全职 Security Delivery Lead 工作, 薪水, Morgan McKinley Selangor 公司招聘中 - Ricebowl

Role Summary

The Security Delivery Lead is responsible for the end-to-end delivery, governance, and continuous improvement of cybersecurity services for enterprise customer accounts. The role ensures Managed Security Services (MSS) are delivered in line with SLAs, contractual obligations, and regulatory requirements.

Acting as the primary security contact for the customer, the SDL engages with CISO-level stakeholders to align security operations with business priorities, risk posture, and compliance needs. The role combines operational delivery oversight with strategic advisory to strengthen customer security maturity and drive continuous improvement.

In addition, the SDL supports transformation initiatives, identifies security gaps, and contributes to account growth through proposals, RFPs, and new service introductions.

Key Responsibilities

• Act as the primary cybersecurity point of contact for assigned customer accounts
• Engage with customer security leadership (CISO, Risk, Compliance teams)
• Ensure delivery of Managed Security Services meets SLA/OLA requirements
• Oversee SOC operations, incident management, and service performance
• Manage security governance including risk registers, audit tracking, and reporting
• Coordinate vulnerability management, assessments, and compliance activities
• Ensure alignment with frameworks such as ISO 27001, NIST, PCI DSS, and CIS Controls
• Identify security gaps and drive remediation and improvement initiatives
• Support security transformation roadmaps and capability uplift programs
• Assist in proposals, RFPs, renewals, and security solution positioning

Requirements

• Experience in cybersecurity delivery, MSS, SOC, or security operations environments
• Background in Security Manager, Delivery Manager, Security Consultant, or similar roles
• Strong stakeholder management and customer-facing experience (enterprise clients)
• Good understanding of SOC operations, incident response, and threat management
• Knowledge of IAM, infrastructure security, vulnerability management, and GRC
• Familiarity with ISO 27001, NIST CSF, PCI DSS, and CIS Controls
• Strong communication, analytical, and coordination skills

Preferred Certifications

• CISSP
• CISM
• CISA
• CCSP
• CRISC
• ISO 27001 Lead Auditor / Implementer