF around the world.VF is an equal opportunity employer. VF provides equal employment and advancement opportunities to all qualified individuals. VF bases employment decisions on skills, qualifications, and abilities. To learn more, read our Equal Opportunity Employment Policy here .

VF is committed to meeting the diverse needs of people with disabilities in a timely manner that is consistent with the principles of independence, dignity, integration and equality of opportunity, and will do so by striving to identify, prevent and remove barriers to accessibility wherever possible as well as by meeting the accessibility requirements under the ADA, AODA, and other applicable state, local or provincial regulations.

VF is committed to digital accessibility, and to conforming to the Web Content Accessibility Guidelines (WCAG) 2.1, Level AA and complying with the ADA and AODA Standards for Accessible Design, and other applicable regulations.

If you need an accommodation or have any questions regarding this statement, please send your request to .

#J-18808-Ljbffr

WHAT YOU’LL CHAMPION: SOC Leadership & Strategy

• Lead day-to-day SOC operations, ensuring timely detection, analysis, and response to security threats.
• Mentor and develop SOC analysts, fostering a high-performance detection and response culture.
• Drive continuous improvement of SOC processes, playbooks, and threat detection coverage.

Detection Engineering & SIEM

• Own and enhance SIEM use cases, correlation rules, dashboards, and threat detection logic.
• Perform log analysis, threat hunting, and tuning of alerts to reduce false positives.
• Integrate new data sources into SIEM and EDR platforms to improve visibility.

Incident Response

• Lead major incident investigations, coordinating containment, eradication, and recovery efforts.
• Serve as an escalation point for complex security events and provide technical guidance to analysts.
• Collaborate with Legal, Risk, IT, and Communications teams during critical incidents.

Automation & Orchestration

• Design and implement SOAR workflows and automation scripts to accelerate incident handling.
• Identify opportunities for automation across detection, triage, and response activities.
• Maintain and optimize integrations between SOC tools, ticketing, and reporting platforms.

Threat Intelligence & Hunting

• Apply threat intel to improve detection coverage and proactively hunt for adversary activity.
• Stay updated on emerging threats, TTPs, and vulnerabilities to inform SOC defense strategy.
• Presentation to upper management on cybersecurity operations security metrics, trends, and incidents.

WHO YOU ARE:

• 10 years of experience in Cybersecurity with a deep understanding of cybersecurity technologies, including SIEM, SOAR, EDR, WAF, IAM, and network security.
• Bachelor's degree in computer science, information security, or a related field.
• Proven ability to lead and motivate teams, build strong relationships, and influence decision-making at all levels.
• Hands on experience when it comes to SIEM, Detection Engineering, and Incident Response.
• Strong analytical and problem-solving skills to identify and resolve complex security issues.
• Excellent written and verbal communication skills, including the ability to communicate technical concepts to non-technical audiences.
• Proven ability to handle high-pressure situations and make critical decisions under time constraints.
• (Optional) Relevant security certifications.

WHERE YOU’LL GO:

Dispatcher to captain, ramp agent to data analyst, brand executive to CEO - these are some Dare To Dream stories of our Allstars.

WHAT YOU’LL ENJOY:

• Physical Wellbeing: Key medical and insurance benefits, maternity expenses, flexible work arrangement, and health and fitness amenities.
• Emotional Wellbeing: Paid time off, wellness programmes, and childcare amenities.
• Financial Wellbeing: Resources relating to financial, personal skills and career growth programmes.
• Allstars Specials: Unlimited discounted flights, and exclusive discounts with partners.
• A unique Allstar culture like no other

OUR HIRING PROCESS:

• Application received
• Candidate screening
• Interview(s) and assessment(s)
• Background check and/or other assessments
• Offer and negotiation

#J-18808-Ljbffr

Overview

Trust & Safety New Associate - Malay Speaker

Accenture is a trusted, innovative, comprehensive, and experienced partner to leading platform companies. The Trust and Safety offering within Accenture Operations helps keep the internet safe and helps platform companies accelerate, scale, and improve their businesses.

Content moderators serve as an important line of defense by helping improve the quality and safety of online content while gaining hands-on job experience. You will continuously deliver value to our clients, while making a larger impact on society.

You will be responsible for analyzing and reviewing user profiles, audio, videos, and text-based content and/or investigating, escalating and/or resolving issues that are reported by users or flagged by the system.

Content moderation is meaningful work that may be challenging at times. In the context of this role, individuals may directly or inadvertently be exposed to potentially objectionable and sensitive content and will need strong resilience and coping skills. We care for the health and well-being of our people and provide the support and resources needed to execute the responsibilities of their roles. Active participation in Accenture’s well-being support program, designed specifically for the Trust & Safety community, provides valuable skills to promote individual and collective well-being.

Due to the nature of the role, the user may be frequently exposed to flashing lights or contrasting light and dark patterns.

Role Details

• Organize, categorize, and publish content and information using specific tools and channels.
• Review, classify and/or eliminate highly sensitive content.
• Understand and remain updated on changing client policies and guidelines.
• Investigate, resolve, and relay complex content issues to the broader Trust and Safety team within agreed-upon turnaround times and standards of quality.
• Serve as an advocate for the user community.
• Engage in conversation around socially sensitive topics with the purpose of keeping our communities safe.
• Participate in process improvement initiatives that improve quality and efficiency of work.
• Participate in continuous training programs and workgroup discussions for optimal development in the role.

Basic Qualifications/Skills Needed

• Sound coping, emotional resilience, and stress-management skills
• Excellent comprehension, communication, and Malay language skills
• Ability to work well on a team and individually
• Ability to work differing work rotations/shifts and non-standard work hours
• Ability to perform duties objectively, devoid of inherent biases or personal beliefs, in the best interest of client policies
• Strong attention to detail
• Comfortable synthesizing and analyzing information from multiple streams
• Strong critical thinking and decision-making skills
• Deep familiarity and passion for the internet, internet platforms, and internet culture
• High affinity and cultural awareness of political and social situations regarding the relevant market and region that will be supported
• Flexible in meeting changing business needs in a fast-paced environment
• Commitment to quality, efficiency, and effectiveness
• Previous business process outsourcing, customer service, or content moderation experience is a plus.

Seniority level

• Entry level

Employment type

• Full-time

Job function

• Project Management and Management

Industries

• Business Consulting and Services

#J-18808-Ljbffr