What Jobs are available for Security Specialist in Malaysia?

**AVEVA is a global leader in industrial software. Our cutting-edge solutions are used by thousands of enterprises to deliver the essentials of life - such as energy, infrastructure, chemicals and minerals - safely, efficiently and more sustainably.**
**We're the first software business in the world to have our sustainability targets validated by the SBTi, and we've been recognized for the transparency and ambition of our commitment to diversity, equity, and inclusion. We've also recently been named as one of the world's most innovative companies.**
**If you're a curious and collaborative person who wants to make a big impact through technology, then we want to hear from you! Find out more at AVEVA Careers ( .**
**For more information about our privacy policy and how to manage cookies, visit our** **Privacy Policy ( **.**
**Job Title:** Security Engagement Specialist
**Location:** Kuala Lumpur, MY
**Employment Type:** Full time, Regular, Hybrid work arrangement
**The job**
Supports the execution of AVEVA's cybersecurity awareness and engagement initiatives across the Asia-Pacific region. Works directly with the Manager of Security Engagement, APAC to deliver localized campaigns, coordinate logistics for training and events, and ensure clear, culturally aligned communication with employees. Acts as the first line of regional execution, helping translate global program materials into practical, audience-ready assets for APAC teams.
**Key responsibilities**
+ Support localization of global awareness campaigns into APAC context
+ Coordinate logistics for in-region events, trainings, and town halls
+ Draft, edit, and distribute communications to employees in alignment with cultural norms
+ Collect feedback and engagement metrics to report back to the Manager and global team
+ Act as a point of contact for regional employees with awareness questions or access issues
+ Skills: Cross-cultural communication, project coordination, event support, editing, relationship-building, responsiveness
**Essential requirements**
+ 2-4 years of experience in communications, learning, HR, or cybersecurity awareness support
+ Familiarity with APAC cultures and ability to adapt content for local audiences
+ Strong organizational and coordination skills with attention to detail
+ Comfort facilitating small training sessions or town halls
+ Experience with basic design, communications, or content editing a plus
+ Fluency in English required; additional APAC languages preferred
**Digital Security at AVEVA**
Our Digital Security team is responsible for protecting AVEVA's digital assets and keeping the company's data and IP secure. We're also playing a critical role in AVEVA's move to the cloud.
As cyber threats grow and more and more data moves into the cloud, the importance of our role is only going to grow. If you're a collaborative problem solver that's passionate about cybersecurity, you'll find fulfilment and opportunity in our team.
Find out more: requires all successful applicants to undergo and pass a comprehensive background check before they start employment. Background checks will be conducted in accordance with local laws and may, subject to those laws, include proof of educational attainment, employment history verification, proof of work authorization, criminal records, identity verification, credit check. Certain positions dealing with sensitive and/or third party personal data may involve additional background check criteria.**
**AVEVA is an Equal Opportunity Employer. We are committed to being an exemplary employer with an inclusive culture, developing a workplace environment where all our employees are treated with dignity and respect. We value diversity and the expertise that people from different backgrounds bring to our business.**
**Come and join AVEVA to create the transformative technology that enables our customers to engineer a better world.**
Empowering you with pioneering tech
AVEVA is a global leader in industrial software. Our cutting-edge solutions are used by thousands of enterprises to deliver the essentials of life - such as energy, infrastructure, chemicals and minerals - safely, efficiently and more sustainably.
We're the first software business in the world to have our sustainability targets validated by the SBTi, and we've been recognized for the transparency and ambition of our commitment to diversity, equity, and inclusion. We've also recently been named as one of the world's most innovative companies.
If you're a curious and collaborative person who wants to make a big impact through technology, then we want to hear from you! Find out more at AVEVA Careers ( .
For more information about our privacy policy and how to manage cookies, visit our Privacy Policy ( .

At Roche you can show up as yourself, embraced for the unique qualities you bring. Our culture encourages personal expression, open dialogue, and genuine connections, where you are valued, accepted and respected for who you are, allowing you to thrive both personally and professionally. This is how we aim to prevent, stop and cure diseases and ensure everyone has access to healthcare today and for generations to come. Join Roche, where every voice matters.
**The Position**
Group Safety, Security, Health and Environment (SHE) at Roche is a people-focused, expert-driven organization that supports global operations by enabling patient outcomes without harming the planet. Operating through a role-based matrix of expert Chapters and outcome-driven Networks, Group SHE fosters collaboration and innovation to deliver sustainable, impactful solutions for both the business and the wider community.
**The Opportunity**
As a Senior Security Operations Specialist within Group SHE at Roche, you will play a critical role in implementing global strategies related to security, emergency management, business continuity, and product crime across your assigned region. Operating in a 24/7 "follow-the-sun" model, you will provide subject matter expertise to strengthen the organization's resilience and ensure preparedness for any operational disruptions.
+ Maintaining and implementing regional risk mitigation, preparedness, and recovery plans aligned with Group SHE standards.
+ Assessing and connecting multiple data sources to link incidents, identify emerging threats, and analyze evolving trends.
+ Acting as a key liaison between global teams and local stakeholders to integrate security, emergency management, business continuity, and product crime into strategic planning and operations.
+ Leading swift and coordinated responses to regional emergency, business continuity, and security incidents within a 24/7 follow-the-sun model.
+ Preparingand delivering detailed reports on regional security risks, incidents, and mitigation actions to Group SHE and stakeholders.
+ Conducting and contributing to post-incident reviews to provide insights and recommendations for continuous improvement.
+ Supporting the development and delivery of training programs to build local team capabilities on security, emergency management, business continuity, and product crime.
**Who you are:**
+ Holding a Master's degree or equivalent in a relevant field is preferred, with additional training in security, risk management, or emergency services considered a strong advantage
+ 7 + years of experience in global security management, crisis response, or related fields such as military, law enforcement, or enterprise resilience is preferred
+ Certified or experienced in professional programs such as CPP, PSP, or regional equivalents in security, business continuity, or investigations are highly desirable
+ Demonstrating a successful track record in leading security and resilience programs across large multinational organizations
+ Skilled at influencing without authority and collaborating effectively across global, cross-functional, and multicultural teams
+ Proactive, adaptable, and calm under pressure, with balance of strategic thinking and hands-on execution in high-stakes, 24/7 operational environments
+ Fluent in English with additional language skills as an advantage
In exchange we provide you with:
+ Development opportunities: Roche is rich in learning resources. We provide constant development opportunities, free language courses & trainings, the possibility of international assignments, internal position changes and the chance to shape your own career.
+ Excellent benefits & flexibility: competitive salary and cafeteria package, language allowance (if the position requires extra language), annual bonus, Private Medical Services, Employee Assistance Program, mentoring opportunity, buddy program, team buildings, holiday party.
+ A global inclusive community, where we learn from each other. At Roche, we cooperate, debate, make decisions, celebrate successes and have fun as a team. Our leadership is very focused on people, creating a strong, inclusive culture, so you always have the chance to share your opinion.
_Please read the Data Privacy Notice for further information about how we handle your personal data related to the recruitment process:_ _ we are**
A healthier future drives us to innovate. Together, more than 100'000 employees across the globe are dedicated to advance science, ensuring everyone has access to healthcare today and for generations to come. Our efforts result in more than 26 million people treated with our medicines and over 30 billion tests conducted using our Diagnostics products. We empower each other to explore new possibilities, foster creativity, and keep our ambitions high, so we can deliver life-changing healthcare solutions that make a global impact.
Let's build a healthier future, together.
**Roche is an Equal Opportunity Employer.**

**Make an impact with NTT DATA**
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion - it's a place where you can grow, belong and thrive.
**Additional Career Level Description:**
**Knowledge and application:**
+ Applies learned techniques, as well as company policies and procedures to resolve a variety of issues.
**Problem solving:**
+ Works on problems of moderate scope, often varied and nonroutine where analysis requires a review of a variety of factors.
+ Focuses on providing standard professional advice and creating initial analysis for review.
**Interaction:**
+ Builds productive internal/external working relationships to resolve mutual problems by collaborating on procedures or transactions.
**Impact:**
+ Work mainly impacts short term team performance and occasionally medium-term goals.
+ Supports the achievement of goals through own personal effort, assessing own progress.
**Accountability:**
+ Exercises some of own judgement and is responsible for meeting own targets, normally receiving little instruction on day-to-day work, general instructions on new assignments.
+ Manages own impact on cost and profitability.
**Workplace type** **:**
Hybrid Working
**About NTT DATA**
NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.
**Equal Opportunity Employer**
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

**The Opportunity**
This position will be assisting the Chief Risk Officer in the management of Information and Technology Risk Management for Manulife Insurance Berhad in alignment with the mandates and objectives from Global/Asia Information Risk Management (IRM) and regulatory requirements, as well as ensuring the company is compliant with the standards and guidelines of BNM Risk Management in Information Technology (RMIT) policy document.
**Position Responsibilities:**
+ Participate in governance of information risk management as 2nd Line oversight function to support the implementation of internal risk framework, practices, and controls.
+ Perform the 2nd Line IRM oversight on the Technology RCSA program, issues and the associated corrective action plan, and incidents.
+ Keep apprised of current and emerging risks which could potentially affect the company's risk profile.
+ Provide guidance and support on implementation of global technology initiatives.
+ Provide advisory and guidance on local information, cybersecurity and technology operational activities and regulatory risk to business.
+ Work closely with Asia IRM to ensure IRM assessment/s is/are aligned with Manulife Global Standards.
+ Work closely with local IT Governance to ensure holistic incident management, ensuring adequate communication, response and handling in the event of information/security risk incident/s and report to the management and regulator, if required.
+ Work closely with relevant stakeholders to assess privacy incidents, Data Leak Prevention (DLP) cases etc. and escalate to the management and regulator, if required.
+ Assume the Chief Information Security Officer (CISO) role and responsible for the technology risk management function of the financial institution and ensuring the company is compliant with BNM Risk Management in Information Technology (RMIT) policy document.
+ Advise on critical technology projects and ensuring critical issues that may have an impact on the company's risk tolerance are adequately deliberated or escalated in a timely manner.
+ Provide independent views to the board and senior management on third party assessments per RMIT and deliberate the outcome to the Board.
+ Conduct 2nd line review of cloud risk assessment of initiatives/projects involving cloud adoption and consider key risks and control measures (specified in RMIT Appendix 10) for BNM review and consultation sessions.
+ Perform periodic gap analysis of existing practices in managing technology risk against RMIT requirements and highlight key implementation gaps and ensure the company maintains continuous compliance.
+ Responsible for ensuring the company's information assets and technologies are adequately protected, which includes formulating appropriate policies for the effective implementation of TRMF and CRF, enforcing compliance with these policies, frameworks, and other technology-related regulatory requirements; and advising senior management on technology risk and security matters, including developments in the financial institution's technology security risk profile in relation to its business and operations.
**Required Qualifications:**
+ Holds a bachelor's degree in Information Technology (IT) or Information Security (IS)
+ 5 years' experience in IRM / Information Security related roles within the financial industry
+ Excellent technical skills in Technology Risk Management (TRM) and Information Security Management (ISM)
+ Excellent communication skills
+ Appreciation of different cultures
+ Professional certificate holder - CISSP, CRISC, CISA, CSSLP, or CISM and/or others
+ Experience in the following will be added advantage -Information Risk Assessment, IT/IS security controls review and Business continuity and disaster recovery
**_When you join our team:_**
+ We'll empower you to learn and grow the career you want.
+ We'll recognize and support you in a flexible environment where well-being and inclusion are more than just words.
+ As part of our global team, we'll support you in shaping the future you want to see.
**Acerca de Manulife y John Hancock**
Manulife Financial Corporation es un importante proveedor internacional de servicios financieros que ayuda a las personas a tomar decisiones de una manera más fácil y a vivir mejor. Para obtener más información acerca de nosotros, visite .
**Manulife es un empleador que ofrece igualdad de oportunidades**
En Manulife/John Hancock, valoramos nuestra diversidad. Nos esforzamos por atraer, formar y retener una fuerza laboral tan diversa como los clientes a los que prestamos servicios, y para fomentar un entorno laboral inclusivo en el que se aprovechen las fortalezas de las culturas y las personas. Estamos comprometidos con la equidad en las contrataciones, la retención de talento, el ascenso y la remuneración, y administramos todas nuestras prácticas y programas sin discriminación por motivos de raza, ascendencia, lugar de origen, color, origen étnico, ciudadanía, religión o creencias religiosas, credo, sexo (incluyendo el embarazo y las afecciones relacionadas con este), orientación sexual, características genéticas, condición de veterano, identidad de género, expresión de género, edad, estado civil, estatus familiar, discapacidad, o cualquier otro aspecto protegido por la ley vigente.
Nuestra prioridad es eliminar las barreras para garantizar la igualdad de acceso al empleo. Un representante de Recursos Humanos trabajará con los solicitantes que requieran una adaptación razonable durante el proceso de solicitud. Toda la información que se haya compartido durante el proceso de solicitud de adaptación se almacenará y utilizará de manera congruente con las leyes y las políticas de Manulife/John Hancock correspondientes. Para solicitar una adaptación razonable en el proceso de solicitud, envíenos un mensaje a .
**Modalidades de Trabajo**
Híbrido

**Company Description**
Since its spin-off in September 2025 AUMOVIO continues the business of the former Continental group sector Automotive as an independent company. The technology and electronics company offers a wide-ranging portfolio that makes mobility safe, exciting, connected, and autonomous. This includes sensor solutions, displays, braking and comfort systems as well as comprehensive expertise in software, architecture platforms, and assistance systems for software-defined vehicles. In the fiscal year 2024 the business areas, which now belong to AUMOVIO, generated sales of 19.6 billion Euro. The company is headquartered in Frankfurt, Germany and has about 87.000 employees in more than 100 locations worldwide.
**Job Description**
**OVERVIEW**
The Local Information Security Advisor (ISA) has the task to establish and drive Information Security (InfoSec) according to all relevant policies and guidelines on behalf of the InfoSec Officer (ISO) and the Regional InfoSec Manager (ISM).
By that the ISA has an essential role in the Information Security Management System (ISMS).
The Location Management commits itself to the InfoSec guidelines and targets and actively supports the InfoSec organization by appointing a ISA.
**The ISA:**
+ Works in close cooperation with all relevant local departments as well as with the Regional Security Manager (ISM).
+ Participates regularly in local management meetings.
+ Participates annually in a regional InfoSec Workshop organized by the ISM.
+ Supports all related local projects in order to ensure InfoSec conformity.
+ In the event of substantial deficiencies or severe incidents endangering the security of company information, the ISA must inform and escalate accordingly to relevant policies.
**Responsibilities on local level:**
Support responsible management in the appointed location(s):
+ Drive and monitor the implementation and usage of the existing ISMS (Information Security Management System) according to policies and guidelines as well as to business and customer requirements (e.g. ISO 27001, 8th European Directive, BSI).
+ Conduct and ensure regular trainings, provision of information and advice of all employees, managers and third parties.
+ Drive the appropriate classification of company proprietary information and adequate handling.
+ Conduct or support risk management activities (i.e. risk assessments, business impact analysis).
+ Monitor the development and maintenance of local emergency- and contingency plans.
+ Advise in all local aspects of identity- and authorization management.
+ Drive secure collaboration and integration of business partners.
+ Drive, track, and report detection and remediation of vulnerabilities.
+ Monitor and control the effectiveness of InfoSec projects and implemented measures.
+ Drive usage of InfoSec processes and tools including documentation.
+ Monitor execution of InfoSec reviews and conduct local inspections regularly.
+ Execute actions and projects agreed on with the location management and ISM.
+ Keep location informed about InfoSec regulations, warnings and news on current/new incidents.
**Qualifications**
+ Degree in computer science or information system or Cyber Security or other relevant degree with minimum 2 years' experience in related field.
+ General knowledge about InfoSec related standards, processes and tools.
+ Good knowledge of internal organization and local business and processes.
+ Good knowledge of the local infrastructure- and application landscape.
+ Basic knowledge of InfoSec rules and related laws.
+ Ability to motivate others and raise awareness for InfoSec related risks and threats.
+ Ability to balance potential risks and costs of protective measures.
+ Training user on new or improved business processes.
+ Experience in IT and Cyber/Info Security in manufacturing environment will be added advantage.
+ Interest in new technologies and willingness to learn.
**Additional Information**
Ready to take your career to the next level? The future of mobility isn't just anyone's job. Make it yours! **Join AUMOVIO. Own What's Next.**

**Make an impact with NTT DATA**
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion - it's a place where you can grow, belong and thrive.
**Key Responsibilities:**
+ Lead and manage complex security incidents, acting as a key contact for stakeholders.
+ Perform deep analysis of security alerts to identify, mitigate, and remediate threats.
+ Conduct forensic investigations on compromised hosts, networks, and cloud environments.
+ Proactively hunt for adversarial activity and anomalous behaviors across large datasets.
+ Analyze malware samples (basic level) to determine functionality, impact, and mitigation strategies.
+ Develop and refine detection rules, improving alert fidelity and response workflows.
+ Contribute to threat intelligence gathering, analyzing attack patterns, and enhancing defensive strategies.
+ Participate in red teaming or penetration testing activities to identify and remediate vulnerabilities.
+ Provide strategic recommendations for improving the organization's security posture.
+ Create detailed incident reports, threat intelligence assessments, and executive summaries.
+ Mentor and provide guidance to junior analysts, fostering continuous improvement in IR methodologies.
**Knowledge and Attributes:**
+ Ability to communicate and work across different cultures and social groups.
+ Ability to plan activities and projects well in advance, and takes into account possible changing circumstances.
+ Ability to maintain a positive outlook at work.
+ Ability to work well in a pressurized environment.
+ Ability to work hard and put in longer hours when it is necessary.
+ Ability to apply active listening techniques such as paraphrasing the message to confirm understanding, probing for further relevant information, and refraining from interrupting.
+ Ability to adapt to changing circumstances.
+ Ability to place clients at the forefront of all interactions, understanding their requirements, and creating a positive client experience throughout the total client journey.
**Academic Qualifications and Certifications:**
+ Bachelor's or Master's degree in Computer Science, Cybersecurity, or a related field.
+ Minimum of 5 years of experience in cybersecurity, with at least 2 years in incident response, threat hunting, or forensic analysis.
**Required experience:**
+ Extensive experience responding to targeted attacks from APT groups, cybercriminals, and nation-state actors.
+ Strong forensic analysis skills across Windows, Linux, and macOS systems.
+ Expertise in network forensics, traffic analysis, and packet inspection (Wireshark, Zeek).
+ Proficiency in SIEM platforms (Splunk, Sentinel, QRadar) and EDR solutions (CrowdStrike, Microsoft Defender ATP).
+ Knowledge of malware analysis techniques, including static and dynamic analysis.
+ Familiarity with cloud security investigations (AWS, Azure, GCP).
+ Strong scripting skills in Python, PowerShell, or similar languages for automation.
+ Understanding of security architecture, authentication mechanisms, and enterprise IT operations is a plus.
+ Experience with vulnerability management, red teaming, or penetration testing is a plus.
+ Familiarity with MITRE ATT&CK framework and various cyber threat intelligence methodologies.
**Preferred Certifications:**
+ GIAC (GCFA, GNFA, GCIH, GCIA, GREM)
+ CISSP (Certified Information Systems Security Professional)
+ CEH (Certified Ethical Hacker)
+ OSCP (Offensive Security Certified Professional)
+ Cloud Security Certifications (AWS Security Specialty, Microsoft Azure Security)
**Key Competencies:**
+ Strong analytical and problem-solving skills in high-pressure situations.
+ Ability to manage multiple investigations efficiently while meeting deadlines.
+ Excellent verbal and written communication skills, with the ability to convey technical details to varied audiences.
+ Strong team collaboration and leadership skills, with a proactive approach to knowledge sharing.
+ Ability to work in a fast-paced environment and adapt to evolving threats and challenges.
#LI-APAC
**Workplace type** **:**
**About NTT DATA**
NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.
**Equal Opportunity Employer**
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.