64 Threat Intelligence jobs in Malaysia

Canonical Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia Join or sign in to find your next job

Join to apply for the

Threat Intelligence Lead

role at

Canonical Continue with Google Continue with Google Canonical Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia Join to apply for the

Threat Intelligence Lead

role at

Canonical The Threat Intelligence Lead will own Canonical's threat intelligence strategy and execution, including understanding of which cyber threat actors are targeting Canonical, and the use of intelligence on Tactics, Techniques and Procedures (TTP) to better our products and internal cybersecurity controls. You will collaborate with internal stakeholders as well as with the wider cybersecurity community, making sure that Canonical is recognised as a thought leader on open source threat intelligence.

This role will report to the CISO.

You will lead intelligence gathering and development activities on threat actors targeting software supply chains. You'll study attack trends across the wider open source software landscape, report findings to internal security teams, and advise the wider engineering community on the best course of action to detect and mitigate possible threats.

As the publisher of Ubuntu, Canonical products are directly or indirectly present in almost every organisation and household in the world, making them a prime target for threat actors. This team's mission is to help Canonical, and by extension countless community members and companies around the world, secure their software infrastructure.

What you'll do in this role

Build and own Canonical's threat intelligence strategy Build and maintain OSINT research environments Develop OSINT tradecraft, principals, and techniques Identify and track targeted intrusion cyber threats, trends, and new developments by cyber threat actors through analysis of proprietary and open source datasets Collaborate across teams to inform on activity of interest Coordinate adversary/campaign tracking Contribute to the wider threat intelligence community, establishing Canonical as a key contributor and thought leader in the space Work with product and engineering teams to explain cybersecurity threats and advise on mitigation strategies Work with the OPSEC and IS team to help implement/update security controls prioritising cyber defence Identify intelligence gaps and propose new tools and research projects to fill them Conduct briefings for executives, internal stakeholders and external customers

The successful Threat Intelligence Lead will be

An experienced threat intelligence leader (or similar) Knowledgeable about the current open source threat landscape and computer networking/infrastructure concepts Highly competent with OSINT tools (e.g., Buscador, Trace Labs OSINT VM, OSINT Framework, Maltego, Shodan, social media scraping tools, etc.) Able to identify, organise, catalogue, and track adversary tradecraft trends — often with incomplete data Experienced using threat intelligence data to influence enterprise architecture or product development decisions An excellent communicator with the ability to clearly articulate and tailor technical content to a variety of audiences Able to travel twice a year, for company events up to two weeks long

Desired Characteristics

A professional portfolio of OSINT related scripts, tools, or frameworks Demonstrated involvement in the larger OSINT community (please share relevant links) Degree qualified, with a bachelor's degree in computer science, information security, or a related field Certifications in related areas (e.g. GOSI, SANS SEC487 & SEC587, IntelTechniques OSIP, etc) Experience in a tech company or government/military signal intelligence departments

What we offer you

We consider geographical location, experience, and performance in shaping compensation worldwide. We revisit compensation annually (and more often for graduates and associates) to ensure we recognise outstanding performance. In addition to base pay, we offer a performance-driven annual bonus. We provide all team members with additional benefits, which reflect our values and ideals. We balance our programs to meet local needs and ensure fairness globally.

Distributed work environment with twice-yearly team sprints in person Personal learning and development budget of USD 2,000 per year Annual compensation review Recognition rewards Annual holiday leave Maternity and paternity leave Employee Assistance Programme Opportunity to travel to new locations to meet colleagues Priority Pass, and travel upgrades for long haul company events

About Canonical

Canonical is a pioneering tech firm at the forefront of the global move to open source. As the company that publishes Ubuntu, one of the most important open source projects and the platform for AI, IoT and the cloud, we are changing the world on a daily basis. We recruit on a global basis and set a very high standard for people joining the company. We expect excellence - in order to succeed, we need to be the best at what we do. Canonical has been a remote-first company since its inception in 2004. Working here is a step into the future, and will challenge you to think differently, work smarter, learn new skills, and raise your game.

Canonical is an equal opportunity employer

We are proud to foster a workplace free from discrimination. Diversity of experience, perspectives, and background create a better work environment and better products. Whatever your identity, we will give your application fair consideration.

Seniority level

Seniority level Mid-Senior level Employment type

Employment type Full-time Job function

Job function Information Technology Industries Software Development Referrals increase your chances of interviewing at Canonical by 2x Sign in to set job alerts for “Threat Intelligence Lead” roles.

Continue with Google Continue with Google Continue with Google Continue with Google We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

PwC Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia

Join or sign in to find your next job

Join to apply for the Senior Associate - Cyber Threat Intelligence Analyst role at PwC

PwC Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia

1 week ago Be among the first 25 applicants

Join to apply for the Senior Associate - Cyber Threat Intelligence Analyst role at PwC

Get AI-powered advice on this job and more exclusive features.

• Proactively monitor and communicate cyber threat trends, vulnerabilities, indicators of compromise (IOCs), and tactics, techniques, and procedures (TTPs).
  
• Monitor external data sources and leverage resources to gather cyber threat and setup cyber threat intelligence infrastructure and payloads associated with priority threats.
  
• Familiarity with deep and dark web, covert communication channels, social media platforms, and other OSINT sources.
  
• Develop and produce intelligence reports focused on cyber events and trends, industry-level analysis of developing cybersecurity threats, and geopolitical events.
  
• Analyze cyber-threat actors, groups, and events to report on prioritized TTPs, behaviors, motivations, malware analysis, etc.
  
• Disseminate finished tactical, operational, and strategic threat intelligence products (reports, briefings, etc.).
  
• Provide threat intelligence support for security incidents and respond to requests for information (RFIs) and participate in the drafting and production of company threat assessments.
  
• Support creation of deliverables including but not limited to Security/Incident Alerts, Intelligence Reports, Trend and summary reports, Client briefings
  
  
  
  

Line of Service
Assurance

Industry/Sector
Not Applicable

Specialism
Risk Architecture

Management Level
Senior Associate

Job Description & Summary


Key Responsibilities:

• Proactively monitor and communicate cyber threat trends, vulnerabilities, indicators of compromise (IOCs), and tactics, techniques, and procedures (TTPs).
  
• Monitor external data sources and leverage resources to gather cyber threat and setup cyber threat intelligence infrastructure and payloads associated with priority threats.
  
• Familiarity with deep and dark web, covert communication channels, social media platforms, and other OSINT sources.
  
• Develop and produce intelligence reports focused on cyber events and trends, industry-level analysis of developing cybersecurity threats, and geopolitical events.
  
• Analyze cyber-threat actors, groups, and events to report on prioritized TTPs, behaviors, motivations, malware analysis, etc.
  
• Disseminate finished tactical, operational, and strategic threat intelligence products (reports, briefings, etc.).
  
• Provide threat intelligence support for security incidents and respond to requests for information (RFIs) and participate in the drafting and production of company threat assessments.
  
• Support creation of deliverables including but not limited to Security/Incident Alerts, Intelligence Reports, Trend and summary reports, Client briefings
  
  
  
  

Experience and Qualifications:

• Bachelor's Degree / Diploma in Information Technology, Information Security, Computer Science or a similar field.
  
• Minimum 2-3 years of relevant experience working in 24x7 Security Operations Centre (SOC) environment
  
• Solid understanding of MITRE ATT&CK, Acquired or ability to acquire the following certification:
  
• GIAC Cyber Threat Intelligence (GCTI)
  
• CREST Certified Threat Intelligence Manager (CCTIM)
  
• CREST Registered Threat Intelligence Analyst (CRTIA)
  

Required Skills

Optional Skills
Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Auditing, Auditing Standards, Audit Internal Controls, Audit Preparation, Audit Reporting, Audit Risk Assessments, Audit Support, Business Process Improvement, Communication, Compliance and Standards, Compliance Assurance, Compliance Auditing, Compliance Risk Assessment, Compliance Training, Creativity, Data Analysis and Interpretation, Developing Policies and Guidelines, Embracing Change, Emotional Regulation, Empathy, Ethics Training {+ 26 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements
Up to 40%

Available for Work Visa Sponsorship?
No

Government Clearance Required?
Yes

Job Posting End Date

Seniority level

• Seniority level Mid-Senior level

Employment type

• Employment type Full-time

Job function

• Job function Information Technology
• Industries Professional Services

Referrals increase your chances of interviewing at PwC by 2x

Get notified about new Threat Intelligence Analyst jobs in Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia .

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

(Senior) Security Engineer, Security Engineering & Threat Intelligence

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

PwC Malaysia Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia

Join or sign in to find your next job

Join to apply for the Senior Associate - Cyber Threat Intelligence Analyst role at PwC Malaysia

PwC Malaysia Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia

1 week ago Be among the first 25 applicants

Join to apply for the Senior Associate - Cyber Threat Intelligence Analyst role at PwC Malaysia

Get AI-powered advice on this job and more exclusive features.

• Proactively monitor and communicate cyber threat trends, vulnerabilities, indicators of compromise (IOCs), and tactics, techniques, and procedures (TTPs).
• Monitor external data sources and leverage resources to gather cyber threat and setup cyber threat intelligence infrastructure and payloads associated with priority threats.
• Familiarity with deep and dark web, covert communication channels, social media platforms, and other OSINT sources.
• Develop and produce intelligence reports focused on cyber events and trends, industry-level analysis of developing cybersecurity threats, and geopolitical events.
• Analyze cyber-threat actors, groups, and events to report on prioritized TTPs, behaviors, motivations, malware analysis, etc.
• Disseminate finished tactical, operational, and strategic threat intelligence products (reports, briefings, etc.).
• Provide threat intelligence support for security incidents and respond to requests for information (RFIs) and participate in the drafting and production of company threat assessments.
• Support creation of deliverables including but not limited to Security/Incident Alerts, Intelligence Reports, Trend and summary reports, Client briefings
  
  
  

Line of Service

Assurance

Industry/Sector

Not Applicable

Specialism

Risk Architecture

Management Level

Senior Associate

Key Responsibilities

Job Description & Summary

• Proactively monitor and communicate cyber threat trends, vulnerabilities, indicators of compromise (IOCs), and tactics, techniques, and procedures (TTPs).
• Monitor external data sources and leverage resources to gather cyber threat and setup cyber threat intelligence infrastructure and payloads associated with priority threats.
• Familiarity with deep and dark web, covert communication channels, social media platforms, and other OSINT sources.
• Develop and produce intelligence reports focused on cyber events and trends, industry-level analysis of developing cybersecurity threats, and geopolitical events.
• Analyze cyber-threat actors, groups, and events to report on prioritized TTPs, behaviors, motivations, malware analysis, etc.
• Disseminate finished tactical, operational, and strategic threat intelligence products (reports, briefings, etc.).
• Provide threat intelligence support for security incidents and respond to requests for information (RFIs) and participate in the drafting and production of company threat assessments.
• Support creation of deliverables including but not limited to Security/Incident Alerts, Intelligence Reports, Trend and summary reports, Client briefings
  
  
  

Experience And Qualifications

• Bachelor's Degree / Diploma in Information Technology, Information Security, Computer Science or a similar field.
• Minimum 2-3 years of relevant experience working in 24x7 Security Operations Centre (SOC) environment
• Solid understanding of MITRE ATT&CK, Acquired or ability to acquire the following certification:
• GIAC Cyber Threat Intelligence (GCTI)
• CREST Certified Threat Intelligence Manager (CCTIM)
• CREST Registered Threat Intelligence Analyst (CRTIA)
  
  
  

Education (if blank, degree and/or field of study not specified)

Degrees/Field Of Study Required

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Auditing, Auditing Standards, Audit Internal Controls, Audit Preparation, Audit Reporting, Audit Risk Assessments, Audit Support, Business Process Improvement, Communication, Compliance and Standards, Compliance Assurance, Compliance Auditing, Compliance Risk Assessment, Compliance Training, Creativity, Data Analysis and Interpretation, Developing Policies and Guidelines, Embracing Change, Emotional Regulation, Empathy, Ethics Training {+ 26 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Up to 40%

Available for Work Visa Sponsorship?

No

Government Clearance Required?

Yes

Job Posting End Date Seniority level

• Seniority level Mid-Senior level

Employment type

• Employment type Full-time

Job function

• Job function Information Technology
• Industries Professional Services

Referrals increase your chances of interviewing at PwC Malaysia by 2x

Get notified about new Threat Intelligence Analyst jobs in Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia .

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

(Senior) Security Engineer, Security Engineering & Threat Intelligence

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

PwC Malaysia Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia Join or sign in to find your next job

Join to apply for the

Senior Associate - Cyber Threat Intelligence Analyst

role at

PwC Malaysia PwC Malaysia Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago Be among the first 25 applicants Join to apply for the

Senior Associate - Cyber Threat Intelligence Analyst

role at

PwC Malaysia Get AI-powered advice on this job and more exclusive features. Proactively monitor and communicate cyber threat trends, vulnerabilities, indicators of compromise (IOCs), and tactics, techniques, and procedures (TTPs). Monitor external data sources and leverage resources to gather cyber threat and setup cyber threat intelligence infrastructure and payloads associated with priority threats. Familiarity with deep and dark web, covert communication channels, social media platforms, and other OSINT sources. Develop and produce intelligence reports focused on cyber events and trends, industry-level analysis of developing cybersecurity threats, and geopolitical events. Analyze cyber-threat actors, groups, and events to report on prioritized TTPs, behaviors, motivations, malware analysis, etc. Disseminate finished tactical, operational, and strategic threat intelligence products (reports, briefings, etc.). Provide threat intelligence support for security incidents and respond to requests for information (RFIs) and participate in the drafting and production of company threat assessments. Support creation of deliverables including but not limited to Security/Incident Alerts, Intelligence Reports, Trend and summary reports, Client briefings

Line of Service

Assurance

Industry/Sector

Not Applicable

Specialism

Risk Architecture

Management Level

Senior Associate

Key Responsibilities

Job Description & Summary

Proactively monitor and communicate cyber threat trends, vulnerabilities, indicators of compromise (IOCs), and tactics, techniques, and procedures (TTPs). Monitor external data sources and leverage resources to gather cyber threat and setup cyber threat intelligence infrastructure and payloads associated with priority threats. Familiarity with deep and dark web, covert communication channels, social media platforms, and other OSINT sources. Develop and produce intelligence reports focused on cyber events and trends, industry-level analysis of developing cybersecurity threats, and geopolitical events. Analyze cyber-threat actors, groups, and events to report on prioritized TTPs, behaviors, motivations, malware analysis, etc. Disseminate finished tactical, operational, and strategic threat intelligence products (reports, briefings, etc.). Provide threat intelligence support for security incidents and respond to requests for information (RFIs) and participate in the drafting and production of company threat assessments. Support creation of deliverables including but not limited to Security/Incident Alerts, Intelligence Reports, Trend and summary reports, Client briefings

Experience And Qualifications

Bachelor's Degree / Diploma in Information Technology, Information Security, Computer Science or a similar field. Minimum 2-3 years of relevant experience working in 24x7 Security Operations Centre (SOC) environment Solid understanding of MITRE ATT&CK, Acquired or ability to acquire the following certification: GIAC Cyber Threat Intelligence (GCTI) CREST Certified Threat Intelligence Manager (CCTIM) CREST Registered Threat Intelligence Analyst (CRTIA)

Education

(if blank, degree and/or field of study not specified)

Degrees/Field Of Study Required

Degrees/Field of Study preferred:

Certifications

(if blank, certifications not specified)

Required Skills

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Auditing, Auditing Standards, Audit Internal Controls, Audit Preparation, Audit Reporting, Audit Risk Assessments, Audit Support, Business Process Improvement, Communication, Compliance and Standards, Compliance Assurance, Compliance Auditing, Compliance Risk Assessment, Compliance Training, Creativity, Data Analysis and Interpretation, Developing Policies and Guidelines, Embracing Change, Emotional Regulation, Empathy, Ethics Training {+ 26 more}

Desired Languages

(If blank, desired languages not specified)

Travel Requirements

Up to 40%

Available for Work Visa Sponsorship?

No

Government Clearance Required?

Yes

Job Posting End Date

Seniority level

Seniority level Mid-Senior level Employment type

Employment type Full-time Job function

Job function Information Technology Industries Professional Services Referrals increase your chances of interviewing at PwC Malaysia by 2x Get notified about new Threat Intelligence Analyst jobs in

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia . Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago (Senior) Security Engineer, Security Engineering & Threat Intelligence

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

PwC Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia Join or sign in to find your next job

Join to apply for the

Senior Associate - Cyber Threat Intelligence Analyst

role at

PwC PwC Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago Be among the first 25 applicants Join to apply for the

Senior Associate - Cyber Threat Intelligence Analyst

role at

PwC Get AI-powered advice on this job and more exclusive features. Proactively monitor and communicate cyber threat trends, vulnerabilities, indicators of compromise (IOCs), and tactics, techniques, and procedures (TTPs).

Monitor external data sources and leverage resources to gather cyber threat and setup cyber threat intelligence infrastructure and payloads associated with priority threats.

Familiarity with deep and dark web, covert communication channels, social media platforms, and other OSINT sources.

Develop and produce intelligence reports focused on cyber events and trends, industry-level analysis of developing cybersecurity threats, and geopolitical events.

Analyze cyber-threat actors, groups, and events to report on prioritized TTPs, behaviors, motivations, malware analysis, etc.

Disseminate finished tactical, operational, and strategic threat intelligence products (reports, briefings, etc.).

Provide threat intelligence support for security incidents and respond to requests for information (RFIs) and participate in the drafting and production of company threat assessments.

Support creation of deliverables including but not limited to Security/Incident Alerts, Intelligence Reports, Trend and summary reports, Client briefings

Line of Service Assurance

Industry/Sector Not Applicable

Specialism Risk Architecture

Management Level Senior Associate

Job Description & Summary

Key Responsibilities: Proactively monitor and communicate cyber threat trends, vulnerabilities, indicators of compromise (IOCs), and tactics, techniques, and procedures (TTPs).

Monitor external data sources and leverage resources to gather cyber threat and setup cyber threat intelligence infrastructure and payloads associated with priority threats.

Familiarity with deep and dark web, covert communication channels, social media platforms, and other OSINT sources.

Develop and produce intelligence reports focused on cyber events and trends, industry-level analysis of developing cybersecurity threats, and geopolitical events.

Analyze cyber-threat actors, groups, and events to report on prioritized TTPs, behaviors, motivations, malware analysis, etc.

Disseminate finished tactical, operational, and strategic threat intelligence products (reports, briefings, etc.).

Provide threat intelligence support for security incidents and respond to requests for information (RFIs) and participate in the drafting and production of company threat assessments.

Support creation of deliverables including but not limited to Security/Incident Alerts, Intelligence Reports, Trend and summary reports, Client briefings

Experience and Qualifications: Bachelor's Degree / Diploma in Information Technology, Information Security, Computer Science or a similar field.

Minimum 2-3 years of relevant experience working in 24x7 Security Operations Centre (SOC) environment

Solid understanding of MITRE ATT&CK, Acquired or ability to acquire the following certification:

GIAC Cyber Threat Intelligence (GCTI)

CREST Certified Threat Intelligence Manager (CCTIM)

CREST Registered Threat Intelligence Analyst (CRTIA)

Required Skills

Optional Skills Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Auditing, Auditing Standards, Audit Internal Controls, Audit Preparation, Audit Reporting, Audit Risk Assessments, Audit Support, Business Process Improvement, Communication, Compliance and Standards, Compliance Assurance, Compliance Auditing, Compliance Risk Assessment, Compliance Training, Creativity, Data Analysis and Interpretation, Developing Policies and Guidelines, Embracing Change, Emotional Regulation, Empathy, Ethics Training {+ 26 more}

Desired Languages

(If blank, desired languages not specified)

Travel Requirements Up to 40%

Available for Work Visa Sponsorship? No

Government Clearance Required? Yes

Job Posting End Date

Seniority level

Seniority level Mid-Senior level Employment type

Employment type Full-time Job function

Job function Information Technology Industries Professional Services Referrals increase your chances of interviewing at PwC by 2x Get notified about new Threat Intelligence Analyst jobs in

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia . Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago (Senior) Security Engineer, Security Engineering & Threat Intelligence

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

Overview

Role Overview: You will lead the design, implementation, and monitoring of enterprise-grade cybersecurity solutions with a strong emphasis on cloud security, zero trust architecture, and threat hunting. This role requires real-time incident response, red/blue teaming, and the integration of AI-powered SIEM/SOAR tools across multi-cloud and hybrid environments.

Responsibilities

• Monitor and analyze network traffic for suspicious activity.
• Conduct regular vulnerability assessments and penetration testing.
• Implement and manage security tools (SIEM, DLP, antivirus, firewalls).
• Ensure compliance with cybersecurity standards (ISO 27001, NIST, GDPR).
• Respond to security incidents and coordinate incident response activities.
• Conduct security awareness training for employees.
• Work closely with infrastructure and application teams on secure design.

Key Responsibilities

• Implement Zero Trust Security frameworks (NIST 800-207) across enterprise systems.
• Design and manage Cloud-native security controls (AWS GuardDuty, Azure Sentinel, GCP SCC).
• Lead threat hunting and malware analysis using tools like Elastic Stack, Carbon Black, CrowdStrike Falcon.
• Develop custom detection rules and automation workflows in SOAR platforms (Cortex XSOAR, Splunk Phantom).
• Conduct advanced red/purple team simulations using MITRE ATT&CK, Atomic Red Team, and Cobalt Strike.
• Oversee security architecture reviews for containerized and serverless applications (Kubernetes, Fargate).
• Drive organization-wide compliance with ISO27001, NIST, CIS Controls, and MAS TRM.

Technology Stack

• SIEM/SOAR: Splunk, Sentinel, QRadar, Cortex XSOAR
• Threat Intel: MISP, Recorded Future, ThreatConnect
• Cloud Security: Prisma Cloud, Dome9, AWS WAF, Azure Defender
• Automation: Python, PowerShell, Terraform
• Certifications Preferred: CISSP, OSCP, GCIA, GCPN, AWS Security Specialty, CCSP

Requirements

• Bachelor's degree in Computer Science, Information Security, or equivalent.
• 7+ years of experience in cybersecurity or related field.
• Knowledge of network protocols, firewalls, IDS/IPS.
• Familiarity with tools like Splunk, Wireshark, Nessus, Metasploit.

Seniority level

• Mid-Senior level

Employment type

• Full-time

Job function

• Engineering and Information Technology

Industries

• IT Services and IT Consulting

#J-18808-Ljbffr

Overview

Role Overview: You will lead the design, implementation, and monitoring of enterprise-grade cybersecurity solutions with a strong emphasis on cloud security, zero trust architecture, and threat hunting. This role requires real-time incident response, red/blue teaming, and the integration of AI-powered SIEM/SOAR tools across multi-cloud and hybrid environments. Responsibilities

Monitor and analyze network traffic for suspicious activity. Conduct regular vulnerability assessments and penetration testing. Implement and manage security tools (SIEM, DLP, antivirus, firewalls). Ensure compliance with cybersecurity standards (ISO 27001, NIST, GDPR). Respond to security incidents and coordinate incident response activities. Conduct security awareness training for employees. Work closely with infrastructure and application teams on secure design. Key Responsibilities

Implement Zero Trust Security frameworks (NIST 800-207) across enterprise systems. Design and manage Cloud-native security controls (AWS GuardDuty, Azure Sentinel, GCP SCC). Lead threat hunting and malware analysis using tools like Elastic Stack, Carbon Black, CrowdStrike Falcon. Develop custom detection rules and automation workflows in SOAR platforms (Cortex XSOAR, Splunk Phantom). Conduct advanced red/purple team simulations using MITRE ATT&CK, Atomic Red Team, and Cobalt Strike. Oversee security architecture reviews for containerized and serverless applications (Kubernetes, Fargate). Drive organization-wide compliance with ISO27001, NIST, CIS Controls, and MAS TRM. Technology Stack

SIEM/SOAR: Splunk, Sentinel, QRadar, Cortex XSOAR Threat Intel: MISP, Recorded Future, ThreatConnect Cloud Security: Prisma Cloud, Dome9, AWS WAF, Azure Defender Automation: Python, PowerShell, Terraform Certifications Preferred: CISSP, OSCP, GCIA, GCPN, AWS Security Specialty, CCSP Requirements

Bachelor's degree in Computer Science, Information Security, or equivalent. 7+ years of experience in cybersecurity or related field. Knowledge of network protocols, firewalls, IDS/IPS. Familiarity with tools like Splunk, Wireshark, Nessus, Metasploit. Seniority level

Mid-Senior level Employment type

Full-time Job function

Engineering and Information Technology Industries

IT Services and IT Consulting

#J-18808-Ljbffr

Manager, Information Security page is loadedManager, Information Security Apply locations ASIA > MYS > Kuala Lumpur > KL Office time type Full time posted on Posted 30+ Days Ago job requisition id R-

The Cyber Security Manager will support VF’s Global Cyber Security Team by ensuring that information security risks associated with complex business operations are within acceptable tolerances.

You will perform information security risk assessments, provide direction and guidance to stakeholders concerning the handling of security risks associated with assessment findings, assist with the design of appropriate risk mitigation strategies, and serve as an audit quality assurance gate for internal and external auditors while driving compliance and audit work related to data privacy.

How You Will Make a Difference

You will achieve this by:

• Collaborating with information technology and other business units to identify cybersecurity risks associated with current and planned projects.
• Performing assessments of external party information security controls to ensure they meet or exceed VF’s information security risk management requirements for the services to be provided.
• Determining information security risk profiles for various vendor and business partner services using questionnaires, relevant industry best practices and standards, and knowledge of VF policies.
• Recommending solutions to eliminate, reduce, or mitigate cybersecurity risk, and communicate said solutions to external parties and/or internal business stakeholders as appropriate.
• Providing direction and guidance as needed to internal project stakeholders concerning statutory, regulatory, and VF policy requirements.
• Reporting status of engagements to Global Cyber Security management, project managers, and other business stakeholders as appropriate.
• Assisting in enforcing information security policies, standards, and procedures. Review requests for exceptions to security policies and provide recommendations to management.
• Serving as a focal point for MLPS and provide advisory around MLPS and other APAC data privacy laws related controls and processes.
• Acting as focal point for Regional PCI-DSS assessments, vulnerability assessments and other security operations.
• Researching and advocate new technologies, architectures, and products that will support security requirements for the enterprise and its customers, business partners, and vendors.
• Performing other information security risk management tasks as assigned.

Skills for Success

Aformal education and subsequent University Bachelor or Master’s degree in information systems, computer science, or related field are preferred, but we are mostinterested in your total experience and professional achievements. That’s why:

• You rely on 5+ years of information security risk management, IT audit, and/or IT controls design and implementation experience.
• You possess a Certified Information Systems Security Professional (CISSP) certification, Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC) or similar credentials.
• You are familiar with industry best practises related to security and data privacy in Cloud environments.
• You have functional understanding of industry frameworks, regulations, legislation, and audit methodologies, including SOC 1, SOC 2, ISO 27001, SIG, NIST Cybersecurity Framework, Sarbanes-Oxley (SOX), PCI-DSS, MLPS and various other privacy laws.
• You are apt to broker complex discussions to achieve the proper balance between business needs and cybersecurity best practices.
• You possess the ability to influence others through persuasion to arrive at desired outcomes.
• You communicate effectively with a broad range of people and roles, including vendors, information technology professionals, and other business personnel.
• You desire to seize the initiative, operate proactively, and work in a highly independent manner.
• You are fluent in English and Mandarin, any other Asian languages are a plus.

R-

About Us

VF Corporation outfits consumers around the world with its diverse portfolio of iconic lifestyle brands, including Vans, The North Face, Timberland, and Dickies. Founded in 1899, VF is one of the world's largest apparel, footwear and accessories companies with socially and environmentally responsible operations spanning numerous geographies, product categories and distribution channels. VF is committed to delivering innovative products to consumers and creating long-term value for its customers and shareholders.

VF Vision Statement
VF is committed to creating an inclusive environment that welcomes and values the differences among all of our associates, customers, suppliers and the communities in which we live and conduct business. The continued success and growth of VF is enhanced through initiatives that promote inclusion throughout VF around the world.VF is an equal opportunity employer. VF provides equal employment and advancement opportunities to all qualified individuals. VF bases employment decisions on skills, qualifications, and abilities. To learn more, read our Equal Opportunity Employment Policy here .

VF is committed to meeting the diverse needs of people with disabilities in a timely manner that is consistent with the principles of independence, dignity, integration and equality of opportunity, and will do so by striving to identify, prevent and remove barriers to accessibility wherever possible as well as by meeting the accessibility requirements under the ADA, AODA, and other applicable state, local or provincial regulations.

VF is committed to digital accessibility, and to conforming to the Web Content Accessibility Guidelines (WCAG) 2.1, Level AA and complying with the ADA and AODA Standards for Accessible Design, and other applicable regulations.

If you need an accommodation or have any questions regarding this statement, please send your request to .

#J-18808-Ljbffr

Overview

Information Security Engineer role at FINEXUS Group in Kuala Lumpur, Malaysia.

FINEXUS Group Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia

We provide SaaS (Software as a Service) services which include infrastructure, platform, and business processing outsourcing for banking and financial industry.

Responsibilities

• Overseeing overall development, implementation and maintenance of security systems within the organization.
• Work closely with all levels of the organization to ensure the level of security is in line with the security and organizational risk management policies.
• Coordinate with IT and Application team with regards to technical considerations (threat and vulnerability monitoring, hunting, assessment, eradication, and mitigation) and thus, ensuring proper implementation and provide on-going support of all security operations.
• Responsible to manage and maintain corporate security posture.
• Responsible to evaluate existing systems and procedures, and subsequently make recommendations for improvements should the need arise.
• Responsible to man the SOC and evaluate and monitor systems for threats.
• Responsible to maintain corporate compliance and certification status, and work with Qualified Security Assessor (QSA) during re-certification process.

Qualifications

• Requires Diploma / Bachelor’s Degree in Computer Science or related technology field.
• Knowledge in application development/programming and scripting.
• Knowledge of LAN / WAN / TCP/IP Network / Firewall / IPS, or Operating System is an added advantage.
• Knowledge in Cyber Security.
• Knowledge of penetration testing tools, network tracing/scanning tools (WireShark, tcpdump, nmap), application and database security is a plus, but not a requirement.
• Have an eye for detail and a no compromise attitude when it comes to matters related to security.
• A strong drive to constantly keep oneself updated with the latest security threats, best practices and issues.
• Proficiency in English, both spoken and written.

Seniority level

• Entry level

Employment type

• Full-time

Job function

• Information Technology

#J-18808-Ljbffr