全职 Information Security Executive 工作, 薪水, SMJ TERATAI SDN BHD 公司招聘中 - Ricebowl

We are seeking a proactive and detail-oriented Information Security Governance, Risk & Compliance (GRC) Executive to join our team. This role will support the organization in strengthening cybersecurity governance, managing IT risks, and ensuring compliance with regulatory and internal security requirements.

Key Responsibilities

1. Risk Management & Compliance

• Support the development and maintenance of the Technology Risk Management Framework (TRMF) and Cyber Resilience Framework (CRF).
• Conduct IT risk assessments and maintain IT risk registers to identify, evaluate, and mitigate technology risks.
• Assess risks related to new products, systems, and IT vendors to ensure secure implementation.
• Perform compliance assessments against regulatory requirements, internal policies, and industry standards.
• Evaluate risks associated with third-party IT outsourcing service providers (OSPs) and ensure proper due diligence.
• Provide guidance on secure system design, development, and deployment.

2. Security Governance & Awareness

• Implement cybersecurity awareness initiatives and enforce cyber hygiene training across the organization.
• Monitor cyber threat alerts and recommend mitigation strategies.
• Stay updated on emerging cybersecurity threats, trends, and technologies.
• Recommend and implement security improvements to strengthen the organization’s security posture.

3. Incident Response & Crisis Management

• Lead cybersecurity incident response and coordinate with internal teams and vendors for effective resolution.
• Conduct root cause analysis and implement corrective actions to prevent recurrence.
• Support the development and maintenance of disaster recovery and business continuity plans for cybersecurity incidents.

4. Other Responsibilities

• Undertake additional assignments as required by management.

Requirements

• Bachelor’s Degree in Information Security, IT, Computer Science, or related field.
• At least 5 years of experience in Cybersecurity, IT Risk, Compliance, or Information Security Governance.
• Strong analytical, communication, and problem-solving skills.
• Ability to work collaboratively with cross-functional teams.

Salary Range: RM7,000 to RM9,000