97 Security Specialist jobs in Malaysia

Join to apply for the Security Specialist role at Flex

6 days ago Be among the first 25 applicants

Join to apply for the Security Specialist role at Flex

Flex is the diversified manufacturing partner of choice that helps market-leading brands design, build and deliver innovative products that improve the world. We believe in the power of diversity and inclusion and cultivate a workplace culture of belonging that views uniqueness as a competitive edge and builds a community that enables our people to push the limits of innovation to make great products that create value and improve people's lives. A career at Flex offers the opportunity to make a difference and invest in your growth in a respectful, inclusive, and collaborative environment. If you are excited about a role but don't meet every bullet point, we encourage you to apply and join us to create the extraordinary.

To support our extraordinary teams who build great products and contribute to our growth, we’re looking to add a Security Specialist located in Port Tanjung Pelepas, Gelang Patah, Johor

In charge of identifying security incidents and gaps, mitigate them and provide information. To provide a safe and secure work environment for personnel and operations.

Responsibilities:

• Apply safety and security rules as per manuals, including but not limited to course of action, protocols, pertinent laws, regulations, and standards.
• Manage daily safety and security operations and resolve any escalated issues.
• Assist Security Manager to do monthly guard assessment, handle emergency cases, help with investigations and audits.
• In charge of the setting up and maintenance of security and alarm systems. Supervise the security entrance/exit.
• Implement security/safety improvements in accordance with corporate policies and local best practices.
• Know commercial operations for the site in order to detect loss risk and carry out correspondence investigations.
• Develop and maintain list of appropriate police jurisdiction contacts.
• Monitor security officers to enforce security/safety programs and to ensure security provider is providing security officers with the appropriate skillsets and work attitudes.
• Acknowledges all security concerns from tenants and company personnel, and door or system alarms.
• Develop and maintain positive relations with tenants, contractors, local law enforcement, etc., as well as internal cross-functions like HR, Compliance, and business.
• Monitor maintenance security equipment and fix the problems in time.
• Assistant to follow up security system construction progress in building and manage suppliers.
• Manage the SCC and campus perimeter access control system.
• Holds up building customer access (visitor badge, computer label, HID access)
  
  

Qualifications:

• Demonstrates operations and technical skills and understanding of Flex’s functional standards.
• Demonstrates working knowledge of functional concepts and a solid comprehension of Flex policies and procedures.
• Has awareness of the functional impact upon work processes and other functions.
• Demonstrates advanced experience and skills associated with performing assigned functions.
• Demonstrates advanced /thorough knowledge of the function and Flex business.
  
  

What you’ll receive for the great work you provide:

• Full range of medical benefits, dental, vision
• Life Insurance
• PTO
  
  

AN06

• Site
  
  

Flex is an Equal Opportunity Employer and employment selection decisions are based on merit, qualifications, and abilities. We celebrate diversity and do not discriminate based on: age, race, religion, color, sex, national origin, marital status, sexual orientation, gender identity, veteran status, disability, pregnancy status, or any other status protected by law. We're happy to provide reasonable accommodations to those with a disability for assistance in the application process. Please email and we'll discuss your specific situation and next steps (NOTE: this email does not accept or consider resumes or applications. This is only for disability assistance. To be considered for a position at Flex, you must complete the application process first).

Seniority level

• Seniority level Not Applicable

Employment type

• Employment type Full-time

Job function

• Job function Legal
• Industries Appliances, Electrical, and Electronics Manufacturing

Referrals increase your chances of interviewing at Flex by 2x

Get notified about new Security Professional jobs in Johor Baharu, Johore, Malaysia .

Security Officer - No PLRD license welcome to apply Security Officer (Conrad Singapore Orchard) Security Officer/Senior Security Officer (General Posting) Global Security Specialist (Asia-Pacific) Associate / Senior Associate Airport Operations (Safety, Security & Compliance) Regional Security Associate Manager - Disney Cruise Line Security Manager, Global Corporate Security Security Officer in a Banking Environment Security and Emergency Preparedness Intern, Properties & Facilities Management Head of Security Asia Pacific (H/F) - AIRBUS SINGAPORE PRIVATE LIMITED Information Technology - Cyber Security Analyst (Scoot) Information Technology - Cyber Security Specialist (Risk and Governance)

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

Add expected salary to your profile for insights

We need your talent, knowledge and dedication to better our world with biology.

Our purpose points the way

In Novonesis, we know that solutions rooted in biology can help solve humanity’s biggest challenges. Since we began more than a century ago, this has been our guide. It’s how we've gotten so far. And it’s how we'll impact the future. Now, more than ever, the world needs change. And with biosolutions, the possibilities for transformation are endless.

We’re here to better our world with biology.

In this role you’ll make an impact by :

Serving as the subject matter expert (SME) on Infrastructure Security.

Operating, configuring, maintaining, and troubleshooting cybersecurity solutions to protect Active Directory (AD), DNS, databases, web servers, network devices, and other infrastructure components across on-premises and cloud environments from evolving cyber threats.

Ensuring that security controls and policies applied to the infrastructure environment are designed for maximum protection, compliance, and compatibility while continuously fine-tuning and enhancing Novonesis' overall security posture.

Performing proactive security measures, including participating in the patching process, conducting system hardening, and evaluating IAM and network controls.

Supporting the CDC team in completing daily, weekly, and monthly operational tasks.

Participating in multidisciplinary projects as the cybersecurity expert.

Managing IT ticket queues, addressing user requests, dispatching incidents as needed, and maintaining accurate documentation of incidents, investigations, and resolutions in ticketing systems (e.g., ServiceNow).

Participating in root cause analysis and post-incident reviews for major security incidents.

Contributing to the development and maintenance of standard operating procedures (SOPs), incident response playbooks, and knowledge base articles.

Staying up to date with emerging threats, vulnerabilities, and mitigation techniques.

Execute any other cybersecurity-related tasks as directed by the line manager.

To succeed you must hold:

An Associate’s degree in Computer Science, Information Technology, or a related field from a two- or four-year college or university is required.

Minimum of 4 years of professional experience in setting up, managing, maintaining, and troubleshooting various cybersecurity solutions.

Proficient knowledge and hands-on experience in at least four of the following areas: Incident Handling; Endpoint and Mobile Security Solutions; DNS, Web Gateway (Proxy), and Email Security; Identity Security; Data Loss Prevention (DLP); File Sharing and Collaboration Platform Security; Active Directory (AD) and Azure AD; Network Security and Traffic Analysis; Microsoft Security Suite;

Cybersecurity-driven mindset with responsibility and proactivity.

Positive, solution-oriented attitude and Strong problem-solving skills with the ability to multitask.

Strong English communication skills, both written and verbal.

Could our purpose be yours? Then apply today!

At Novonesis we commit to an inclusive recruitment process and equality of opportunity for all our job applicants. We recommend you not to attach a cover letter to your application. Instead, please include a few sentences in your resume/CV about why you are applying. To ensure a fair recruitment process, please refrain from adding a photo in your resume/CV.

Novonesis is dedicated to fostering a unique community by embracing and respecting differences. We make all employment decisions based on business needs, ensuring that every individual can thrive, regardless of identity or background such as ethnicity, religion, gender, sexual orientation, age, disability, or veteran status.

Want to learn more?
Learn more about Novonesis, our purpose, and your career opportunities at novonesis.com

Not the right fit for you?
Even if this job isn't the right fit for you, perhaps you know someone who might find it interesting. If so, please feel free to share the job link and encourage them to apply. Thank you for your referral! Please check out our other open positions. The right fit for you could just be a few clicks away.

Stay alert: Avoid recruitment scams
At Novonesis, we are committed to maintaining a safe and transparent recruitment process. Please be aware of potential scams targeting job seekers and take note of the following:

Novonesis will never ask for sensitive personal information, such as bank account details, Social Security numbers, or passwords, at any stage of the hiring process.

Novonesis does not make employment offers without conducting interviews with candidates.

If you receive suspicious communication claiming to be from Novonesis, please do not share any personal or financial information. We encourage you to verify the legitimacy of the message by contacting us directly through our official channels.

Unlock job insights

Salary match Number of applicants Skills match

Your application will include the following questions:

Which of the following statements best describes your right to work in Malaysia? What's your expected monthly basic salary? Which of the following types of qualifications do you have? How many years' experience do you have as an Information Technology Security Specialist?

To help fast track investigation, please include here any other relevant details that prompted you to report this job ad as fraudulent / misleading / discriminatory.

Researching careers? Find all the information and tips you need on career advice.

#J-18808-Ljbffr

Join our global team for a career filled with opportunities to solve challenges both small and large, local and global, simple and complex.

About Us
Wilhelmsen Ship Management is one of the world’s largest third-party ship managers originated from Oslo, Norway with a portfolio of more than 450 vessels, a pool of more than 14,000 seafarers and over 900 shore-based employees all over the world. Our employees are working with a comprehensive global maritime group providing over half of the merchant fleet with essential products and services, along with supplying crew and technical management to the largest and most complex vessels ever to sail.

We offer a culture and vibrant work environment of strong leadership, collaborative, career development, work-life balance and a job that is both challenging and stimulating. All team members are empowered with the freedom to influence each other as long it complies with our Company’s values and vision.

What You'll Responsible For:

• Support the implementation and continuous improvement of the ISO 27001 Information Security Management System (ISMS).

• Assist in identifying and managing information security risks, controls, and related documentation.

• Help maintain records such as the statement of applicability (SoA), risk treatment plans, and security policies.

• Perform regular technical security reviews including vulnerability scans, patch status checks, and log analysis.

• Assist in ensuring compliance with internal controls and regulatory standards through documentation and audits.

• Support the configuration and maintenance of security systems such as firewalls, endpoint protection, and monitoring tools.

• Participate in incident handling and investigations under the guidance of the Senior Cyber Security Specialist.

• Assist with asset inventory updates, system classification, and control mapping.

• Monitor and report on KPIs and KRIs relevant to the ISMS and risk management.

• Collaborate in the delivery of user awareness training on information security and cyber security.

• Contribute to change and incident management processes from a security compliance perspective.

• Assist to track and monitor status of risk assessment.

• Support internal and external audits by providing relevant documentation and evidence.

What Experience and Skills Required:

• Bachelor's degree or higher in Cyber Security, Information Security, Computer Science, InformationSystems/Technology, or related field.

• Minimum 3 years of working experience in Cyber Security / Risk Management / Internal Audit or equivalent work experience.

• Foundational understanding of networking, operating systems, and common cyber threats.

• Familiarity with security monitoring tools, log analysis, and basic incident response processes.

• Good analytical, organizational, and communication skills.

• Knowledge of regulatory requirements and industry standards.

• Preferably with certification in the areas of Cyber Security/Information Security.

• Familiarity with industry cybersecurity frameworks and standards, such as ISO 27001, NIS2 and CISControls, is necessary.

*Only shortlisted candidates will be contacted

Become a valued member of our team, where every day presents new opportunities for learning and development. Sound interesting? Click "APPLY" now to embark on a rewarding career journey!

#WSM #LI-POST

#WSM #J-18808-Ljbffr

Cyber Security Specialist page is loadedCyber Security Specialist Apply locations Kuala Lumpur time type Full time posted on Posted Yesterday job requisition id JOBREQ_11247

Join our global team for a career filled with opportunities to solve challenges both small and large, local and global, simple and complex.

About Us
Wilhelmsen Ship Management is one of the world’s largest third-party ship managers originated from Oslo, Norway with a portfolio of more than 450 vessels, a pool of more than 14,000 seafarers and over 900 shore-based employees all over the world. Our employees are working with a comprehensive global maritime group providing over half of the merchant fleet with essential products and services, along with supplying crew and technical management to the largest and most complex vessels ever to sail.

We offer a culture and vibrant work environment of strong leadership, collaborative, career development, work-life balance and a job that is both challenging and stimulating. All team members are empowered with the freedom to influence each other as long it complies with our Company’s values and vision.

What You'll Responsible For:

• Support the implementation and continuous improvement of the ISO 27001 Information Security Management System (ISMS).

• Assist in identifying and managing information security risks, controls, and related documentation.

• Help maintain records such as the statement of applicability (SoA), risk treatment plans, and security policies.

• Perform regular technical security reviews including vulnerability scans, patch status checks, and log analysis.

• Assist in ensuring compliance with internal controls and regulatory standards through documentation and audits.

• Support the configuration and maintenance of security systems such as firewalls, endpoint protection, and monitoring tools.

• Participate in incident handling and investigations under the guidance of the Senior Cyber Security Specialist.

• Assist with asset inventory updates, system classification, and control mapping.

• Monitor and report on KPIs and KRIs relevant to the ISMS and risk management.

• Collaborate in the delivery of user awareness training on information security and cyber security.

• Contribute to change and incident management processes from a security compliance perspective.

• Assist to track and monitor status of risk assessment.

• Support internal and external audits by providing relevant documentation and evidence.

What Experience and Skills Required:

• Bachelor's degree or higher in Cyber Security, Information Security, Computer Science, InformationSystems/Technology, or related field.

• Minimum 3 years of working experience in Cyber Security / Risk Management / Internal Audit or equivalent work experience.

• Foundational understanding of networking, operating systems, and common cyber threats.

• Familiarity with security monitoring tools, log analysis, and basic incident response processes.

• Good analytical, organizational, and communication skills.

• Knowledge of regulatory requirements and industry standards.

• Preferably with certification in the areas of Cyber Security/Information Security.

• Familiarity with industry cybersecurity frameworks and standards, such as ISO 27001, NIS2 and CISControls, is necessary.

*Only shortlisted candidates will be contacted

Become a valued member of our team, where every day presents new opportunities for learning and development. Sound interesting? Click "APPLY" now to embark on a rewarding career journey!

#WSM #LI-POST

#WSM

About Us

Founded in Norway in 1861, Wilhelmsen is now a comprehensive global maritime group providing essential products and services to the merchant fleet, along with supplying crew and technical management to the largest and most complex vessels ever to sail. Committed to shaping the maritime industry, we also seek to develop new opportunities and collaborations in renewables, zero-emission shipping, and marine digitalisation. Supporting a diverse and inclusive workplace, with thousands of colleagues across more than 60 countries, we take innovation, sustainability and unparalleled customer experiences one step further.

#J-18808-Ljbffr

Dexcom Corporation (NASDAQ DXCM) is a pioneer and global leader in continuous glucose monitoring (CGM). Dexcom began as a small company with a big dream: To forever change how diabetes is managed. To unlock information and insights that drive better health outcomes. Here we are 25 years later, having pioneered an industry. And we're just getting started. We are broadening our vision beyond diabetes to empower people to take control of health. That means personalized, actionable insights aimed at solving important health challenges. To continue what we've started: Improving human health.

We are driven by thousands of ambitious, passionate people worldwide who are willing to fight like warriors to earn the trust of our customers by listening, serving with integrity, thinking big, and being dependable. We've already changed millions of lives and we're ready to change millions more. Our future ambition is to become a leading consumer health technology company while continuing to develop solutions for serious health conditions. We'll get there by constantly reinventing unique biosensing-technology experiences. Though we've come a long way from our small company days, our dreams are bigger than ever. The opportunity to improve health on a global scale stands before us.

About Us
At Dexcom, our Security team is the cornerstone of a safe, secure, and efficient workplace. As a global leader in innovative health technology, we’re committed to protecting our people, assets, and reputation with vigilance and precision. Join us as a Security Specialist 3 and become part of a dynamic team that leads, responds, and safeguards our operations behind the scenes.

Your Role
As a Security Specialist 3 at Dexcom Penang, you will be instrumental in maintaining site safety, integrity, and compliance. You will manage daily security operations, coordinate and supervise security personnel, and ensure that all security protocols are executed flawlessly across all shifts.

You will support audit readiness by maintaining accurate security documentation and ensure procedures comply with company and regulatory standards. Identifying and mitigating security risks, responding to incidents promptly, and collaborating with cross-functional teams will be key aspects of your role.

What You Bring

Proven experience in physical security operations and risk management with keen situational awareness.

Ability to remain calm and effective under pressure.

Strong skills in coordinating guard schedules, managing incident reports, and maintaining compliance documentation.

Excellent communication skills to liaise with internal teams and external vendors.

Proficiency with security management systems and familiarity with audit processes and regulatory compliance.

A proactive, reliable, and adaptable mindset committed to continuous improvement.

Preferred Qualifications

Bring prior experience of 3 - 5 years in a manufacturing or high-tech environment.

Relevant certifications in security management or occupational safety.

Knowledge of Environmental Health & Safety (EHS) protocols and emergency response procedures.

Multilingual abilities to support communication within a diverse workforce.

Why Join Dexcom?

Be part of a company that is revolutionizing health technology and changing lives.

Work in a supportive environment that values your voice and professional growth.

Take on a meaningful role where your work directly impacts safety and operational excellence.

Ready to make a difference behind the scenes? Apply now and join the Dexcom Security team!

To all Staffing and Recruiting Agencies: Our Careers Site is only for individuals seeking a job at Dexcom. Only authorized staffing and recruiting agencies may use this site or to submit profiles, applications or resumes on specific requisitions. Dexcom does not accept unsolicited resumes or applications from agencies. Please do not forward resumes to the Talent Acquisition team, Dexcom employees or any other company location. Dexcom is not responsible for any fees related to unsolicited resumes/applications.

WHY CHOOSE DEXCOM?

Since 1999, Dexcom has simplified and revolutionized diabetes management, positively impacting millions worldwide. At Dexcom, we're more than just a medical device company; we're a collective of visionary thinkers, trailblazers, and problem solvers. Our mission transcends the ordinary. We aim to revolutionize healthcare, one groundbreaking technology at a time.

#J-18808-Ljbffr

Job Responsibilities:

Help and support the head of department with the day-to-day information security tasks, such as risk assessment, monitoring, reporting, and advice.
Responsible for locating and fixing security flaws in the networks and computer systems of an organization.
Strong familiarity with vulnerability assessment and scanning to identify holes and vulnerabilities.
Conduct vulnerability assessments to find gaps in information security guidelines and evaluate risks that have been identified.
Collaborate with the IT team to address security flaws that could lead to improper use of data.
Work closely with the head of the department to establish security guidelines for the organization by defining standards and best practices to guarantee information availability, confidentiality, and integrity.
Inform staff members about security and technological best practices.

Job Requirements:

An IT bachelor’s degree or a professionally equivalent degree.
At least two to three years of professional expertise in system/network administration, compliance cloud services, information security incidents (cybersecurity), or IT governance is advantageous.
Thorough understanding of the principles of application security and cloud infrastructure.
Proficient in identifying and evaluating security risk mitigation measures and solutions.
Customer-focused, possessing a strong sense of accountability, a strong desire to achieve goals, and a keen interest in customer satisfaction.
The capacity and willingness to quickly learn new ideas and technology.
Excellent communication abilities, both written and verbal, for presentations.
Proficient in writing and speaking in English.
The capacity to work independently, multitask, and adhere to deadlines.
Dependable, adaptable, and eager to learn.

#J-18808-Ljbffr

**Who We Are**
At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities.
**The Role**
Kyndryl's Security & Resiliency is one of our most critical practices, ensuring enterprises, regardless of their size and complexity, remain secure, available, reliable, and resilient. We take Cybersecurity seriously. We're not just invested; we're committed. We're not just protecting data; we're empowering. Kyndryl is committed to making the world safer, not only by investing in state-of-the-art services and technologies but also by empowering underserved communities with essential cyber skills.
When you walk through our doors, you're not only joining a team but you're also becoming part of a legacy. Welcome to Kyndryl, where Cybersecurity isn't just a job - it's a passion; a commitment to designing, running, and managing the most modern and reliable technology infrastructure that the world depends on every day.
Join us as a Cybersecurity Infrastructure Professional, where you'll be entrusted with the crucial task of maintaining and enhancing the infrastructure that is the backbone of our cybersecurity operations for our Fortune 500 clients. You'll be responsible for the orchestration of infrastructure, keeping our systems protected from the relentless advances of physical and cyber adversaries.
Your vigilance and technical expertise will be the shield that safeguards our computer systems, networks, and invaluable data from the threat of unauthorized access, theft, damage, and other malicious activities. Your domain will revolve around preserving the integrity of an IT infrastructure, the security of networks, and the sanctity of data.
If you have a passion for cybersecurity and are looking for a role that combines cutting-edge technology with the thrill of safeguarding critical assets, then this role is your gateway to the world of cybersecurity heroism. Join us at Kyndryl, and let's build the future of digital security together.
Your Future at Kyndryl
When you join Kyndryl, you're not just joining a company - you're entering a space of opportunities. Our partnerships with industry alliances and vendors mean you'll have access to skilling and certification programs needed to excel in Security & Resiliency, while simultaneously supporting your personal growth. Whether you envision your career path as a technical leader within cybersecurity or transition into other technical, consulting, or go-to-market roles - we're invested in your journey. .
**Who You Are**
Who You Are
You're good at what you do and possess the required experience to prove it. However, equally as important - you have a growth mindset; keen to drive your own personal and professional development. You are customer-focused - someone who prioritizes customer success in their work. And finally, you're open and borderless - naturally inclusive in how you work with others.
Required Skills and Experience
+ 3+ years of relevant experience
+ Threat Detection & Incident Response
+ Vulnerability Management
+ Identity & Access management (IAM)
+ Security operation (SecOps)
+ Security Governance, Risk & Compliance
+ Cloud Security
+ Data Protection & DLP
+ Security Awareness & Training
Preferred Skills and Experience
+ CompTIA Security+ Microsoft Certified: Security Operations Analyst Associate
+ Certified Ethical Hacker (CEH)
+ Certified Information Systems Security Professional (CISSP)
+ Certified Cloud Security Professional (CCSP)
+ GIAC (e.g., GSEC, GCIA, GCIH)
**Being You**
Diversity is a whole lot more than what we look like or where we come from, it's how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we're not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you - and everyone next to you - the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That's the Kyndryl Way.
**What You Can Expect**
With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter - wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed.
**Get Referred!**
If you know someone that works at Kyndryl, when asked 'How Did You Hear About Us' during the application process, select 'Employee Referral' and enter your contact's Kyndryl email address.
Kyndryl is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, pregnancy, disability, age, veteran status, or other characteristics. Kyndryl is also committed to compliance with all fair employment practices regarding citizenship and immigration status.

Canonical Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia

Join or sign in to find your next job

Join to apply for the Security Risk Management Specialist role at Canonical

Canonical Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia

Join to apply for the Security Risk Management Specialist role at Canonical

In security risk management we're looking to harness the power of industry best practice combined with driving new innovation on how we do security risk assessments and modelling. Our security risk management team is the primary owner of the strategy and practices of how we identify, track and reduce our security risk across everything we do.

To support this we need to use industry best practices paired with emerging threat information to to promote risk identification, quantification, impact analysis, and modelling to ultimately drive decision making. In this role, you will help establish and execute a broad strategic vision for the security risk program at Canonical. You will not only work within the team but also cross-functionally with various teams across the organisation. The team contributes ideas and requirements for Canonical product security, improving the resilience and robustness of all Ubuntu customers and users subject to cyber attacks. Additionally, the team collaborates with our Organisational Learning and Development team to develop playbooks and facilitate security training across Canonical.

The security risk management team's mission is not only to secure Canonical, but also to contribute to the security of the wider open source ecosystem. They might share knowledge through public presentations and industry events, and share threat intelligence with the wider community or represent Canonical in sector-specific governance bodies.

What you will do in this role:

• Define Canonical's security risk management standards and playbooks
• Analyse and improve Canonical's security risk practices
• Evaluate, select and implement new security requirements, tools and practices
• Grow the presence and thought leadership of Canonical security risk management practice
• Develop Canonical security risk learning and development materials
• Work with Security leadership to present information and influence change
• Participate in developing key risk indicators, provide inputs to the development of key control indicators, and key performance indicators for various programs
• Apply statistical models to risk frameworks (such as FAIR, sensitivity analysis, and others)
• Participate in risk management, decision-making, and collaborative discussions
• Lead quantified risk assessments and understand the value of qualitative data for improvements to quality and engineering processes
• Interpret internal or external cyber security risk analyses in business terms and recommend a responsible course of action
• Develop templates and materials to help with self-service risk management actions
• Monitor and identify opportunities to improve the effectiveness of risk management processes
• Launch campaigns to perform security assessments and help mitigate security risks across the company
• Build evaluation methods and performance indicators to measure efficiency of security functions and capabilities.
  
  

What we are looking for

• An exceptional academic track record
• Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path
• Drive and a track record of going above-and-beyond expectations
• Deep personal motivation to be at the forefront of technology security
• Leadership and management ability
• Excellent business English writing and presentation skills
• Problem-solver with excellent communication skills, a deep technical understanding of security assessments and risk management
• Expertise in threat modelling and risk management frameworks
• Broad knowledge of how to operationalize the management of security risk
• Experience in Secure Development Lifecycle and Security by Design methodology
  
  

What we offer you

We consider geographical location, experience, and performance in shaping compensation worldwide. We revisit compensation annually (and more often for graduates and associates) to ensure we recognise outstanding performance. In addition to base pay, we offer a performance-driven annual bonus. We provide all team members with additional benefits, which reflect our values and ideals. We balance our programs to meet local needs and ensure fairness globally.

• Distributed work environment with twice-yearly team sprints in person
• Personal learning and development budget of USD 2,000 per year
• Annual compensation review
• Recognition rewards
• Annual holiday leave
• Maternity and paternity leave
• Employee Assistance Programme
• Opportunity to travel to new locations to meet colleagues
• Priority Pass, and travel upgrades for long haul company events
  
  

About Canonical

Canonical is a pioneering tech firm at the forefront of the global move to open source. As the company that publishes Ubuntu, one of the most important open source projects and the platform for AI, IoT and the cloud, we are changing the world on a daily basis. We recruit on a global basis and set a very high standard for people joining the company. We expect excellence - in order to succeed, we need to be the best at what we do. Canonical has been a remote-first company since its inception in 2004. Working here is a step into the future, and will challenge you to think differently, work smarter, learn new skills, and raise your game.

Canonical is an equal opportunity employer

We are proud to foster a workplace free from discrimination. Diversity of experience, perspectives, and background create a better work environment and better products. Whatever your identity, we will give your application fair consideration.

Seniority level

• Seniority level Entry level

Employment type

• Employment type Full-time

Job function

• Job function Finance and Sales
• Industries Software Development

Referrals increase your chances of interviewing at Canonical by 2x

Get notified about new Risk Management Specialist jobs in Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia .

Risk Analyst (night shift - remote work)

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 3 weeks ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 5 months ago

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 5 months ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

Experian is a global data and technology company, powering opportunities for people and businesses around the world. We help to redefine lending practices, uncover and prevent fraud, simplify healthcare, create marketing solutions, and gain deeper insights into the automotive market, all using our unique combination of data, analytics and software. We also assist millions of people to realize their financial goals and help them save time and money.

We operate across a range of markets, from financial services to healthcare, automotive, agribusiness, insurance, and many more industry segments.

We invest in people and new advanced technologies to unlock the power of data. As a FTSE 100 Index company listed on the London Stock Exchange (EXPN), we have a team of 22,500 people across 32 countries. Our corporate headquarters are in Dublin, Ireland. Learn more at experianplc.com.

Job Description

The Third-Party Security Assessor undertakes general Third-Party Security reviews. There are three major aspects to this position:

1. Conducting reviews of NEW Third-Party entities (Supplier, Reseller, Joint Ventures) - identifying areas of conformance and non-conformance to Experian requirements; driving security contract language and inputs into the Risk Management Process.
2. Conducting reviews of EXISTING Third-Party entities (Supplier, Reseller, Joint Ventures) - identifying areas of conformance and non-conformance to Experian requirements and inputs into the Risk Management Process.
3. Supports the Global Head of Third-Party Security to continuously improve the local Third-Party Security (TPS) Management System and ensure that it meets local regulatory, policy and business requirements.

Primary Responsibilities

1. Update the Third-Party inventory and program within the region.
2. Perform security assessments for new and existing Third Parties using the Third-Party Security Framework.
3. Support in the development and improvement of the TPS program.
4. Provide on-demand consultancy to other teams within Information Security, Governance and the Business to assist in improving the security posture of third-party organisations.
5. Partner with regional TPS team, regional indirect sales and procurement to ensure procedures meet regional requirements / operating practices.
6. Identify information security deficiencies, risks and exceptions to appropriate parties as soon as possible. Ensure ownership and ensure non-compliance issues, exception justification, mitigation controls and risks are appropriately captured.
7. Work with RISOs and other GSOs governance functions - assist and/or drive remediation activities in order to mitigate security deficiencies identified.
8. Support the development of statistical reports on compliance deficiency trends and violations.

Qualifications

1. 5+ years of experience in security field, especially around security assessments or audit field.
2. A technical background with prior hands-on experience is a plus.
3. Ability, drive and motivation to research and provide the right guidance and find possible solutions. Ability to push back where the risk outweighs the benefits.
4. Curiosity to ask questions and challenge the status quo.
5. Strong leadership skills.
6. Excellent verbal and written communication skills.
7. Problem Solving & Analysis.
8. Process driven, with an eye for detail, automation and efficiency to improve programs/processes.
9. Good collaboration, relationship and interpersonal skills.
10. CISA, CISM, CISSP, PCI QSA or comparable certifications required.

Additional Information

Our uniqueness is that we truly celebrate yours. Experian's culture and people are key differentiators. We take our people agenda very seriously and focus on what truly matters; DEI, work/life balance, development, authenticity, engagement, collaboration, wellness, reward & recognition, volunteering. the list goes on. Experian's strong people-first approach is award-winning; Great Place To Work in 24 countries, FORTUNE Best Companies to work and Glassdoor Best Places to Work (globally 4.4 Stars) to name a few. Check out Experian Life on social or our Careers Site to understand why.

Experian is proud to be an Equal Opportunity and Affirmative Action employer. Innovation is a critical part of Experian's DNA and practices, and our diverse workforce drives our success. Everyone can succeed at Experian and bring their whole self to work, irrespective of their gender, ethnicity, religion, colour, sexuality, physical ability or age. If you have a disability or special need that requires accommodation, please let us know at the earliest opportunity.

Experian Careers - Creating a better tomorrow together

#J-18808-Ljbffr